Sample viewer

vx.netlux.org/Virus.DOS.NRead.1467

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:54:05.017586489Z	73	PC: 13048 \| Release memory
2018-12-17T21:54:05.019611056Z	72	PC: 1304f \| Allocate memory
2018-12-17T21:54:05.021906361Z	74	PC: 1305c \| Reallocate memory
2018-12-17T21:54:05.02381055Z	74	PC: 13065 \| Reallocate memory
2018-12-17T21:54:05.025767605Z	47	PC: 13090 \| Get disk transfer address
2018-12-17T21:54:05.02814273Z	52	PC: 1309c \| Get InDOS flag pointer
2018-12-17T21:54:05.029878687Z	53	PC: 130ad \| Get interrupt vector (Interrupt = '8' AKA 'Console input without echo')
2018-12-17T21:54:05.031589349Z	37	PC: 130bd \| Set interrupt vector (Interrupt = '8' AKA 'Console input without echo')
2018-12-17T21:54:05.03396457Z	53	PC: 130c2 \| Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T21:54:05.035454526Z	37	PC: 130d2 \| Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T21:54:05.036870579Z	53	PC: 130d7 \| Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T21:54:05.03970733Z	37	PC: 130e7 \| Set interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T21:54:05.041173237Z	53	PC: 130ec \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:54:05.043025513Z	37	PC: 130fc \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:54:05.045244032Z	53	PC: 13101 \| Get interrupt vector (Interrupt = '40' AKA 'Random block write')
2018-12-17T21:54:05.046540504Z	37	PC: 13111 \| Set interrupt vector (Interrupt = '40' AKA 'Random block write')
2018-12-17T21:54:05.047706502Z	53	PC: 13116 \| Get interrupt vector (Interrupt = '47' AKA 'Get disk transfer address')
2018-12-17T21:54:05.055902394Z	37	PC: 13126 \| Set interrupt vector (Interrupt = '47' AKA 'Get disk transfer address')
2018-12-17T21:54:05.057932585Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ')
2018-12-17T21:54:05.060524079Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')