Sample viewer

vx.netlux.org/Virus.DOS.RedArc.999

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:47:46.042285023Z	74	PC: 13e5c \| Reallocate memory
2018-12-17T22:47:46.044532996Z	26	PC: 13ebb \| Set disk transfer address
2018-12-17T22:47:46.045707591Z	78	PC: 13edd \| Find first file
2018-12-17T22:47:46.052149313Z	79	PC: 13edd \| Find next file
2018-12-17T22:47:46.055260486Z	79	PC: 13edd \| Find next file
2018-12-17T22:47:46.058129938Z	79	PC: 13edd \| Find next file
2018-12-17T22:47:46.060800811Z	79	PC: 13edd \| Find next file
2018-12-17T22:47:46.063503177Z	79	PC: 13edd \| Find next file
2018-12-17T22:47:46.066932837Z	79	PC: 13edd \| Find next file
2018-12-17T22:47:46.069624824Z	79	PC: 13edd \| Find next file
2018-12-17T22:47:46.072209319Z	67	PC: 13fd5 \| Get or set file attributes
2018-12-17T22:47:46.078106194Z	67	PC: 13fdd \| Get or set file attributes
2018-12-17T22:47:46.421448951Z	61	PC: 13fe2 \| Open file (Filename = 'C:\DOS')
2018-12-17T22:47:46.429340656Z	87	PC: 14081 \| Get or set file date and time
2018-12-17T22:47:46.432026662Z	63	PC: 13ffd \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:47:46.433765057Z	66	PC: 1402b \| Move file pointer
2018-12-17T22:47:46.43554613Z	66	PC: 14037 \| Move file pointer
2018-12-17T22:47:46.43848Z	64	PC: 14053 \| Write file or device (Write 999 bytes on handle 5)
2018-12-17T22:47:46.440328119Z	66	PC: 1405c \| Move file pointer
2018-12-17T22:47:46.441947768Z	64	PC: 1407a \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:47:46.444220465Z	87	PC: 1409f \| Get or set file date and time
2018-12-17T22:47:46.445950056Z	62	PC: 1400c \| Close file
2018-12-17T22:47:46.447549133Z	67	PC: 1401e \| Get or set file attributes
2018-12-17T22:47:46.452871275Z	26	PC: 13eec \| Set disk transfer address
2018-12-17T22:47:46.454077691Z	9	PC: 12a85 \| Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T22:47:46.46013551Z	0	PC: 12a89 \| Program terminate