Sample viewer

vx.netlux.org/Virus.DOS.PS-MPC.351

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:42:57.108332896Z	26	PC: 1517d \| Set disk transfer address
2018-12-17T22:42:57.114268404Z	53	PC: 15182 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:42:57.11669405Z	37	PC: 15192 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:42:57.119016892Z	78	PC: 1519f \| Find first file
2018-12-17T22:42:57.126424294Z	61	PC: 152a0 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:42:57.133660655Z	63	PC: 151b1 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:42:57.140238179Z	62	PC: 151b5 \| Close file
2018-12-17T22:42:57.14235794Z	67	PC: 152ab \| Get or set file attributes
2018-12-17T22:42:57.159503283Z	61	PC: 152a0 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:42:57.168661424Z	64	PC: 1523a \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:42:57.172023117Z	66	PC: 15242 \| Move file pointer
2018-12-17T22:42:57.174888408Z	64	PC: 1524d \| Write file or device (Write 351 bytes on handle 5)
2018-12-17T22:42:57.184447883Z	87	PC: 1525a \| Get or set file date and time
2018-12-17T22:42:57.186535864Z	62	PC: 1525e \| Close file
2018-12-17T22:42:57.196618211Z	67	PC: 152ab \| Get or set file attributes
2018-12-17T22:42:57.204921025Z	37	PC: 151f7 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:42:57.206608244Z	26	PC: 15200 \| Set disk transfer address
2018-12-17T22:42:57.211275801Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T22:42:57.21535406Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T22:42:57.227068552Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')