Sample viewer

vx.netlux.org/Virus.DOS.April_1st.Com.1000.a

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:25:53.568471579Z 221 PC: 12a5f | UNKNOWN!
2018-12-17T22:25:53.570025761Z 53 PC: 12aa6 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:25:53.571184905Z 37 PC: 12ab6 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:25:53.57218772Z 53 PC: 12abb | Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T22:25:53.574459451Z 37 PC: 12acb | Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T22:25:53.575613424Z 74 PC: 12ae6 | Reallocate memory
2018-12-17T22:25:53.577056155Z 75 PC: 12b1d | Execute program
2018-12-17T22:25:53.591940834Z 76 PC: 12fa6 | Terminate with return code (Return code = '0')
2018-12-17T22:25:53.595899324Z 77 PC: 12b21 | Get program return code
2018-12-17T22:25:53.59791237Z 49 PC: 12b2a | Terminate and stay resident (Return code = '0' | Memory size = '79')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4582,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T13:06:52.074798687Z 221 PC: 12a5f | UNKNOWN!
2018-12-25T13:06:52.092097508Z 53 PC: 12aa6 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T13:06:52.09347819Z 37 PC: 12ab6 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T13:06:52.094828738Z 53 PC: 12abb | Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-25T13:06:52.101454361Z 37 PC: 12acb | Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-25T13:06:52.104881279Z 74 PC: 12ae6 | Reallocate memory
2018-12-25T13:06:52.106595287Z 75 PC: 12b1d | Execute program
2018-12-25T13:06:52.123761952Z 76 PC: 12fa6 | Terminate with return code (Return code = '0')
2018-12-25T13:06:52.128176359Z 77 PC: 12b21 | Get program return code
2018-12-25T13:06:52.129555769Z 49 PC: 12b2a | Terminate and stay resident (Return code = '0' | Memory size = '79')

{"DateBased":true,"Day":1,"Month":1,"Year":1988,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4582,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:52:16.739357457Z 221 PC: 12a5f | UNKNOWN!
2018-12-25T11:52:16.740987605Z 53 PC: 12aa6 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:52:16.742189058Z 37 PC: 12ab6 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:52:16.743314576Z 53 PC: 12abb | Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-25T11:52:16.74469989Z 37 PC: 12acb | Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-25T11:52:16.746512497Z 74 PC: 12ae6 | Reallocate memory
2018-12-25T11:52:16.747854937Z 75 PC: 12b1d | Execute program
2018-12-25T11:52:16.761861051Z 76 PC: 12fa6 | Terminate with return code (Return code = '0')
2018-12-25T11:52:16.765238684Z 77 PC: 12b21 | Get program return code
2018-12-25T11:52:16.766419543Z 49 PC: 12b2a | Terminate and stay resident (Return code = '0' | Memory size = '79')