Sample viewer

vx.netlux.org/Virus.DOS.Sailor.1089

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:46:25.772007755Z 42 PC: 15016 | Get date 0x15016: cmp bx, 0xdef6
0x1501a: je 0x1506a
0x1501c: push es
0x1501d: mov ax, 0x3521
0x15020: int 0x21
0x15022: mov word ptr cs:[bp + 0x19e], bx
0x15027: mov word ptr cs:[bp + 0x1a0], es
0x1502c: pop es
0x1502d: mov ax, es
0x1502f: dec ax
0x15030: mov ds, ax
0x15032: sub di, di
0x15034: cmp byte ptr [di], 0x5a
0x15037: je 0x15041
0x15039: inc ax
0x1503a: add ax, word ptr [di + 3]
0x1503d: mov ds, ax
0x1503f: jmp 0x15034
0x15041: sub word ptr [di + 3], 0x47
0x15045: add ax, word ptr [di + 3]
2018-12-17T22:46:25.774988863Z 53 PC: 15022 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:46:25.77655059Z 37 PC: 15065 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:46:25.780755864Z 9 PC: 12ccc | Display string (Could not find end pointer)
2018-12-17T22:46:25.793082593Z 76 PC: 12ce2 | Terminate with return code (Return code = '0')