Sample viewer

vx.netlux.org/Virus.DOS.Corea.1045

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:21:12.326139147Z	255	PC: 21c8d \| UNKNOWN!
2018-12-17T22:21:12.328616099Z	53	PC: 21c98 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:21:12.330247241Z	47	PC: 21cbf \| Get disk transfer address
2018-12-17T22:21:12.331892641Z	71	PC: 9f734 \| Get current directory
2018-12-17T22:21:12.336359741Z	26	PC: 9f73b \| Set disk transfer address
2018-12-17T22:21:12.337934391Z	59	PC: 9f758 \| Change current directory
2018-12-17T22:21:12.343406397Z	53	PC: 9f75d \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:21:12.345279946Z	37	PC: 9f766 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:21:12.347537718Z	78	PC: 9fa1e \| Find first file
2018-12-17T22:21:12.354201757Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.357022019Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.360668058Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.363543683Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.366838251Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.370223901Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.373038867Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.375823172Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.37945138Z	67	PC: 9fa1e \| Get or set file attributes
2018-12-17T22:21:12.385679958Z	67	PC: 9fa1e \| Get or set file attributes
2018-12-17T22:21:12.403968212Z	61	PC: 9fa1e \| Open file (Filename = 'TEST.EXE')
2018-12-17T22:21:12.41209422Z	87	PC: 9fa1e \| Get or set file date and time
2018-12-17T22:21:12.414296434Z	63	PC: 9fa1e \| Read file or device (Read 102 bytes on handle 5)
2018-12-17T22:21:12.419141987Z	66	PC: 9fa15 \| Move file pointer
2018-12-17T22:21:12.421729457Z	66	PC: 9fa15 \| Move file pointer
2018-12-17T22:21:12.423431278Z	63	PC: 9f93e \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:21:12.426215964Z	87	PC: 9fa1e \| Get or set file date and time
2018-12-17T22:21:12.428744324Z	62	PC: 9fa1e \| Close file
2018-12-17T22:21:12.436827811Z	67	PC: 9fa1e \| Get or set file attributes
2018-12-17T22:21:12.442278838Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.454133792Z	78	PC: 9fa1e \| Find first file
2018-12-17T22:21:12.46125469Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.464614316Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.468569412Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.47128637Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.474071011Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.477325313Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.480067492Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.48283004Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.486039491Z	79	PC: 9fa1e \| Find next file
2018-12-17T22:21:12.488492067Z	37	PC: 9f7f3 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:21:12.489641822Z	59	PC: 9f7fc \| Change current directory
2018-12-17T22:21:12.494398259Z	26	PC: 21cd7 \| Set disk transfer address
2018-12-17T22:21:12.495614465Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-17T22:21:12.503069056Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')