Sample viewer

vx.netlux.org/Virus.DOS.I13.Albi.2180

Time	Syscall Op	Syscall Name
2018-12-17T22:29:58.000364128Z	219	PC: 12a6e \| UNKNOWN!
2018-12-17T22:29:58.001565197Z	88	PC: 12a79 \| case 0xGet or set allocation strateg:
2018-12-17T22:29:58.007873147Z	53	PC: 12a87 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:29:58.009359463Z	74	PC: 12ae6 \| Reallocate memory
2018-12-17T22:29:58.011011161Z	72	PC: 12aed \| Allocate memory
2018-12-17T22:29:58.013322951Z	37	PC: 12b19 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:29:58.015502279Z	42	PC: 12b20 \| Get date 0x12b20: cmp dh, 6 0x12b23: jne 0x12b2e 0x12b25: in ax, 0x40 0x12b27: cmp al, 0xc8 0x12b29: jbe 0x12b2e 0x12b2b: jmp 0x12f77 0x12b2e: push es 0x12b2f: pop ds 0x12b30: push es 0x12b31: pop ax 0x12b32: add ax, 0x10 0x12b35: sub cx, cx 0x12b37: add word ptr cs:[si + 0x11c], ax 0x12b3c: cli 0x12b3d: xor dx, dx 0x12b3f: add ax, word ptr cs:[si + 0x120] 0x12b44: sub bp, bp 0x12b46: mov ss, ax 0x12b48: xor di, di 0x12b4a: mov sp, word ptr cs:[si + 0x11e]
2018-12-17T22:29:58.018839603Z	2	PC: 13b97 \| Character output (Char = '07')
2018-12-17T22:29:58.022380895Z	76	PC: 13b9c \| Terminate with return code (Return code = '0')

Time	Syscall Op	Syscall Name
2018-12-25T11:54:15.536746057Z	219	PC: 12a6e \| UNKNOWN!
2018-12-25T11:54:15.537976441Z	88	PC: 12a79 \| case 0xGet or set allocation strateg:
2018-12-25T11:54:15.539799858Z	53	PC: 12a87 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:15.54172974Z	74	PC: 12ae6 \| Reallocate memory
2018-12-25T11:54:15.5442076Z	72	PC: 12aed \| Allocate memory
2018-12-25T11:54:15.547351776Z	37	PC: 12b19 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:15.550588719Z	42	PC: 12b20 \| Get date 0x12b20: cmp dh, 6 0x12b23: jne 0x12b2e 0x12b25: in ax, 0x40 0x12b27: cmp al, 0xc8 0x12b29: jbe 0x12b2e 0x12b2b: jmp 0x12f77 0x12b2e: push es 0x12b2f: pop ds 0x12b30: push es 0x12b31: pop ax 0x12b32: add ax, 0x10 0x12b35: sub cx, cx 0x12b37: add word ptr cs:[si + 0x11c], ax 0x12b3c: cli 0x12b3d: xor dx, dx 0x12b3f: add ax, word ptr cs:[si + 0x120] 0x12b44: sub bp, bp 0x12b46: mov ss, ax 0x12b48: xor di, di 0x12b4a: mov sp, word ptr cs:[si + 0x11e]
2018-12-25T11:54:15.558402085Z	2	PC: 13b97 \| Character output (Char = '07')
2018-12-25T11:54:15.560486004Z	76	PC: 13b9c \| Terminate with return code (Return code = '0')

Time	Syscall Op	Syscall Name
2018-12-25T11:54:15.995263345Z	219	PC: 12a6e \| UNKNOWN!
2018-12-25T11:54:15.996574709Z	88	PC: 12a79 \| case 0xGet or set allocation strateg:
2018-12-25T11:54:15.997529588Z	53	PC: 12a87 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:15.998490835Z	74	PC: 12ae6 \| Reallocate memory
2018-12-25T11:54:16.000398779Z	72	PC: 12aed \| Allocate memory
2018-12-25T11:54:16.001517383Z	37	PC: 12b19 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:16.00247847Z	42	PC: 12b20 \| Get date 0x12b20: cmp dh, 6 0x12b23: jne 0x12b2e 0x12b25: in ax, 0x40 0x12b27: cmp al, 0xc8 0x12b29: jbe 0x12b2e 0x12b2b: jmp 0x12f77 0x12b2e: push es 0x12b2f: pop ds 0x12b30: push es 0x12b31: pop ax 0x12b32: add ax, 0x10 0x12b35: sub cx, cx 0x12b37: add word ptr cs:[si + 0x11c], ax 0x12b3c: cli 0x12b3d: xor dx, dx 0x12b3f: add ax, word ptr cs:[si + 0x120] 0x12b44: sub bp, bp 0x12b46: mov ss, ax 0x12b48: xor di, di 0x12b4a: mov sp, word ptr cs:[si + 0x11e]
2018-12-25T11:54:16.004681976Z	2	PC: 13b97 \| Character output (Char = '07')
2018-12-25T11:54:16.006202728Z	76	PC: 13b9c \| Terminate with return code (Return code = '0')