Sample viewer

vx.netlux.org/Virus.DOS.Vienna.949

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:21:35.788676379Z	47	PC: 1519c \| Get disk transfer address
2018-12-17T22:21:35.790301552Z	26	PC: 151ab \| Set disk transfer address
2018-12-17T22:21:35.791707477Z	78	PC: 15234 \| Find first file
2018-12-17T22:21:35.797682795Z	79	PC: 1523e \| Find next file
2018-12-17T22:21:35.800748039Z	79	PC: 1523e \| Find next file
2018-12-17T22:21:35.802582108Z	79	PC: 1523e \| Find next file
2018-12-17T22:21:35.804181033Z	79	PC: 1523e \| Find next file
2018-12-17T22:21:35.806305508Z	79	PC: 1523e \| Find next file
2018-12-17T22:21:35.808051115Z	79	PC: 1523e \| Find next file
2018-12-17T22:21:35.809747164Z	79	PC: 1523e \| Find next file
2018-12-17T22:21:35.812021866Z	67	PC: 15296 \| Get or set file attributes
2018-12-17T22:21:35.815531149Z	67	PC: 152a6 \| Get or set file attributes
2018-12-17T22:21:35.830044395Z	61	PC: 152b0 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:21:35.836805377Z	87	PC: 152bf \| Get or set file date and time
2018-12-17T22:21:35.838058581Z	44	PC: 152c9 \| Get time 0x152c9: mov cx, 3 0x152cc: mov ah, 0x3f 0x152ce: mov dx, 0xa 0x152d1: add dx, si 0x152d3: push dx 0x152d4: int 0x21 0x152d6: pop bp 0x152d7: jb 0x152fd 0x152d9: cmp byte ptr [bp], 0x4d 0x152dd: jne 0x152eb 0x152df: cmp byte ptr [bp + 1], 0x5a 0x152e3: je 0x152fd 0x152e5: jmp 0x152eb 0x152e7: jmp 0x15339 0x152e9: jmp 0x15337 0x152eb: cmp ax, 3 0x152ee: jne 0x1533b 0x152f0: xor cx, cx 0x152f2: mov ax, 0x4202 0x152f5: xor dx, dx
2018-12-17T22:21:35.839974613Z	63	PC: 152d6 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:21:35.84318383Z	66	PC: 152f9 \| Move file pointer
2018-12-17T22:21:35.844384033Z	64	PC: 15352 \| Write file or device (Write 939 bytes on handle 5)
2018-12-17T22:21:35.849854399Z	66	PC: 15362 \| Move file pointer
2018-12-17T22:21:35.851250674Z	64	PC: 15370 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:21:35.853182336Z	87	PC: 1537e \| Get or set file date and time
2018-12-17T22:21:35.854163049Z	62	PC: 15382 \| Close file
2018-12-17T22:21:35.859411939Z	67	PC: 1538f \| Get or set file attributes
2018-12-17T22:21:35.869532804Z	26	PC: 15399 \| Set disk transfer address
2018-12-17T22:21:35.872608881Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T22:21:35.874558944Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T22:21:35.885084884Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')