Sample viewer

vx.netlux.org/Virus.DOS.Mark.347

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:11:05.917640472Z 78 PC: 12ab0 | Find first file
2018-12-17T23:11:05.941472558Z 61 PC: 12acb | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:11:05.950427211Z 66 PC: 12adf | Move file pointer
2018-12-17T23:11:05.952354276Z 63 PC: 12af2 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:11:05.964558371Z 66 PC: 12b22 | Move file pointer
2018-12-17T23:11:05.96770569Z 63 PC: 12b35 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:11:05.970818525Z 66 PC: 12b4d | Move file pointer
2018-12-17T23:11:05.972865686Z 64 PC: 12b7d | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:11:05.978028727Z 66 PC: 12b8b | Move file pointer
2018-12-17T23:11:05.980162541Z 64 PC: 12ba9 | Write file or device (Write 1 bytes on handle 5)
2018-12-17T23:11:05.983525747Z 64 PC: 12bb7 | Write file or device (Write 347 bytes on handle 5)
2018-12-17T23:11:06.009577367Z 62 PC: 12bbc | Close file
2018-12-17T23:11:06.032093358Z 64 PC: 12a4d | Write file or device (Write 39 bytes on handle 1)
2018-12-17T23:11:06.039450165Z 76 PC: 12a51 | Terminate with return code (Return code = '39')