Sample viewer

vx.netlux.org/Virus.DOS.Sirius.2057

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:54:31.324251583Z	254	PC: 151a4 \| UNKNOWN!
2018-12-17T21:54:31.338410199Z	9	PC: 12a4f \| Display string (String= 'þ Checking for active virus... ')
2018-12-17T21:54:31.344281324Z	60	PC: 12a7f \| Create or truncate file
2018-12-17T21:54:31.363599647Z	9	PC: 12a87 \| Display string (String= 'þ Writing Viruscode to disk... ')
2018-12-17T21:54:31.367360433Z	64	PC: 12a9a \| Write file or device (Write 63232 bytes on handle 5)
2018-12-17T21:54:31.375301541Z	62	PC: 12a9e \| Close file
2018-12-17T21:54:31.380518071Z	9	PC: 12aa5 \| Display string (String= 'þ Program terminated. ')
2018-12-17T21:54:31.38346752Z	76	PC: 12aaa \| Terminate with return code (Return code = '255')
2018-12-17T21:54:31.385907094Z	77	PC: 11fe0 \| Get program return code
2018-12-17T21:54:31.38677832Z	72	PC: 12174 \| Allocate memory
2018-12-17T21:54:31.388433322Z	72	PC: 1218d \| Allocate memory
2018-12-17T21:54:31.3897373Z	2	PC: 1268d \| Character output (Char = '0d')
2018-12-17T21:54:31.391116517Z	2	PC: 1268d \| Character output (Char = '0a')
2018-12-17T21:54:31.395990697Z	2	PC: 1268d \| Character output (Char = '4d')
2018-12-17T21:54:31.398447952Z	2	PC: 1268d \| Character output (Char = '65')
2018-12-17T21:54:31.400486965Z	2	PC: 1268d \| Character output (Char = '6d')
2018-12-17T21:54:31.402986212Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T21:54:31.405061722Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T21:54:31.407232367Z	2	PC: 1268d \| Character output (Char = '79')
2018-12-17T21:54:31.409438401Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T21:54:31.411956445Z	2	PC: 1268d \| Character output (Char = '61')
2018-12-17T21:54:31.414043588Z	2	PC: 1268d \| Character output (Char = '6c')
2018-12-17T21:54:31.416310199Z	2	PC: 1268d \| Character output (Char = '6c')
2018-12-17T21:54:31.419311369Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T21:54:31.425940041Z	2	PC: 1268d \| Character output (Char = '63')
2018-12-17T21:54:31.427998673Z	2	PC: 1268d \| Character output (Char = '61')
2018-12-17T21:54:31.430945318Z	2	PC: 1268d \| Character output (Char = '74')
2018-12-17T21:54:31.432996071Z	2	PC: 1268d \| Character output (Char = '69')
2018-12-17T21:54:31.435012505Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T21:54:31.437299545Z	2	PC: 1268d \| Character output (Char = '6e')
2018-12-17T21:54:31.439415387Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T21:54:31.441572678Z	2	PC: 1268d \| Character output (Char = '65')
2018-12-17T21:54:31.444092218Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T21:54:31.446567165Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T21:54:31.449044285Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T21:54:31.452033501Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T21:54:31.45444918Z	2	PC: 1268d \| Character output (Char = '0d')
2018-12-17T21:54:31.456664202Z	2	PC: 1268d \| Character output (Char = '0a')
2018-12-17T21:54:31.460569882Z	2	PC: 1268d \| Character output (Char = '43')
2018-12-17T21:54:31.462606148Z	2	PC: 1268d \| Character output (Char = '61')
2018-12-17T21:54:31.464988747Z	2	PC: 1268d \| Character output (Char = '6e')
2018-12-17T21:54:31.467507162Z	2	PC: 1268d \| Character output (Char = '6e')
2018-12-17T21:54:31.469493658Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T21:54:31.47109028Z	2	PC: 1268d \| Character output (Char = '74')
2018-12-17T21:54:31.473504136Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T21:54:31.475744294Z	2	PC: 1268d \| Character output (Char = '6c')
2018-12-17T21:54:31.477730022Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T21:54:31.479665042Z	2	PC: 1268d \| Character output (Char = '61')
2018-12-17T21:54:31.481795427Z	2	PC: 1268d \| Character output (Char = '64')
2018-12-17T21:54:31.483623884Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T21:54:31.485493614Z	2	PC: 1268d \| Character output (Char = '43')
2018-12-17T21:54:31.487120326Z	2	PC: 1268d \| Character output (Char = '4f')
2018-12-17T21:54:31.488759611Z	2	PC: 1268d \| Character output (Char = '4d')
2018-12-17T21:54:31.490928585Z	2	PC: 1268d \| Character output (Char = '4d')
2018-12-17T21:54:31.492981582Z	2	PC: 1268d \| Character output (Char = '41')
2018-12-17T21:54:31.494978093Z	2	PC: 1268d \| Character output (Char = '4e')
2018-12-17T21:54:31.497004557Z	2	PC: 1268d \| Character output (Char = '44')
2018-12-17T21:54:31.498637457Z	2	PC: 1268d \| Character output (Char = '2c')
2018-12-17T21:54:31.500235053Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T21:54:31.502893668Z	2	PC: 1268d \| Character output (Char = '73')
2018-12-17T21:54:31.505114899Z	2	PC: 1268d \| Character output (Char = '79')
2018-12-17T21:54:31.507066474Z	2	PC: 1268d \| Character output (Char = '73')
2018-12-17T21:54:31.509432577Z	2	PC: 1268d \| Character output (Char = '74')
2018-12-17T21:54:31.511002031Z	2	PC: 1268d \| Character output (Char = '65')
2018-12-17T21:54:31.512818642Z	2	PC: 1268d \| Character output (Char = '6d')
2018-12-17T21:54:31.516563442Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T21:54:31.518409193Z	2	PC: 1268d \| Character output (Char = '68')
2018-12-17T21:54:31.520594281Z	2	PC: 1268d \| Character output (Char = '61')
2018-12-17T21:54:31.523163626Z	2	PC: 1268d \| Character output (Char = '6c')
2018-12-17T21:54:31.524979818Z	2	PC: 1268d \| Character output (Char = '74')
2018-12-17T21:54:31.526579837Z	2	PC: 1268d \| Character output (Char = '65')
2018-12-17T21:54:31.529052247Z	2	PC: 1268d \| Character output (Char = '64')
2018-12-17T21:54:31.530569008Z	2	PC: 1268d \| Character output (Char = '0d')
2018-12-17T21:54:31.531891157Z	2	PC: 1268d \| Character output (Char = '0a')