Sample viewer

vx.netlux.org/Virus.DOS.Hi.460

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:27:00.558834345Z 53 PC: 134a4 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:27:00.560361251Z 37 PC: 134b6 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:27:00.561483012Z 48 PC: 12a87 | Get DOS version
2018-12-17T22:27:00.562531171Z 9 PC: 12a96 | Display string (String= 'The Norton Procoller, Copyright (C) 1186, 88, 89, Peder Norton Computing, Inc. ')
2018-12-17T22:27:00.569073147Z 74 PC: 12adc | Reallocate memory
2018-12-17T22:27:00.570817749Z 37 PC: 12af0 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:27:00.571874815Z 51 PC: 12d58 | Get or set Ctrl-Break
2018-12-17T22:27:00.57307147Z 51 PC: 12d63 | Get or set Ctrl-Break
2018-12-17T22:27:00.574018713Z 72 PC: 13109 | Allocate memory
2018-12-17T22:27:00.575688012Z 41 PC: 13184 | Parse filename
2018-12-17T22:27:00.577617703Z 41 PC: 1318d | Parse filename
2018-12-17T22:27:00.579084598Z 53 PC: 9f89a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:27:00.580152179Z 37 PC: 9f8aa | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:27:00.581381204Z 67 PC: 9f8b1 | Get or set file attributes
2018-12-17T22:27:00.587355282Z 67 PC: 9f8bb | Get or set file attributes
2018-12-17T22:27:00.592979013Z 37 PC: 9f949 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:27:00.594129025Z 75 PC: 13157 | Execute program