Sample viewer

vx.netlux.org/Virus.DOS.Bumbee.250

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:09:04.983424933Z 48 PC: 14790 | Get DOS version
2018-12-17T22:09:04.986084173Z 74 PC: 1480f | Reallocate memory
2018-12-17T22:09:04.988408565Z 53 PC: 1488d | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:09:04.989476269Z 37 PC: 1489f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:09:04.991345126Z 68 PC: 1492f | I/O control for devices (Set for = 'tCAY[ì"')
2018-12-17T22:09:04.99310008Z 68 PC: 1492f | I/O control for devices
2018-12-17T22:09:04.994933917Z 68 PC: 1492f | I/O control for devices
2018-12-17T22:09:04.996805823Z 68 PC: 1492f | I/O control for devices
2018-12-17T22:09:04.998210934Z 68 PC: 1492f | I/O control for devices
2018-12-17T22:09:05.000343218Z 81 PC: 13378 | Get current PSP
2018-12-17T22:09:05.001454066Z 61 PC: 133d1 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:09:05.008081889Z 66 PC: 1342c | Move file pointer
2018-12-17T22:09:05.010009924Z 63 PC: 13444 | Read file or device (Read 7 bytes on handle 5)
2018-12-17T22:09:05.013702969Z 66 PC: 13469 | Move file pointer
2018-12-17T22:09:05.01563948Z 63 PC: 13475 | Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:09:05.019909036Z 66 PC: 134cf | Move file pointer
2018-12-17T22:09:05.02123721Z 63 PC: 134da | Read file or device (Read 16 bytes on handle 5)
2018-12-17T22:09:05.023800534Z 66 PC: 134cf | Move file pointer
2018-12-17T22:09:05.026075543Z 63 PC: 134da | Read file or device (Read 16 bytes on handle 5)
2018-12-17T22:09:05.032991448Z 66 PC: 134cf | Move file pointer
2018-12-17T22:09:05.034650205Z 63 PC: 134da | Read file or device (Read 16 bytes on handle 5)
2018-12-17T22:09:05.047518268Z 63 PC: 1353e | Read file or device (Read 2846 bytes on handle 5)
2018-12-17T22:09:05.055027325Z 62 PC: 133e7 | Close file
2018-12-17T22:09:05.0577424Z 81 PC: 12faf | Get current PSP
2018-12-17T22:09:05.06129066Z 64 PC: 14f52 | Write file or device (Write 31 bytes on handle 1)
2018-12-17T22:09:05.06625732Z 37 PC: 149ff | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:09:05.067288922Z 76 PC: 149e4 | Terminate with return code (Return code = '1')