Sample viewer

vx.netlux.org/Virus.DOS.Grog.1372

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:38:01.726763543Z 42 PC: 12b30 | Get date 0x12b30: or dh, 0xfe
0x12b33: cmp dh, 0xff
0x12b36: jne 0x12b41
0x12b38: or dl, 0xfa
0x12b3b: cmp dl, 0xff
0x12b3e: call 0x12f86
0x12b41: mov ds, bp
0x12b43: push cs
0x12b44: pop es
0x12b45: mov si, 0x649
0x12b48: mov di, 0x100
0x12b4b: movsw word ptr es:[di], word ptr [si]
0x12b4c: movsw word ptr es:[di], word ptr [si]
0x12b4d: push cs
0x12b4e: push cs
0x12b4f: pop ds
0x12b50: pop es
0x12b51: mov ax, 0x100
0x12b54: push ax
0x12b55: xor ax, ax

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6559,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:59:50.384460834Z 42 PC: 12b30 | Get date 0x12b30: or dh, 0xfe
0x12b33: cmp dh, 0xff
0x12b36: jne 0x12b41
0x12b38: or dl, 0xfa
0x12b3b: cmp dl, 0xff
0x12b3e: call 0x12f86
0x12b41: mov ds, bp
0x12b43: push cs
0x12b44: pop es
0x12b45: mov si, 0x649
0x12b48: mov di, 0x100
0x12b4b: movsw word ptr es:[di], word ptr [si]
0x12b4c: movsw word ptr es:[di], word ptr [si]
0x12b4d: push cs
0x12b4e: push cs
0x12b4f: pop ds
0x12b50: pop es
0x12b51: mov ax, 0x100
0x12b54: push ax
0x12b55: xor ax, ax

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6559,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:59:50.462208334Z 42 PC: 12b30 | Get date 0x12b30: or dh, 0xfe
0x12b33: cmp dh, 0xff
0x12b36: jne 0x12b41
0x12b38: or dl, 0xfa
0x12b3b: cmp dl, 0xff
0x12b3e: call 0x12f86
0x12b41: mov ds, bp
0x12b43: push cs
0x12b44: pop es
0x12b45: mov si, 0x649
0x12b48: mov di, 0x100
0x12b4b: movsw word ptr es:[di], word ptr [si]
0x12b4c: movsw word ptr es:[di], word ptr [si]
0x12b4d: push cs
0x12b4e: push cs
0x12b4f: pop ds
0x12b50: pop es
0x12b51: mov ax, 0x100
0x12b54: push ax
0x12b55: xor ax, ax