Sample viewer

vx.netlux.org/Virus.DOS.Godzina_II.1305

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:32:53.84017165Z 68 PC: 2209a | I/O control for devices (Set for = '')
2018-12-17T22:32:53.846360046Z 74 PC: 220c9 | Reallocate memory
2018-12-17T22:32:53.848207515Z 88 PC: 220d0 | case 0xGet or set allocation strateg:
2018-12-17T22:32:53.849655209Z 88 PC: 220dc | case 0xGet or set allocation strateg:
2018-12-17T22:32:53.852099819Z 72 PC: 220e6 | Allocate memory
2018-12-17T22:32:53.853946412Z 53 PC: 220f7 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:32:53.85557938Z 88 PC: 2212e | case 0xGet or set allocation strateg:
2018-12-17T22:32:53.857474475Z 9 PC: 12a82 | Display string (String= 'Goat file (EXE). Size=0000F400h/0000062464d bytes. ')
2018-12-17T22:32:53.864024726Z 76 PC: 12a86 | Terminate with return code (Return code = '36')

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":5877,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:55:35.306049173Z 68 PC: 2209a | I/O control for devices (Set for = '')
2018-12-25T11:55:35.308561573Z 74 PC: 220c9 | Reallocate memory
2018-12-25T11:55:35.310264703Z 88 PC: 220d0 | case 0xGet or set allocation strateg:
2018-12-25T11:55:35.311401026Z 88 PC: 220dc | case 0xGet or set allocation strateg:
2018-12-25T11:55:35.314442348Z 72 PC: 220e6 | Allocate memory
2018-12-25T11:55:35.316649299Z 53 PC: 220f7 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:55:35.318466355Z 88 PC: 2212e | case 0xGet or set allocation strateg:
2018-12-25T11:55:35.320882889Z 9 PC: 12a82 | Display string (String= 'Goat file (EXE). Size=0000F400h/0000062464d bytes. ')
2018-12-25T11:55:35.327424211Z 76 PC: 12a86 | Terminate with return code (Return code = '36')

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":1,"Min":0,"Second":0,"TimeBased":true,"OriginalID":5877,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:55:35.463555277Z 68 PC: 2209a | I/O control for devices (Set for = '')
2018-12-25T11:55:35.465577488Z 74 PC: 220c9 | Reallocate memory
2018-12-25T11:55:35.466975153Z 88 PC: 220d0 | case 0xGet or set allocation strateg:
2018-12-25T11:55:35.468061069Z 88 PC: 220dc | case 0xGet or set allocation strateg:
2018-12-25T11:55:35.469610075Z 72 PC: 220e6 | Allocate memory
2018-12-25T11:55:35.47164765Z 53 PC: 220f7 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:55:35.473453951Z 88 PC: 2212e | case 0xGet or set allocation strateg:
2018-12-25T11:55:35.476140452Z 9 PC: 12a82 | Display string (String= 'Goat file (EXE). Size=0000F400h/0000062464d bytes. ')
2018-12-25T11:55:35.481852134Z 76 PC: 12a86 | Terminate with return code (Return code = '36')