Sample viewer

vx.netlux.org/Virus.DOS.RiftVilly.469

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:31:51.254958889Z 241 PC: 13e57 | UNKNOWN!
2018-12-17T22:31:51.256577426Z 82 PC: 13e81 | Get DOS internal pointers (SYSVARS)
2018-12-17T22:31:51.257786302Z 53 PC: 13e99 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:31:51.25897026Z 37 PC: 13ea8 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:31:51.260295503Z 37 PC: 13eb0 | Set interrupt vector (Interrupt = '211' AKA 'UNKNOWN!')
2018-12-17T22:31:51.261833362Z 9 PC: 12a85 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T22:31:51.265697203Z 0 PC: 12a89 | Program terminate