Sample viewer

vx.netlux.org/Virus.DOS.Vienna.495

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:48:25.636332748Z	47	PC: 1516a \| Get disk transfer address
2018-12-17T22:48:25.637695596Z	26	PC: 1517d \| Set disk transfer address
2018-12-17T22:48:25.638715097Z	78	PC: 15209 \| Find first file
2018-12-17T22:48:25.642626113Z	67	PC: 15248 \| Get or set file attributes
2018-12-17T22:48:25.646543645Z	67	PC: 1525a \| Get or set file attributes
2018-12-17T22:48:25.673898013Z	61	PC: 15265 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:48:25.68595977Z	87	PC: 15271 \| Get or set file date and time
2018-12-17T22:48:25.687286276Z	44	PC: 1527d \| Get time 0x1527d: and dh, 7 0x15280: jmp 0x15283 0x15282: nop 0x15283: mov ah, 0x3f 0x15285: mov cx, 3 0x15288: mov dx, 0 0x1528b: nop 0x1528c: add dx, si 0x1528e: int 0x21 0x15290: jb 0x152e8 0x15292: cmp ax, 3 0x15295: jne 0x152e8 0x15297: mov ax, 0x4202 0x1529a: mov cx, 0 0x1529d: mov dx, 0 0x152a0: int 0x21 0x152a2: jb 0x152e8 0x152a4: mov cx, ax 0x152a6: sub ax, 3 0x152a9: mov word ptr [si + 4], ax
2018-12-17T22:48:25.690904197Z	63	PC: 15290 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:48:25.69805147Z	66	PC: 152a2 \| Move file pointer
2018-12-17T22:48:25.700073263Z	64	PC: 152c7 \| Write file or device (Write 495 bytes on handle 5)
2018-12-17T22:48:25.710119545Z	66	PC: 152d9 \| Move file pointer
2018-12-17T22:48:25.711669848Z	64	PC: 152e8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:48:25.718537812Z	87	PC: 152fb \| Get or set file date and time
2018-12-17T22:48:25.72058105Z	62	PC: 152ff \| Close file
2018-12-17T22:48:25.728846806Z	67	PC: 1530e \| Get or set file attributes
2018-12-17T22:48:25.738657361Z	26	PC: 1531b \| Set disk transfer address
2018-12-17T22:48:25.742349834Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T22:48:25.747876289Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T22:48:25.759258962Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')