Sample viewer

vx.netlux.org/Virus.DOS.Rajaat.287

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:44:47.099126297Z 48 PC: 12a4a | Get DOS version
2018-12-17T22:44:47.101096067Z 53 PC: 12a55 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:44:47.103547481Z 37 PC: 12a65 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:44:47.104985933Z 74 PC: 12a7b | Reallocate memory
2018-12-17T22:44:47.107341667Z 73 PC: 12a83 | Release memory
2018-12-17T22:44:47.109947692Z 60 PC: 12af9 | Create or truncate file
2018-12-17T22:44:47.13120689Z 64 PC: 12af9 | Write file or device (Write 287 bytes on handle 5)
2018-12-17T22:44:47.136067649Z 62 PC: 12af9 | Close file
2018-12-17T22:44:47.145619008Z 75 PC: 12aba | Execute program
2018-12-17T22:44:47.15258432Z 49 PC: 12ac7 | Terminate and stay resident (Return code = '0' | Memory size = '41')