Sample viewer

vx.netlux.org/Virus.DOS.Quiet.2048

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:24:37.981688132Z	48	PC: 14560 \| Get DOS version
2018-12-17T22:24:37.983723909Z	53	PC: 14703 \| Get interrupt vector (Interrupt = '100' AKA 'Set wait for external event flag')
2018-12-17T22:24:37.984907401Z	74	PC: 145a8 \| Reallocate memory
2018-12-17T22:24:37.986198835Z	72	PC: 145b1 \| Allocate memory
2018-12-17T22:24:37.997520605Z	73	PC: 12b65 \| Release memory
2018-12-17T22:24:37.998879433Z	74	PC: 12b72 \| Reallocate memory
2018-12-17T22:24:38.00013633Z	53	PC: 12b77 \| Get interrupt vector (Interrupt = '100' AKA 'Set wait for external event flag')
2018-12-17T22:24:38.003155519Z	37	PC: 12b87 \| Set interrupt vector (Interrupt = '100' AKA 'Set wait for external event flag')
2018-12-17T22:24:38.004322572Z	75	PC: 12bae \| Execute program
2018-12-17T22:24:38.018839497Z	48	PC: 14f80 \| Get DOS version
2018-12-17T22:24:38.021303589Z	53	PC: 15123 \| Get interrupt vector (Interrupt = '100' AKA 'Set wait for external event flag')
2018-12-17T22:24:38.023182973Z	99	PC: 14923 \| Get DBCS lead byte table pointer
2018-12-17T22:24:38.024696293Z	68	PC: 1493d \| I/O control for devices (Set for = '')
2018-12-17T22:24:38.027071589Z	68	PC: 14948 \| I/O control for devices (Set for = '')
2018-12-17T22:24:38.029901065Z	68	PC: 14953 \| I/O control for devices (Set for = '')
2018-12-17T22:24:38.031537967Z	68	PC: 1495b \| I/O control for devices (Set for = '��b��g�t�S3��[r�2��W�<t��>W')
2018-12-17T22:24:38.033426321Z	48	PC: 14960 \| Get DOS version
2018-12-17T22:24:38.037969705Z	64	PC: 14bd9 \| Write file or device (Write 23 bytes on handle 2)
2018-12-17T22:24:38.042638014Z	76	PC: 1376f \| Terminate with return code (Return code = '2')
2018-12-17T22:24:38.046529338Z	53	PC: 12bbc \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:24:38.048765265Z	37	PC: 12bcc \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:24:38.050655995Z	53	PC: 12bd1 \| Get interrupt vector (Interrupt = '22' AKA 'Create or truncate file')
2018-12-17T22:24:38.052453297Z	37	PC: 12be1 \| Set interrupt vector (Interrupt = '22' AKA 'Create or truncate file')
2018-12-17T22:24:38.054944747Z	49	PC: 12bf8 \| Terminate and stay resident (Return code = '0' \| Memory size = '141')