Sample viewer

vx.netlux.org/Virus.DOS.WereWolf.684.a

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:18:20.839145378Z	71	PC: 178c2 \| Get current directory
2018-12-17T22:18:20.841931796Z	26	PC: 17991 \| Set disk transfer address
2018-12-17T22:18:20.843086465Z	78	PC: 179f7 \| Find first file
2018-12-17T22:18:20.847044957Z	67	PC: 17a05 \| Get or set file attributes
2018-12-17T22:18:20.859378294Z	61	PC: 17a0c \| Open file (Filename = 'TEST.EXE')
2018-12-17T22:18:20.864600383Z	63	PC: 17a18 \| Read file or device (Read 24 bytes on handle 5)
2018-12-17T22:18:20.866484461Z	87	PC: 17ad5 \| Get or set file date and time
2018-12-17T22:18:20.868005849Z	62	PC: 17ad9 \| Close file
2018-12-17T22:18:20.874622154Z	67	PC: 17ae7 \| Get or set file attributes
2018-12-17T22:18:20.880680908Z	79	PC: 179f7 \| Find next file
2018-12-17T22:18:20.885002955Z	26	PC: 17991 \| Set disk transfer address
2018-12-17T22:18:20.886594775Z	78	PC: 17961 \| Find first file
2018-12-17T22:18:20.893461017Z	59	PC: 17988 \| Change current directory
2018-12-17T22:18:20.896882099Z	26	PC: 17991 \| Set disk transfer address
2018-12-17T22:18:20.898835547Z	26	PC: 17991 \| Set disk transfer address
2018-12-17T22:18:20.900287691Z	78	PC: 179f7 \| Find first file
2018-12-17T22:18:20.90480551Z	67	PC: 17a05 \| Get or set file attributes
2018-12-17T22:18:20.915470127Z	61	PC: 17a0c \| Open file (Filename = 'TEST.EXE')
2018-12-17T22:18:20.923389053Z	63	PC: 17a18 \| Read file or device (Read 24 bytes on handle 5)
2018-12-17T22:18:20.92956494Z	87	PC: 17ad5 \| Get or set file date and time
2018-12-17T22:18:20.93149052Z	62	PC: 17ad9 \| Close file
2018-12-17T22:18:20.93857698Z	67	PC: 17ae7 \| Get or set file attributes
2018-12-17T22:18:20.943514839Z	79	PC: 179f7 \| Find next file
2018-12-17T22:18:20.947022713Z	59	PC: 178d8 \| Change current directory
2018-12-17T22:18:20.950984919Z	26	PC: 17991 \| Set disk transfer address
2018-12-17T22:18:20.952146456Z	78	PC: 17961 \| Find first file
2018-12-17T22:18:20.964126443Z	59	PC: 178f1 \| Change current directory
2018-12-17T22:18:20.966217423Z	26	PC: 1791e \| Set disk transfer address
2018-12-17T22:18:20.971496058Z	76	PC: 17865 \| Terminate with return code (Return code = '0')