Sample viewer

vx.netlux.org/Virus.DOS.SMVB.708

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:55:23.39436185Z	56	PC: 12ca0 \| Get or set country info
2018-12-17T21:55:23.396980458Z	53	PC: 12b19 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:55:23.398198133Z	221	PC: 12b25 \| UNKNOWN!
2018-12-17T21:55:23.39918025Z	37	PC: 12b33 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:55:23.400523905Z	74	PC: 12ae5 \| Reallocate memory
2018-12-17T21:55:23.403313216Z	75	PC: 12b64 \| Execute program
2018-12-17T21:55:23.418154208Z	56	PC: 12ae5 \| Get or set country info
2018-12-17T21:55:23.420146354Z	53	PC: 12ae5 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:55:23.423172081Z	9	PC: 12ae5 \| Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T21:55:23.428909817Z	0	PC: 12ae5 \| Program terminate
2018-12-17T21:55:23.430758723Z	77	PC: 12ae5 \| Get program return code
2018-12-17T21:55:23.432682053Z	72	PC: 12ae5 \| Allocate memory
2018-12-17T21:55:23.435437563Z	2	PC: 12ae5 \| Character output (Char = '0d')
2018-12-17T21:55:23.437055721Z	2	PC: 12ae5 \| Character output (Char = '0a')
2018-12-17T21:55:23.439850797Z	2	PC: 12ae5 \| Character output (Char = '4d')
2018-12-17T21:55:23.441628283Z	2	PC: 12ae5 \| Character output (Char = '65')
2018-12-17T21:55:23.443157997Z	2	PC: 12ae5 \| Character output (Char = '6d')
2018-12-17T21:55:23.445633526Z	2	PC: 12ae5 \| Character output (Char = '6f')
2018-12-17T21:55:23.447202442Z	2	PC: 12ae5 \| Character output (Char = '72')
2018-12-17T21:55:23.448758676Z	2	PC: 12ae5 \| Character output (Char = '79')
2018-12-17T21:55:23.451086322Z	2	PC: 12ae5 \| Character output (Char = '20')
2018-12-17T21:55:23.452622868Z	2	PC: 12ae5 \| Character output (Char = '61')
2018-12-17T21:55:23.454982989Z	2	PC: 12ae5 \| Character output (Char = '6c')
2018-12-17T21:55:23.4576507Z	2	PC: 12ae5 \| Character output (Char = '6c')
2018-12-17T21:55:23.460534445Z	2	PC: 12ae5 \| Character output (Char = '6f')
2018-12-17T21:55:23.462619159Z	2	PC: 12ae5 \| Character output (Char = '63')
2018-12-17T21:55:23.465225017Z	2	PC: 12ae5 \| Character output (Char = '61')
2018-12-17T21:55:23.46804579Z	2	PC: 12ae5 \| Character output (Char = '74')
2018-12-17T21:55:23.470852741Z	2	PC: 12ae5 \| Character output (Char = '69')
2018-12-17T21:55:23.474311452Z	2	PC: 12ae5 \| Character output (Char = '6f')
2018-12-17T21:55:23.483613789Z	2	PC: 12ae5 \| Character output (Char = '6e')
2018-12-17T21:55:23.485984605Z	2	PC: 12ae5 \| Character output (Char = '20')
2018-12-17T21:55:23.48817795Z	2	PC: 12ae5 \| Character output (Char = '65')
2018-12-17T21:55:23.490685093Z	2	PC: 12ae5 \| Character output (Char = '72')
2018-12-17T21:55:23.493443697Z	2	PC: 12ae5 \| Character output (Char = '72')
2018-12-17T21:55:23.495663506Z	2	PC: 12ae5 \| Character output (Char = '6f')
2018-12-17T21:55:23.499139791Z	2	PC: 12ae5 \| Character output (Char = '72')
