Sample viewer

vx.netlux.org/Virus.DOS.MacGyver.2824

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:07:00.873008917Z	48	PC: 12f2d \| Get DOS version
2018-12-17T22:07:00.875478074Z	74	PC: 1350e \| Reallocate memory
2018-12-17T22:07:00.878900423Z	61	PC: 1350e \| Open file (Filename = 'šź')
2018-12-17T22:07:00.885728789Z	87	PC: 1350e \| Get or set file date and time
2018-12-17T22:07:00.887444814Z	66	PC: 1350e \| Move file pointer
2018-12-17T22:07:00.890113201Z	63	PC: 1350e \| Read file or device (Read 24 bytes on handle 5)
2018-12-17T22:07:00.892736286Z	62	PC: 1350e \| Close file
2018-12-17T22:07:00.894385596Z	47	PC: 1350e \| Get disk transfer address
2018-12-17T22:07:00.896385719Z	26	PC: 1350e \| Set disk transfer address
2018-12-17T22:07:00.897809617Z	78	PC: 1350e \| Find first file
2018-12-17T22:07:00.904058528Z	26	PC: 1350e \| Set disk transfer address
2018-12-17T22:07:00.906434596Z	67	PC: 1350e \| Get or set file attributes
2018-12-17T22:07:00.912680021Z	67	PC: 1350e \| Get or set file attributes
2018-12-17T22:07:00.92845299Z	54	PC: 1350e \| Get free disk space
2018-12-17T22:07:00.937675877Z	61	PC: 1350e \| Open file (Filename = '')
2018-12-17T22:07:00.944872897Z	66	PC: 1350e \| Move file pointer
2018-12-17T22:07:00.946676941Z	66	PC: 1350e \| Move file pointer
2018-12-17T22:07:00.948888353Z	64	PC: 1350e \| Write file or device (Write 24 bytes on handle 5)
2018-12-17T22:07:00.959396051Z	66	PC: 1350e \| Move file pointer
2018-12-17T22:07:00.961838049Z	64	PC: 1350e \| Write file or device (Write 2808 bytes on handle 5)
2018-12-17T22:07:00.970893802Z	66	PC: 1350e \| Move file pointer
2018-12-17T22:07:00.973410948Z	64	PC: 1350e \| Write file or device (Write 0 bytes on handle 5)
2018-12-17T22:07:00.988278602Z	87	PC: 1350e \| Get or set file date and time
2018-12-17T22:07:00.989959439Z	62	PC: 1350e \| Close file
2018-12-17T22:07:01.009834245Z	67	PC: 1350e \| Get or set file attributes
2018-12-17T22:07:01.02975533Z	75	PC: 4f1 \| Execute program
2018-12-17T22:07:01.059954325Z	76	PC: 13854 \| Terminate with return code (Return code = '133')
2018-12-17T22:07:01.063949548Z	73	PC: 1350e \| Release memory
2018-12-17T22:07:01.065911696Z	77	PC: 1350e \| Get program return code
2018-12-17T22:07:01.067212978Z	49	PC: 1350e \| Terminate and stay resident (Return code = '133' \| Memory size = '192')