Sample viewer

vx.netlux.org/Virus.DOS.HLLO.3800

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:36:29.436174987Z	48	PC: 12a4b \| Get DOS version
2018-12-17T22:36:29.437821845Z	53	PC: 12b86 \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:36:29.438923121Z	53	PC: 12b93 \| Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:36:29.439866059Z	53	PC: 12ba0 \| Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T22:36:29.440849564Z	53	PC: 12bad \| Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T22:36:29.442507553Z	37	PC: 12bc1 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:36:29.443889816Z	74	PC: 12b18 \| Reallocate memory
2018-12-17T22:36:29.446693464Z	53	PC: 1367c \| Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:36:29.454499724Z	53	PC: 1367c \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:36:29.455974159Z	53	PC: 1367c \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:36:29.45721722Z	53	PC: 1367c \| Get interrupt vector (Interrupt = '64' AKA 'Write file or device')
2018-12-17T22:36:29.459516783Z	37	PC: 13692 \| Set interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:36:29.46109887Z	37	PC: 13692 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:36:29.462225513Z	37	PC: 13692 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:36:29.463779498Z	37	PC: 13692 \| Set interrupt vector (Interrupt = '64' AKA 'Write file or device')
2018-12-17T22:36:29.465304979Z	61	PC: 134d9 \| Open file (Filename = '�')
2018-12-17T22:36:29.472206753Z	68	PC: 1350e \| I/O control for devices (Set for = 'V��')
2018-12-17T22:36:29.474168933Z	66	PC: 135c8 \| Move file pointer
2018-12-17T22:36:29.475625184Z	63	PC: 13558 \| Read file or device (Read 3800 bytes on handle 5)