Sample viewer

vx.netlux.org/Virus.DOS.Kemerovo.a

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:25:01.344933267Z 78 PC: 12ad8 | Find first file
2018-12-17T22:25:01.35256301Z 47 PC: 12ae6 | Get disk transfer address
2018-12-17T22:25:01.354549091Z 61 PC: 12b02 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:25:01.362173981Z 63 PC: 12b22 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:25:01.369321682Z 66 PC: 12b36 | Move file pointer
2018-12-17T22:25:01.382335442Z 64 PC: 12b45 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:25:01.385171633Z 66 PC: 12b51 | Move file pointer
2018-12-17T22:25:01.386798001Z 64 PC: 12b5f | Write file or device (Write 256 bytes on handle 5)
2018-12-17T22:25:01.403153274Z 62 PC: 12b78 | Close file
2018-12-17T22:25:01.41256377Z 44 PC: 12b7c | Get time 0x12b7c: cmp dl, 0xa
0x12b7f: jge 0x12b63
0x12b81: nop
0x12b82: nop
0x12b83: nop
0x12b84: nop
0x12b85: nop
0x12b86: nop
0x12b87: nop
0x12b88: nop
0x12b89: nop
0x12b8a: nop
0x12b8b: ljmp 0xffff:0
0x12b90: add byte ptr [bx + si], al
0x12b92: add byte ptr [bx + si], al
0x12b94: add byte ptr [bx + si], al
0x12b96: add byte ptr [bx + si], al
0x12b98: add byte ptr [bx + si], al
0x12b9a: add byte ptr [bx + si], al
0x12b9c: add byte ptr [bx + si], al
2018-12-17T22:25:01.415782361Z 9 PC: 12aa2 | Display string (String= 'Hello - Copyright S & S International, 1990 ')