Sample viewer

vx.netlux.org/Virus.DOS.HLLO.NumberOne.a

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:41:40.974908526Z 48 PC: 13268 | Get DOS version
2018-12-17T22:41:40.976905348Z 74 PC: 13268 | Reallocate memory
2018-12-17T22:41:40.978653273Z 37 PC: 13268 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:41:41.071939436Z 53 PC: 13268 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:41:41.073949038Z 37 PC: 13268 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:41:41.0829483Z 25 PC: 13268 | Get default drive
2018-12-17T22:41:41.084281097Z 71 PC: 13268 | Get current directory
2018-12-17T22:41:41.089279736Z 26 PC: 1576b | Set disk transfer address
2018-12-17T22:41:41.090801206Z 78 PC: 1579d | Find first file
2018-12-17T22:41:41.098125806Z 61 PC: 13268 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:41:41.106020629Z 63 PC: 13268 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:41:41.11328543Z 66 PC: 13268 | Move file pointer
2018-12-17T22:41:41.115255809Z 64 PC: 13268 | Write file or device (Write 12032 bytes on handle 5)
2018-12-17T22:41:41.130321094Z 62 PC: 13268 | Close file
2018-12-17T22:41:41.143222691Z 37 PC: 13268 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:41:41.144667858Z 76 PC: 13268 | Terminate with return code (Return code = '0')