Sample viewer

vx.netlux.org/Trojan.DOS.Jiang

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:45:43.841954038Z 61 PC: 12de6 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:45:43.849993779Z 63 PC: 12df6 | Read file or device (Read 32 bytes on handle 5)
2018-12-17T22:45:43.853787916Z 66 PC: 12dff | Move file pointer
2018-12-17T22:45:43.855755548Z 62 PC: 12e04 | Close file
2018-12-17T22:45:43.868801348Z 9 PC: 1345f | Display string (String= ' ')
2018-12-17T22:45:43.872311693Z 9 PC: 1345f | Display string (String= ' Copyright(c) Version 0.99 tAO cHEN Shanghai 1997 ')
2018-12-17T22:45:43.876044513Z 9 PC: 1345f | Display string (String= ' ')
2018-12-17T22:45:43.878553679Z 9 PC: 1345f | Display string (String= ' E-mail: [email protected] Bp:86-21-126-351208 ')
2018-12-17T22:45:43.884070477Z 9 PC: 1345f | Display string (String= '=========================================================')
2018-12-17T22:45:44.237569995Z 9 PC: 1345f | Display string (String= ' Now Your PC is locked by Jiang Ming's Bomb !!! ')
2018-12-17T22:45:44.244119293Z 9 PC: 1345f | Display string (String= ' Please Reboot !')