Sample viewer

vx.netlux.org/Virus.DOS.Saturday14

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:31:22.738926809Z	222	PC: 12ac9 \| UNKNOWN!
2018-12-17T22:31:22.742990867Z	53	PC: 12b03 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:31:22.744402704Z	37	PC: 12b15 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:31:22.745620869Z	9	PC: 12a47 \| Display string (String= 'This .COM program simply prints this message (we hope) !')
2018-12-17T22:31:22.748984442Z	76	PC: 12a4c \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":14,"Month":6,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5603,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:54:58.569595819Z	222	PC: 12ac9 \| UNKNOWN!
2018-12-25T11:54:58.571359358Z	53	PC: 12b03 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:58.572719518Z	37	PC: 12b15 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:58.573777841Z	9	PC: 12a47 \| Display string (String= 'This .COM program simply prints this message (we hope) !')
2018-12-25T11:54:58.577846278Z	76	PC: 12a4c \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5603,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:54:58.706143368Z	222	PC: 12ac9 \| UNKNOWN!
2018-12-25T11:54:58.707209651Z	53	PC: 12b03 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:58.708965465Z	37	PC: 12b15 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:58.710002396Z	9	PC: 12a47 \| Display string (String= 'This .COM program simply prints this message (we hope) !')
2018-12-25T11:54:58.71328234Z	76	PC: 12a4c \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":5,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5603,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:54:58.745989243Z	222	PC: 12ac9 \| UNKNOWN!
2018-12-25T11:54:58.747539408Z	53	PC: 12b03 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:58.748638177Z	37	PC: 12b15 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:54:58.750374241Z	9	PC: 12a47 \| Display string (String= 'This .COM program simply prints this message (we hope) !')
2018-12-25T11:54:58.754918962Z	76	PC: 12a4c \| Terminate with return code (Return code = '0')