Sample viewer

vx.netlux.org/Virus.DOS.Deicide.665

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:28:22.274588152Z 25 PC: 12aad | Get default drive
2018-12-17T22:28:22.276874417Z 71 PC: 12abc | Get current directory
2018-12-17T22:28:22.282357652Z 26 PC: 12ac3 | Set disk transfer address
2018-12-17T22:28:22.284153853Z 59 PC: 12aca | Change current directory
2018-12-17T22:28:22.289946619Z 78 PC: 12ad4 | Find first file
2018-12-17T22:28:22.297962943Z 61 PC: 12ae8 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:28:22.30547388Z 87 PC: 12af3 | Get or set file date and time
2018-12-17T22:28:22.307445798Z 66 PC: 12b8d | Move file pointer
2018-12-17T22:28:22.31047662Z 63 PC: 12b08 | Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:28:22.317868433Z 66 PC: 12b8d | Move file pointer
2018-12-17T22:28:22.319799727Z 64 PC: 12b57 | Write file or device (Write 665 bytes on handle 5)
2018-12-17T22:28:22.337158125Z 87 PC: 12b65 | Get or set file date and time
2018-12-17T22:28:22.339126355Z 62 PC: 12b69 | Close file
2018-12-17T22:28:22.347877664Z 14 PC: 12b71 | Set default drive (Drive = 'A')
2018-12-17T22:28:22.349937114Z 59 PC: 12b78 | Change current directory
2018-12-17T22:28:22.352595708Z 9 PC: 12b7f | Display string (String= 'File corruption error. ')