Sample viewer

vx.netlux.org/Virus.DOS.Hi.549

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:45:35.129583995Z 53 PC: 134b0 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:45:35.131432176Z 37 PC: 134c0 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:45:35.132778233Z 37 PC: 134c8 | Set interrupt vector (Interrupt = '23' AKA 'Rename file')
2018-12-17T22:45:35.134116588Z 9 PC: 12a86 | Display string (Could not find end pointer)
2018-12-17T22:45:35.143433239Z 48 PC: 12a8f | Get DOS version
2018-12-17T22:45:35.144887712Z 61 PC: 12b5c | Open file (Filename = '')
2018-12-17T22:45:35.153340396Z 93 PC: 12afe | File sharing functions
2018-12-17T22:45:35.156927466Z 9 PC: 12a86 | Display string (String= 'Size change=0225h/00549d. ')
2018-12-17T22:45:35.16165758Z 76 PC: 12ae3 | Terminate with return code (Return code = '1')