Sample viewer

vx.netlux.org/Virus.DOS.GreenMonster.784

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:28:09.784289525Z 53 PC: 15fec | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:28:09.786699887Z 243 PC: 1600f | UNKNOWN!
2018-12-17T22:28:09.788046002Z 74 PC: 16030 | Reallocate memory
2018-12-17T22:28:09.789990084Z 72 PC: 16037 | Allocate memory
2018-12-17T22:28:09.792412207Z 53 PC: 16061 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:28:09.794024856Z 37 PC: 1606c | Set interrupt vector (Interrupt = '145' AKA 'UNKNOWN!')
2018-12-17T22:28:09.795667218Z 37 PC: 16074 | Set interrupt vector (Interrupt = '144' AKA 'UNKNOWN!')
2018-12-17T22:28:09.79769224Z 37 PC: 16081 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:28:09.805851326Z 9 PC: 1544f | Display string (String= 'Keyboard driver installed. (C) 1988 A.Strakhov, AcademySoft. ')
2018-12-17T22:28:09.81249396Z 9 PC: 158cf | Display string (String= 'Switch RUS/LAT modes : ')
2018-12-17T22:28:09.815574282Z 9 PC: 158dd | Display string (String= '+')
2018-12-17T22:28:09.819179188Z 9 PC: 158e4 | Display string (String= ' ')
2018-12-17T22:28:09.831409838Z 9 PC: 158cf | Display string (String= 'Switch IBM/RUS modes : ')
2018-12-17T22:28:09.841915335Z 9 PC: 158dd | Display string (String= '++')
2018-12-17T22:28:09.84510467Z 9 PC: 158e4 | Display string (String= ' ')
2018-12-17T22:28:09.849340491Z 49 PC: 15472 | Terminate and stay resident (Return code = '0' | Memory size = '680')