Sample viewer

vx.netlux.org/Virus.DOS.Sirius.Alive.4608.a

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:35:58.225397612Z	82	PC: 134db \| Get DOS internal pointers (SYSVARS)
2018-12-17T22:35:58.234652071Z	82	PC: 134db \| Get DOS internal pointers (SYSVARS)
2018-12-17T22:35:58.23676147Z	48	PC: 12a70 \| Get DOS version
2018-12-17T22:35:58.238813679Z	82	PC: 1336f \| Get DOS internal pointers (SYSVARS)
2018-12-17T22:35:58.240473513Z	48	PC: 1338a \| Get DOS version
2018-12-17T22:35:58.242864819Z	88	PC: 131c7 \| case 0xGet or set allocation strateg:
2018-12-17T22:35:58.244114072Z	88	PC: 131d1 \| case 0xGet or set allocation strateg:
2018-12-17T22:35:58.245443356Z	88	PC: 131de \| case 0xGet or set allocation strateg:
2018-12-17T22:35:58.247578796Z	88	PC: 131e6 \| case 0xGet or set allocation strateg:
2018-12-17T22:35:58.249750345Z	88	PC: 1326e \| case 0xGet or set allocation strateg:
2018-12-17T22:35:58.251062389Z	88	PC: 1327a \| case 0xGet or set allocation strateg:
2018-12-17T22:35:58.253213962Z	74	PC: 13290 \| Reallocate memory
2018-12-17T22:35:58.254857894Z	74	PC: 1329e \| Reallocate memory
2018-12-17T22:35:58.257021847Z	82	PC: 132b8 \| Get DOS internal pointers (SYSVARS)
2018-12-17T22:35:58.262264678Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.263295416Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:35:58.264778287Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.274620354Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:35:58.276967021Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.278663332Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:35:58.282086157Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.283417436Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:35:58.285289804Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.301860073Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:35:58.303525309Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.304634739Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:35:58.306662653Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.308803109Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.311170513Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.313123457Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.315714564Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.316795337Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.319880365Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.321904451Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.324454032Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.326947125Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.32943716Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.330474924Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.332521475Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.333683296Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.335582652Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.337249306Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.33912566Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.340156196Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.34329224Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.344535615Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.346236634Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.348069465Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.349754092Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.350754769Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.35263337Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.353926528Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.355617261Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.35677215Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.358781486Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.359963315Z	62	PC: 122ab \| Close file
2018-12-17T22:35:58.364961779Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.366356099Z	61	PC: 12354 \| Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T22:35:58.373229633Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.376445056Z	66	PC: 12372 \| Move file pointer
2018-12-17T22:35:58.378124569Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.379805784Z	63	PC: 9d892 \| Read file or device (Read 44693 bytes on handle 5)
2018-12-17T22:35:58.394856099Z	87	PC: 9d892 \| Get or set file date and time
2018-12-17T22:35:58.397423686Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.398957965Z	62	PC: 1238a \| Close file
2018-12-17T22:35:58.403027892Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.404872429Z	99	PC: 980d7 \| Get DBCS lead byte table pointer
2018-12-17T22:35:58.406980234Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.408752096Z	56	PC: 928f9 \| Get or set country info
2018-12-17T22:35:58.41176905Z	64	PC: 98348 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:35:58.416683925Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.418728843Z	25	PC: 92962 \| Get default drive
2018-12-17T22:35:58.42088225Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.42232805Z	71	PC: 94bdd \| Get current directory
2018-12-17T22:35:58.427042414Z	64	PC: 98348 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:35:58.430706834Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.432158246Z	2	PC: 94bb2 \| Character output (Char = '3e')
2018-12-17T22:35:58.435084387Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.436521684Z	93	PC: 92a20 \| File sharing functions
2018-12-17T22:35:58.43878981Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.440420319Z	93	PC: 92a27 \| File sharing functions
2018-12-17T22:35:58.443642625Z	81	PC: 9d892 \| Get current PSP
2018-12-17T22:35:58.445731075Z	10	PC: 92a39 \| Buffered keyboard input