2018-12-17T21:55:23.501172397Z	2	PC: 12ae5 \| Character output (Char = '0d')
2018-12-17T21:55:23.50336172Z	2	PC: 12ae5 \| Character output (Char = '0a')
2018-12-17T21:55:23.507548554Z	2	PC: 12ae5 \| Character output (Char = '43')
2018-12-17T21:55:23.509573106Z	2	PC: 12ae5 \| Character output (Char = '61')
2018-12-17T21:55:23.512015323Z	2	PC: 12ae5 \| Character output (Char = '6e')
2018-12-17T21:55:23.514978766Z	2	PC: 12ae5 \| Character output (Char = '6e')
2018-12-17T21:55:23.517194394Z	2	PC: 12ae5 \| Character output (Char = '6f')
2018-12-17T21:55:23.51982791Z	2	PC: 12ae5 \| Character output (Char = '74')
2018-12-17T21:55:23.522323929Z	2	PC: 12ae5 \| Character output (Char = '20')
2018-12-17T21:55:23.524745514Z	2	PC: 12ae5 \| Character output (Char = '6c')
2018-12-17T21:55:23.527189326Z	2	PC: 12ae5 \| Character output (Char = '6f')
2018-12-17T21:55:23.531428836Z	2	PC: 12ae5 \| Character output (Char = '61')
2018-12-17T21:55:23.533978274Z	2	PC: 12ae5 \| Character output (Char = '64')
2018-12-17T21:55:23.536406303Z	2	PC: 12ae5 \| Character output (Char = '20')
2018-12-17T21:55:23.540654202Z	2	PC: 12ae5 \| Character output (Char = '43')
2018-12-17T21:55:23.542889338Z	2	PC: 12ae5 \| Character output (Char = '4f')
2018-12-17T21:55:23.545056255Z	2	PC: 12ae5 \| Character output (Char = '4d')
2018-12-17T21:55:23.556616809Z	2	PC: 12ae5 \| Character output (Char = '4d')
2018-12-17T21:55:23.559270028Z	2	PC: 12ae5 \| Character output (Char = '41')
2018-12-17T21:55:23.561404771Z	2	PC: 12ae5 \| Character output (Char = '4e')
2018-12-17T21:55:23.564366404Z	2	PC: 12ae5 \| Character output (Char = '44')
2018-12-17T21:55:23.566849712Z	2	PC: 12ae5 \| Character output (Char = '2c')
2018-12-17T21:55:23.568939279Z	2	PC: 12ae5 \| Character output (Char = '20')
2018-12-17T21:55:23.572591433Z	2	PC: 12ae5 \| Character output (Char = '73')
2018-12-17T21:55:23.574743041Z	2	PC: 12ae5 \| Character output (Char = '79')
2018-12-17T21:55:23.576785324Z	2	PC: 12ae5 \| Character output (Char = '73')
2018-12-17T21:55:23.580341736Z	2	PC: 12ae5 \| Character output (Char = '74')
2018-12-17T21:55:23.582632712Z	2	PC: 12ae5 \| Character output (Char = '65')
2018-12-17T21:55:23.585629248Z	2	PC: 12ae5 \| Character output (Char = '6d')
2018-12-17T21:55:23.591002628Z	2	PC: 12ae5 \| Character output (Char = '20')
2018-12-17T21:55:23.593523174Z	2	PC: 12ae5 \| Character output (Char = '68')
2018-12-17T21:55:23.596343717Z	2	PC: 12ae5 \| Character output (Char = '61')
2018-12-17T21:55:23.600565163Z	2	PC: 12ae5 \| Character output (Char = '6c')
2018-12-17T21:55:23.603198082Z	2	PC: 12ae5 \| Character output (Char = '74')
2018-12-17T21:55:23.60526259Z	2	PC: 12ae5 \| Character output (Char = '65')
2018-12-17T21:55:23.608108193Z	2	PC: 12ae5 \| Character output (Char = '64')
2018-12-17T21:55:23.610350964Z	2	PC: 12ae5 \| Character output (Char = '0d')
2018-12-17T21:55:23.612301226Z	2	PC: 12ae5 \| Character output (Char = '0a')