Sample viewer

vx.netlux.org/Virus.DOS.Frz.1567

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:47:35.217969013Z	53	PC: 12d49 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:47:35.219179748Z	44	PC: 12d91 \| Get time 0x12d91: mov dh, 0 0x12d93: jmp 0x12db3 0x12d95: nop 0x12d96: mov ax, ds 0x12d98: mov es, ax 0x12d9a: dec ax 0x12d9b: mov ds, ax 0x12d9d: mov bx, word ptr [3] 0x12da1: sub bx, 0xe42 0x12da5: mov cl, 4 0x12da7: rol dx, cl 0x12da9: sub bx, dx 0x12dab: ror dx, cl 0x12dad: mov ah, 0x4a 0x12daf: int 0x21 0x12db1: jb 0x12e2f 0x12db3: mov ah, 0x48 0x12db5: mov bx, 0xcc 0x12db8: add bx, dx 0x12dba: int 0x21
2018-12-17T22:47:35.221693691Z	72	PC: 12dbc \| Allocate memory
2018-12-17T22:47:35.223269321Z	74	PC: 12db1 \| Reallocate memory
2018-12-17T22:47:35.224566749Z	72	PC: 12dbc \| Allocate memory
2018-12-17T22:47:35.226799643Z	82	PC: 12dd6 \| Get DOS internal pointers (SYSVARS)
2018-12-17T22:47:35.227916592Z	44	PC: 8d7d3 \| Get time 0x8d7d3: mov ax, cs 0x8d7d5: mov dh, 0 0x8d7d7: sub ax, dx 0x8d7d9: mov ds, ax 0x8d7db: mov ax, dx 0x8d7dd: mov bl, 0x10 0x8d7df: mul bl 0x8d7e1: add ax, 0x267 0x8d7e4: mov dx, ax 0x8d7e6: pushf 0x8d7e7: push cs 0x8d7e8: mov ax, 0x204 0x8d7eb: push ax 0x8d7ec: mov ax, 0x2521 0x8d7ef: ljmp ptr cs:[0xd5] 0x8d7f4: mov si, 0 0x8d7f7: cmp byte ptr cs:[si + 0xf4], 1 0x8d7fd: je 0x8d804 0x8d7ff: mov bx, si 0x8d801: jmp 0x8d831
2018-12-17T22:47:35.229635861Z	37	PC: 8d7f4 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:47:35.235836371Z	9	PC: 12c22 \| Display string (Could not find end pointer)
2018-12-17T22:47:35.240844108Z	76	PC: 12c28 \| Terminate with return code (Return code = '0')