Sample viewer

vx.netlux.org/Virus.DOS.Hallochen.a

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:05:51.179264749Z 48 PC: 13530 | Get DOS version
2018-12-17T22:05:51.181216839Z 82 PC: 1350d | Get DOS internal pointers (SYSVARS)
2018-12-17T22:05:51.182342548Z 98 PC: 135f3 | Get current PSP
2018-12-17T22:05:51.183247778Z 53 PC: 9f855 | Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:05:51.18544251Z 53 PC: 9f86a | Get interrupt vector (Interrupt = '33' AKA 'Random read')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1773,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:44:17.199555876Z 48 PC: 13530 | Get DOS version
2018-12-25T11:44:17.201284711Z 82 PC: 1350d | Get DOS internal pointers (SYSVARS)
2018-12-25T11:44:17.202994709Z 98 PC: 135f3 | Get current PSP
2018-12-25T11:44:17.204013324Z 53 PC: 9f855 | Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-25T11:44:17.20617481Z 53 PC: 9f86a | Get interrupt vector (Interrupt = '33' AKA 'Random read')

{"DateBased":true,"Day":1,"Month":12,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1773,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:44:17.336326629Z 48 PC: 13530 | Get DOS version
2018-12-25T11:44:17.33868806Z 82 PC: 1350d | Get DOS internal pointers (SYSVARS)
2018-12-25T11:44:17.339913981Z 98 PC: 135f3 | Get current PSP
2018-12-25T11:44:17.342267314Z 53 PC: 9f855 | Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-25T11:44:17.344941177Z 53 PC: 9f86a | Get interrupt vector (Interrupt = '33' AKA 'Random read')