Sample viewer

vx.netlux.org/Virus.DOS.ARCV.986

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:53:45.087441077Z	42	PC: 12a73 \| Get date 0x12a73: cmp dh, 0xa 0x12a76: jne 0x12a86 0x12a78: cmp dl, 0xa 0x12a7b: jne 0x12a86 0x12a7d: mov ah, 9 0x12a7f: mov dx, 0x3fd 0x12a82: add dx, si 0x12a84: int 0x21 0x12a86: mov di, 0x100 0x12a89: push si 0x12a8a: mov ax, 0x4cc 0x12a8d: add si, ax 0x12a8f: mov cx, 5 0x12a92: cld 0x12a93: rep movsb byte ptr es:[di], byte ptr [si] 0x12a95: mov ax, 0xff04 0x12a98: int 0x21 0x12a9a: pop si 0x12a9b: cmp ax, 0x4221 0x12a9e: je 0x12aad
2018-12-17T21:53:45.090181377Z	255	PC: 12a9a \| UNKNOWN!

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":398,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:40:52.181925787Z	42	PC: 12a73 \| Get date 0x12a73: cmp dh, 0xa 0x12a76: jne 0x12a86 0x12a78: cmp dl, 0xa 0x12a7b: jne 0x12a86 0x12a7d: mov ah, 9 0x12a7f: mov dx, 0x3fd 0x12a82: add dx, si 0x12a84: int 0x21 0x12a86: mov di, 0x100 0x12a89: push si 0x12a8a: mov ax, 0x4cc 0x12a8d: add si, ax 0x12a8f: mov cx, 5 0x12a92: cld 0x12a93: rep movsb byte ptr es:[di], byte ptr [si] 0x12a95: mov ax, 0xff04 0x12a98: int 0x21 0x12a9a: pop si 0x12a9b: cmp ax, 0x4221 0x12a9e: je 0x12aad
2018-12-25T11:40:52.184755096Z	255	PC: 12a9a \| UNKNOWN!

{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":398,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:40:52.159560221Z	42	PC: 12a73 \| Get date 0x12a73: cmp dh, 0xa 0x12a76: jne 0x12a86 0x12a78: cmp dl, 0xa 0x12a7b: jne 0x12a86 0x12a7d: mov ah, 9 0x12a7f: mov dx, 0x3fd 0x12a82: add dx, si 0x12a84: int 0x21 0x12a86: mov di, 0x100 0x12a89: push si 0x12a8a: mov ax, 0x4cc 0x12a8d: add si, ax 0x12a8f: mov cx, 5 0x12a92: cld 0x12a93: rep movsb byte ptr es:[di], byte ptr [si] 0x12a95: mov ax, 0xff04 0x12a98: int 0x21 0x12a9a: pop si 0x12a9b: cmp ax, 0x4221 0x12a9e: je 0x12aad
2018-12-25T11:40:52.162307859Z	255	PC: 12a9a \| UNKNOWN!

{"DateBased":true,"Day":10,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":398,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:40:52.299970512Z	42	PC: 12a73 \| Get date 0x12a73: cmp dh, 0xa 0x12a76: jne 0x12a86 0x12a78: cmp dl, 0xa 0x12a7b: jne 0x12a86 0x12a7d: mov ah, 9 0x12a7f: mov dx, 0x3fd 0x12a82: add dx, si 0x12a84: int 0x21 0x12a86: mov di, 0x100 0x12a89: push si 0x12a8a: mov ax, 0x4cc 0x12a8d: add si, ax 0x12a8f: mov cx, 5 0x12a92: cld 0x12a93: rep movsb byte ptr es:[di], byte ptr [si] 0x12a95: mov ax, 0xff04 0x12a98: int 0x21 0x12a9a: pop si 0x12a9b: cmp ax, 0x4221 0x12a9e: je 0x12aad
2018-12-25T11:40:52.302873901Z	9	PC: 12a86 \| Display string (String= 'This is Dedicated To the Girl I Love, Joanna Dicks. Made in England by Apache Warrior, ARCV Pres. Jo Ver. 1.01 (c) Apache Warrior 92. ')
2018-12-25T11:40:52.315205191Z	255	PC: 12a9a \| UNKNOWN!

{"DateBased":true,"Day":10,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":398,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:40:52.397650122Z	42	PC: 12a73 \| Get date 0x12a73: cmp dh, 0xa 0x12a76: jne 0x12a86 0x12a78: cmp dl, 0xa 0x12a7b: jne 0x12a86 0x12a7d: mov ah, 9 0x12a7f: mov dx, 0x3fd 0x12a82: add dx, si 0x12a84: int 0x21 0x12a86: mov di, 0x100 0x12a89: push si 0x12a8a: mov ax, 0x4cc 0x12a8d: add si, ax 0x12a8f: mov cx, 5 0x12a92: cld 0x12a93: rep movsb byte ptr es:[di], byte ptr [si] 0x12a95: mov ax, 0xff04 0x12a98: int 0x21 0x12a9a: pop si 0x12a9b: cmp ax, 0x4221 0x12a9e: je 0x12aad
2018-12-25T11:40:52.399732697Z	9	PC: 12a86 \| Display string (String= 'This is Dedicated To the Girl I Love, Joanna Dicks. Made in England by Apache Warrior, ARCV Pres. Jo Ver. 1.01 (c) Apache Warrior 92. ')
2018-12-25T11:40:52.404850408Z	255	PC: 12a9a \| UNKNOWN!

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":398,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:40:52.423128264Z	42	PC: 12a73 \| Get date 0x12a73: cmp dh, 0xa 0x12a76: jne 0x12a86 0x12a78: cmp dl, 0xa 0x12a7b: jne 0x12a86 0x12a7d: mov ah, 9 0x12a7f: mov dx, 0x3fd 0x12a82: add dx, si 0x12a84: int 0x21 0x12a86: mov di, 0x100 0x12a89: push si 0x12a8a: mov ax, 0x4cc 0x12a8d: add si, ax 0x12a8f: mov cx, 5 0x12a92: cld 0x12a93: rep movsb byte ptr es:[di], byte ptr [si] 0x12a95: mov ax, 0xff04 0x12a98: int 0x21 0x12a9a: pop si 0x12a9b: cmp ax, 0x4221 0x12a9e: je 0x12aad
2018-12-25T11:40:52.4257407Z	255	PC: 12a9a \| UNKNOWN!

{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":398,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:40:52.476488599Z	42	PC: 12a73 \| Get date 0x12a73: cmp dh, 0xa 0x12a76: jne 0x12a86 0x12a78: cmp dl, 0xa 0x12a7b: jne 0x12a86 0x12a7d: mov ah, 9 0x12a7f: mov dx, 0x3fd 0x12a82: add dx, si 0x12a84: int 0x21 0x12a86: mov di, 0x100 0x12a89: push si 0x12a8a: mov ax, 0x4cc 0x12a8d: add si, ax 0x12a8f: mov cx, 5 0x12a92: cld 0x12a93: rep movsb byte ptr es:[di], byte ptr [si] 0x12a95: mov ax, 0xff04 0x12a98: int 0x21 0x12a9a: pop si 0x12a9b: cmp ax, 0x4221 0x12a9e: je 0x12aad
2018-12-25T11:40:52.479340108Z	255	PC: 12a9a \| UNKNOWN!