Sample viewer

vx.netlux.org/Virus.DOS.Perfume.731.a

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:41:59.283907833Z 11 PC: 9f8db | Get input status
2018-12-17T22:41:59.286572227Z 53 PC: 9f959 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:41:59.288274985Z 37 PC: 9f96d | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:41:59.2895979Z 25 PC: 9f9e5 | Get default drive
2018-12-17T22:41:59.292237157Z 67 PC: 9fa1c | Get or set file attributes
2018-12-17T22:41:59.298367461Z 67 PC: 9fa26 | Get or set file attributes
2018-12-17T22:41:59.303064092Z 61 PC: 9fa2b | Open file (Filename = '�')
2018-12-17T22:41:59.30827566Z 87 PC: 9fac2 | Get or set file date and time
2018-12-17T22:41:59.310322044Z 62 PC: 9fac7 | Close file
2018-12-17T22:41:59.311605444Z 67 PC: 9facf | Get or set file attributes
2018-12-17T22:41:59.316329567Z 11 PC: 9f985 | Get input status
2018-12-17T22:41:59.319410123Z 42 PC: 9f8e4 | Get date 0x9f8e4: cmp cx, word ptr [0x7c]
0x9f8e8: jb 0x9f922
0x9f8ea: cmp dx, word ptr [0x7e]
0x9f8ee: jb 0x9f922
0x9f8f0: push cs
0x9f8f1: pop ds
0x9f8f2: mov dx, 0xf
0x9f8f5: mov ah, 9
0x9f8f7: int 0x21
0x9f8f9: mov ah, 0xa
0x9f8fb: mov dx, 0x34
0x9f8fe: int 0x21
0x9f900: mov bx, dx
0x9f902: cmp word ptr [bx + 1], 0x3404
0x9f907: jne 0x9f916
0x9f909: cmp byte ptr [bx + 3], 0x37
0x9f90d: jne 0x9f916
0x9f90f: cmp word ptr [bx + 4], 0x3131
0x9f914: je 0x9f922
0x9f916: mov dx, 0x46
2018-12-17T22:41:59.321254617Z 9 PC: 9f8f9 | Display string (Could not find end pointer)
2018-12-17T22:41:59.324273758Z 10 PC: 9f900 | Buffered keyboard input