Sample viewer

vx.netlux.org/Virus.DOS.PMM.575

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:42:31.161662567Z	26	PC: 13e1d \| Set disk transfer address
2018-12-17T22:42:31.164368885Z	78	PC: 13e0d \| Find first file
2018-12-17T22:42:31.172571923Z	79	PC: 13e0d \| Find next file
2018-12-17T22:42:31.175823639Z	79	PC: 13e0d \| Find next file
2018-12-17T22:42:31.179063107Z	61	PC: 13e48 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:42:31.187527987Z	63	PC: 13e1d \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:42:31.19489449Z	66	PC: 13e63 \| Move file pointer
2018-12-17T22:42:31.196823504Z	64	PC: 13e1d \| Write file or device (Write 575 bytes on handle 5)
2018-12-17T22:42:31.214011077Z	66	PC: 13e75 \| Move file pointer
2018-12-17T22:42:31.216408165Z	64	PC: 13e1d \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:42:31.224130409Z	87	PC: 13e93 \| Get or set file date and time
2018-12-17T22:42:31.228168851Z	62	PC: 13e99 \| Close file
2018-12-17T22:42:31.236965998Z	79	PC: 13e0d \| Find next file
2018-12-17T22:42:31.239909273Z	79	PC: 13e0d \| Find next file
2018-12-17T22:42:31.243584395Z	79	PC: 13e0d \| Find next file
2018-12-17T22:42:31.247650345Z	79	PC: 13e0d \| Find next file
2018-12-17T22:42:31.250842974Z	79	PC: 13e0d \| Find next file
2018-12-17T22:42:31.255459178Z	79	PC: 13e0d \| Find next file
2018-12-17T22:42:31.258544188Z	26	PC: 13e1d \| Set disk transfer address
2018-12-17T22:42:31.260382557Z	9	PC: 12a86 \| Display string (String= 'Goat file (COM/....). Size=00001388h/0000005000d bytes. ')
2018-12-17T22:42:31.268042246Z	48	PC: 12a8f \| Get DOS version
2018-12-17T22:42:31.27030274Z	61	PC: 12b5c \| Open file (Filename = '')
2018-12-17T22:42:31.278781498Z	93	PC: 12afe \| File sharing functions
2018-12-17T22:42:31.28135157Z	9	PC: 12a86 \| Display string (String= 'Size change=023Fh/00575d. ')
2018-12-17T22:42:31.287524847Z	76	PC: 12ae3 \| Terminate with return code (Return code = '1')