Sample viewer

vx.netlux.org/Virus.DOS.Patsy.697

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:12:51.190638736Z 48 PC: 12fb2 | Get DOS version
2018-12-17T23:12:51.192245744Z 73 PC: 12fc4 | Release memory
2018-12-17T23:12:51.193618081Z 53 PC: 12fcb | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:12:51.194776974Z 53 PC: 12fd8 | Get interrupt vector (Interrupt = '16' AKA 'Close file')
2018-12-17T23:12:51.196536918Z 80 PC: 13015 | Set current PSP
2018-12-17T23:12:51.198900813Z 37 PC: 12b2c | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:12:51.200950496Z 37 PC: 12b34 | Set interrupt vector (Interrupt = '16' AKA 'Close file')
2018-12-17T23:12:51.202965725Z 26 PC: 12b3c | Set disk transfer address
2018-12-17T23:12:51.20563436Z 25 PC: 1367e | Get default drive
2018-12-17T23:12:51.207957738Z 9 PC: 1318b | Display string (Could not find end pointer)
2018-12-17T23:12:51.212022377Z 42 PC: 131d0 | Get date 0x131d0: push cx
0x131d1: push dx
0x131d2: mov ah, al
0x131d4: mov si, 0x511
0x131d7: mov dx, 0xba
0x131da: call 0x132df
0x131dd: pop ax
0x131de: push ax
0x131df: cwde
0x131e0: push ax
0x131e1: mov dx, 0xde
0x131e4: call 0x1330b
0x131e7: pop ax
0x131e8: aam
0x131ea: mov bx, 0x5448
0x131ed: cmp ah, 1
0x131f0: je 0x13208
0x131f2: cmp al, 3
0x131f4: ja 0x13208
0x131f6: or al, al
2018-12-17T23:12:51.21489609Z 25 PC: 13283 | Get default drive
2018-12-17T23:12:51.21626741Z 54 PC: 13290 | Get free disk space
2018-12-17T23:12:51.225674284Z 76 PC: 132df | Terminate with return code (Return code = '0')