Sample viewer

vx.netlux.org/Virus.DOS.Lenin.943

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:52:01.628203345Z	47	PC: 12d6a \| Get disk transfer address
2018-12-17T21:52:01.630232383Z	26	PC: 12d7b \| Set disk transfer address
2018-12-17T21:52:01.63244933Z	78	PC: 12dd6 \| Find first file
2018-12-17T21:52:01.641412851Z	61	PC: 12dfc \| Open file (Filename = 'C:\DOS\ATTRIB.EXE')
2018-12-17T21:52:01.649347418Z	66	PC: 12d06 \| Move file pointer
2018-12-17T21:52:01.650890171Z	66	PC: 12d06 \| Move file pointer
2018-12-17T21:52:01.652176763Z	63	PC: 12e1d \| Read file or device (Read 28 bytes on handle 5)
2018-12-17T21:52:01.659028875Z	66	PC: 12e3e \| Move file pointer
2018-12-17T21:52:01.660606611Z	63	PC: 12e48 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T21:52:01.666700768Z	66	PC: 12d06 \| Move file pointer
2018-12-17T21:52:01.668339103Z	63	PC: 12eae \| Read file or device (Read 128 bytes on handle 5)
2018-12-17T21:52:01.672062019Z	66	PC: 12ebb \| Move file pointer
2018-12-17T21:52:01.673469939Z	63	PC: 12ec5 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:01.675337914Z	66	PC: 12f4d \| Move file pointer
2018-12-17T21:52:01.681847818Z	64	PC: 12f5b \| Write file or device (Write 943 bytes on handle 5)
2018-12-17T21:52:02.017665426Z	66	PC: 12d06 \| Move file pointer
2018-12-17T21:52:02.019064737Z	66	PC: 12d06 \| Move file pointer
2018-12-17T21:52:02.021160959Z	64	PC: 12f85 \| Write file or device (Write 128 bytes on handle 5)
2018-12-17T21:52:02.02406289Z	66	PC: 12f92 \| Move file pointer
2018-12-17T21:52:02.026229274Z	64	PC: 12f9c \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T21:52:02.042466398Z	62	PC: 12fa0 \| Close file
2018-12-17T21:52:02.051407047Z	26	PC: 12fd6 \| Set disk transfer address
2018-12-17T21:52:02.052998782Z	9	PC: 12c22 \| Display string (Could not find end pointer)
2018-12-17T21:52:02.05935794Z	76	PC: 12c28 \| Terminate with return code (Return code = '0')