Sample viewer

vx.netlux.org/Virus.DOS.Bailey.380

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T21:52:02.378725054Z 78 PC: 12afd | Find first file
2018-12-17T21:52:02.385187921Z 61 PC: 12afd | Open file (Filename = 'SLEEP.COM')
2018-12-17T21:52:02.39549621Z 63 PC: 12afd | Read file or device (Read 1 bytes on handle 5)
2018-12-17T21:52:02.409807955Z 66 PC: 12afd | Move file pointer
2018-12-17T21:52:02.41219102Z 44 PC: 12afd | Get time 0x12afd: pop si
0x12afe: ret
0x12aff: sub ch, byte ptr [0x4f43]
0x12b03: dec bp
0x12b04: add byte ptr [bp + di + 0x43], bl
0x12b07: outsw dx, word ptr [si]
0x12b08: outsb dx, byte ptr [si]
0x12b09: jae 0x12b80
0x12b0b: insw word ptr es:[di], dx
0x12b0c: pop bp
0x12b0f: and byte ptr [bp + 0x31], dh
0x12b12: xor byte ptr cs:[di], cl
0x12b15: or al, byte ptr [bp + di + 0x6f]
0x12b18: and byte ptr fs:[bp + si + 0x79], ah
0x12b1e: and byte ptr [si + 0x61], al
0x12b21: je 0x12b84
0x12b23: and byte ptr [si + 0x69], al
0x12b26: jae 0x12b9a
0x12b28: jne 0x12b9a
0x12b2a: je 0x12b9b
2018-12-17T21:52:02.415047668Z 64 PC: 12afd | Write file or device (Write 28 bytes on handle 5)
2018-12-17T21:52:02.417997537Z 64 PC: 12afd | Write file or device (Write 352 bytes on handle 5)
2018-12-17T21:52:02.420812527Z 62 PC: 12afd | Close file
2018-12-17T21:52:02.516772917Z 76 PC: 12afd | Terminate with return code (Return code = '0')