Sample viewer

vx.netlux.org/Virus.DOS.Ultimation

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:35:37.472551289Z	48	PC: 12a4c \| Get DOS version
2018-12-17T22:35:37.4764764Z	53	PC: 12bab \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:35:37.478537806Z	53	PC: 12bb8 \| Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:35:37.480420347Z	53	PC: 12bc5 \| Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T22:35:37.482244558Z	53	PC: 12bd2 \| Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T22:35:37.484871064Z	37	PC: 12be6 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:35:37.487985164Z	74	PC: 12af4 \| Reallocate memory
2018-12-17T22:35:37.492216269Z	68	PC: 14c22 \| I/O control for devices (Set for = '�H')
2018-12-17T22:35:37.500111647Z	68	PC: 14c22 \| I/O control for devices (Set for = '�H')
2018-12-17T22:35:37.504319118Z	47	PC: 14a30 \| Get disk transfer address
2018-12-17T22:35:37.505696771Z	26	PC: 14a39 \| Set disk transfer address
2018-12-17T22:35:37.511431927Z	78	PC: 14a43 \| Find first file
2018-12-17T22:35:37.517748744Z	26	PC: 14a4b \| Set disk transfer address
2018-12-17T22:35:37.519598634Z	47	PC: 14a30 \| Get disk transfer address
2018-12-17T22:35:37.523588506Z	26	PC: 14a39 \| Set disk transfer address
2018-12-17T22:35:37.525238892Z	78	PC: 14a43 \| Find first file
2018-12-17T22:35:37.531275693Z	26	PC: 14a4b \| Set disk transfer address
2018-12-17T22:35:37.534149844Z	61	PC: 14f15 \| Open file (Filename = 'TEST.EXE')
2018-12-17T22:35:37.54304156Z	68	PC: 14bc6 \| I/O control for devices (Set for = 't 1990 Borland Intl.')
2018-12-17T22:35:37.54488686Z	87	PC: 14b9e \| Get or set file date and time
2018-12-17T22:35:37.551244935Z	66	PC: 14a98 \| Move file pointer
2018-12-17T22:35:37.553236049Z	66	PC: 14aa5 \| Move file pointer
2018-12-17T22:35:37.55509194Z	66	PC: 14ab4 \| Move file pointer
2018-12-17T22:35:37.557351377Z	62	PC: 1485e \| Close file
2018-12-17T22:35:37.560118627Z	86	PC: 14f4b \| Rename file
2018-12-17T22:35:37.578774385Z	67	PC: 14786 \| Get or set file attributes
2018-12-17T22:35:37.595519319Z	55	PC: 137d7 \| Get or set switch character
2018-12-17T22:35:37.599279151Z	41	PC: 162ed \| Parse filename
2018-12-17T22:35:37.601601536Z	41	PC: 162fb \| Parse filename
2018-12-17T22:35:37.603963506Z	75	PC: 1633b \| Execute program
2018-12-17T22:35:37.625921217Z	80	PC: 27a79 \| Set current PSP
2018-12-17T22:35:37.628404905Z	48	PC: 27a7e \| Get DOS version
2018-12-17T22:35:37.630848367Z	99	PC: 2e260 \| Get DBCS lead byte table pointer
2018-12-17T22:35:37.634332171Z	101	PC: 27b04 \| Get extended country info
2018-12-17T22:35:37.636675756Z	99	PC: 27b0a \| Get DBCS lead byte table pointer
2018-12-17T22:35:37.638163436Z	74	PC: 27b6c \| Reallocate memory
2018-12-17T22:35:37.639702853Z	25	PC: 27ba3 \| Get default drive
2018-12-17T22:35:37.645612366Z	37	PC: 27663 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:35:37.648372022Z	37	PC: 2766a \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:35:37.649918603Z	37	PC: 27671 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:35:37.659142512Z	74	PC: 2680c \| Reallocate memory
2018-12-17T22:35:37.661760021Z	72	PC: 2684d \| Allocate memory
2018-12-17T22:35:37.664083017Z	72	PC: 26885 \| Allocate memory
2018-12-17T22:35:37.667472815Z	72	PC: 2688d \| Allocate memory