Sample viewer

vx.netlux.org/Virus.DOS.GoodBye.839

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:17:24.756098395Z 254 PC: 12abf | UNKNOWN!
2018-12-17T22:17:24.757943245Z 53 PC: 12aec | Get interrupt vector (Interrupt = '32' AKA 'Reserved')
2018-12-17T22:17:24.759702275Z 53 PC: 12af9 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:17:24.761286217Z 37 PC: 12b1d | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:17:24.763267089Z 37 PC: 12b24 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:17:24.764687744Z 37 PC: 12b2a | Set interrupt vector (Interrupt = '80' AKA 'Set current PSP')
2018-12-17T22:17:24.766124155Z 9 PC: 12aa2 | Display string (String= 'Hello - Copyright S & S International, 1990 ')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3049,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:48:06.373574673Z 254 PC: 12abf | UNKNOWN!
2018-12-25T11:48:06.374889753Z 53 PC: 12aec | Get interrupt vector (Interrupt = '32' AKA 'Reserved')
2018-12-25T11:48:06.381004472Z 53 PC: 12af9 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:48:06.382639775Z 37 PC: 12b1d | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:48:06.385054954Z 37 PC: 12b24 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-25T11:48:06.387050764Z 37 PC: 12b2a | Set interrupt vector (Interrupt = '80' AKA 'Set current PSP')
2018-12-25T11:48:06.388465071Z 9 PC: 12aa2 | Display string (String= 'Hello - Copyright S & S International, 1990 ')

{"DateBased":true,"Day":7,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3049,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:48:06.604228849Z 254 PC: 12abf | UNKNOWN!
2018-12-25T11:48:06.605971717Z 53 PC: 12aec | Get interrupt vector (Interrupt = '32' AKA 'Reserved')
2018-12-25T11:48:06.607165208Z 53 PC: 12af9 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:48:06.608277098Z 37 PC: 12b1d | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:48:06.610037379Z 37 PC: 12b24 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-25T11:48:06.611247144Z 37 PC: 12b2a | Set interrupt vector (Interrupt = '80' AKA 'Set current PSP')
2018-12-25T11:48:06.612265864Z 9 PC: 12aa2 | Display string (String= 'Hello - Copyright S & S International, 1990 ')