Sample viewer

vx.netlux.org/Virus.DOS.Pbf.993

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:19:55.450483741Z 42 PC: 12a4a | Get date 0x12a4a: or bp, bp
0x12a4c: je 0x12a6f
0x12a4e: mov al, 0
0x12a50: lea si, word ptr [bp + 0x12f]
0x12a54: mov cx, 0x3b2
0x12a57: call 0x12a5c
0x12a5a: jmp 0x12a6f
0x12a5c: xor byte ptr [si], al
0x12a5e: inc si
0x12a5f: dec al
0x12a61: loop 0x12a5c
0x12a63: ret
0x12a64: lea si, word ptr [bp + 0x12e]
0x12a68: lea di, word ptr [bp + 0x107]
0x12a6c: movsb byte ptr es:[di], byte ptr [si]
0x12a6d: ret
0x12a6e: sub bh, byte ptr [bx + si - 0x1ef]
0x12a72: int 0x21
0x12a74: cmp ax, 0x11fe
0x12a77: je 0x12ade
2018-12-17T22:19:55.452954437Z 254 PC: 12a74 | UNKNOWN!
2018-12-17T22:19:55.455116265Z 74 PC: 12a93 | Reallocate memory
2018-12-17T22:19:55.456806312Z 72 PC: 12a99 | Allocate memory