Sample viewer

vx.netlux.org/Virus.DOS.VirDem.836

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:39:25.511685808Z	53	PC: 12ab2 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:39:25.513621828Z	37	PC: 12ac9 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:39:25.514832612Z	71	PC: 12ad4 \| Get current directory
2018-12-17T22:39:25.517737522Z	59	PC: 12adc \| Change current directory
2018-12-17T22:39:25.52234429Z	78	PC: 12b3e \| Find first file
2018-12-17T22:39:25.536112694Z	61	PC: 12b60 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:39:25.550045981Z	63	PC: 12b6c \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:39:25.557085325Z	62	PC: 12b70 \| Close file
2018-12-17T22:39:25.559403499Z	61	PC: 12b8d \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:39:25.567251164Z	67	PC: 12beb \| Get or set file attributes
2018-12-17T22:39:25.573882396Z	67	PC: 12bf5 \| Get or set file attributes
2018-12-17T22:39:25.591263922Z	63	PC: 12bbe \| Read file or device (Read 407 bytes on handle 5)
2018-12-17T22:39:25.594359217Z	62	PC: 12bc2 \| Close file
2018-12-17T22:39:25.59621127Z	61	PC: 12bc9 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:39:25.604430236Z	87	PC: 12bfc \| Get or set file date and time
2018-12-17T22:39:25.60601937Z	66	PC: 12c18 \| Move file pointer
2018-12-17T22:39:25.607704446Z	64	PC: 12c23 \| Write file or device (Write 836 bytes on handle 5)
2018-12-17T22:39:25.617699589Z	66	PC: 12c2e \| Move file pointer
2018-12-17T22:39:25.619285397Z	64	PC: 12c4c \| Write file or device (Write 407 bytes on handle 5)
2018-12-17T22:39:25.628288723Z	87	PC: 12c54 \| Get or set file date and time
2018-12-17T22:39:25.631482313Z	62	PC: 12c58 \| Close file
2018-12-17T22:39:25.640231323Z	59	PC: 12d3c \| Change current directory
2018-12-17T22:39:25.645449294Z	9	PC: 12aa2 \| Display string (String= 'ABCDE - This is a 100 byte COM test, 1994 ')