Sample viewer

vx.netlux.org/Virus.DOS.Nado.475

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:25:15.406727622Z 188 PC: 12aba | UNKNOWN!
2018-12-17T22:25:15.408382204Z 53 PC: 12aca | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:25:15.410917145Z 74 PC: 12ae7 | Reallocate memory
2018-12-17T22:25:15.412693849Z 72 PC: 12af0 | Allocate memory
2018-12-17T22:25:15.414672932Z 37 PC: 12b1c | Set interrupt vector (Interrupt = '33' AKA 'Random read')

{"DateBased":true,"Day":5,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4463,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:51:52.908378951Z 188 PC: 12aba | UNKNOWN!
2018-12-25T11:51:52.909431689Z 53 PC: 12aca | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:51:52.910474849Z 74 PC: 12ae7 | Reallocate memory
2018-12-25T11:51:52.911444454Z 72 PC: 12af0 | Allocate memory
2018-12-25T11:51:52.913028883Z 37 PC: 12b1c | Set interrupt vector (Interrupt = '33' AKA 'Random read')

{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4463,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:51:53.060351968Z 188 PC: 12aba | UNKNOWN!
2018-12-25T11:51:53.061835901Z 53 PC: 12aca | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:51:53.063736711Z 74 PC: 12ae7 | Reallocate memory
2018-12-25T11:51:53.06552089Z 72 PC: 12af0 | Allocate memory
2018-12-25T11:51:53.067486719Z 37 PC: 12b1c | Set interrupt vector (Interrupt = '33' AKA 'Random read')