Sample viewer

vx.netlux.org/Virus.DOS.Kot.900

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:35:58.115168726Z 53 PC: 13de8 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:35:58.117459686Z 255 PC: 13df5 | UNKNOWN!
2018-12-17T22:35:58.118411987Z 53 PC: 13e02 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:35:58.119607589Z 48 PC: 13e0e | Get DOS version
2018-12-17T22:35:58.120694814Z 53 PC: 13e26 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:35:58.122220289Z 37 PC: 13e6b | Set interrupt vector (Interrupt = '84' AKA 'Get verify flag')
2018-12-17T22:35:58.12338891Z 37 PC: 13e73 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:35:58.124553114Z 37 PC: 13e85 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:35:58.12667094Z 9 PC: 13dc6 | Display string (String= 'Hello - Copyright S & S International, 1990 ')