Sample viewer

vx.netlux.org/Virus.DOS.PS-MPC.347

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:16:24.725137999Z	26	PC: 1517d \| Set disk transfer address
2018-12-17T22:16:24.727359543Z	53	PC: 15182 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:16:24.72886238Z	37	PC: 15192 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:16:24.730300597Z	78	PC: 1519f \| Find first file
2018-12-17T22:16:24.737598412Z	61	PC: 1529c \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:16:24.744323702Z	63	PC: 151b1 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:16:24.75071164Z	62	PC: 151b5 \| Close file
2018-12-17T22:16:24.760483133Z	67	PC: 152a7 \| Get or set file attributes
2018-12-17T22:16:25.462385963Z	61	PC: 1529c \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:16:25.470167581Z	64	PC: 15236 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:16:25.473723604Z	66	PC: 1523e \| Move file pointer
2018-12-17T22:16:25.476297507Z	64	PC: 15249 \| Write file or device (Write 347 bytes on handle 5)
2018-12-17T22:16:25.62957745Z	87	PC: 15256 \| Get or set file date and time
2018-12-17T22:16:25.631080803Z	62	PC: 1525a \| Close file
2018-12-17T22:16:25.666140239Z	67	PC: 152a7 \| Get or set file attributes
2018-12-17T22:16:25.686039517Z	37	PC: 151f5 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:16:25.687215343Z	26	PC: 151fe \| Set disk transfer address
2018-12-17T22:16:25.691126787Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T22:16:25.693007808Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T22:16:25.70323498Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')