Sample viewer

vx.netlux.org/Virus.DOS.SlamTilt.703

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:23:31.198480688Z 26 PC: 146af | Set disk transfer address
2018-12-17T22:23:31.200212388Z 78 PC: 146b9 | Find first file
2018-12-17T22:23:31.207944985Z 79 PC: 146e1 | Find next file
2018-12-17T22:23:31.211239814Z 79 PC: 146e1 | Find next file
2018-12-17T22:23:31.214503368Z 79 PC: 146e1 | Find next file
2018-12-17T22:23:31.218229725Z 79 PC: 146e1 | Find next file
2018-12-17T22:23:31.22150947Z 79 PC: 146e1 | Find next file
2018-12-17T22:23:31.226524713Z 79 PC: 146e1 | Find next file
2018-12-17T22:23:31.230983213Z 79 PC: 146e1 | Find next file
2018-12-17T22:23:31.234682254Z 53 PC: 148df | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:23:31.236344165Z 37 PC: 148ee | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:23:31.239022305Z 67 PC: 14708 | Get or set file attributes
2018-12-17T22:23:31.252842758Z 61 PC: 14713 | Open file (Filename = 'TEST.COM')
2018-12-17T22:23:31.259108026Z 63 PC: 14722 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:23:31.261609581Z 66 PC: 14732 | Move file pointer
2018-12-17T22:23:31.263073869Z 64 PC: 1474c | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:23:31.264982665Z 66 PC: 1475c | Move file pointer
2018-12-17T22:23:31.266151377Z 64 PC: 1476a | Write file or device (Write 12 bytes on handle 5)
2018-12-17T22:23:31.269121403Z 64 PC: 14795 | Write file or device (Write 33 bytes on handle 5)
2018-12-17T22:23:31.27134214Z 64 PC: 147bb | Write file or device (Write 657 bytes on handle 5)
2018-12-17T22:23:31.277167485Z 87 PC: 147d4 | Get or set file date and time
2018-12-17T22:23:31.279186837Z 62 PC: 147dc | Close file
2018-12-17T22:23:31.285583746Z 67 PC: 147eb | Get or set file attributes
2018-12-17T22:23:31.297420583Z 37 PC: 148fd | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:23:31.300263043Z 26 PC: 147f8 | Set disk transfer address
2018-12-17T22:23:31.487183913Z 76 PC: 13e98 | Terminate with return code (Return code = '0')