Sample viewer

vx.netlux.org/Virus.DOS.Supra.142

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:49:15.849307044Z 42 PC: 12a44 | Get date 0x12a44: cmp al, 5
0x12a46: jne 0x12a6b
0x12a48: nop
0x12a49: nop
0x12a4a: mov ax, 0x13
0x12a4d: int 0x10
0x12a4f: mov bx, 0xa000
0x12a52: mov ds, bx
0x12a54: mov byte ptr [bx], cl
0x12a56: add bx, bx
0x12a58: jae 0x12a5d
0x12a5a: xor bl, 0x2d
0x12a5d: loop 0x12a54
0x12a5f: mov ah, 1
0x12a61: int 0x16
0x12a63: je 0x12a54
0x12a65: mov ax, 3
0x12a68: int 0x10
0x12a6a: ret
0x12a6b: mov ax, 0x3521
2018-12-17T22:49:15.852328261Z 53 PC: 12a70 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:49:15.854848185Z 37 PC: 12a7f | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:49:15.856576142Z 49 PC: 12a83 | Terminate and stay resident (Return code = '0' | Memory size = '28')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9834,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:23:53.315319133Z 42 PC: 12a44 | Get date 0x12a44: cmp al, 5
0x12a46: jne 0x12a6b
0x12a48: nop
0x12a49: nop
0x12a4a: mov ax, 0x13
0x12a4d: int 0x10
0x12a4f: mov bx, 0xa000
0x12a52: mov ds, bx
0x12a54: mov byte ptr [bx], cl
0x12a56: add bx, bx
0x12a58: jae 0x12a5d
0x12a5a: xor bl, 0x2d
0x12a5d: loop 0x12a54
0x12a5f: mov ah, 1
0x12a61: int 0x16
0x12a63: je 0x12a54
0x12a65: mov ax, 3
0x12a68: int 0x10
0x12a6a: ret
0x12a6b: mov ax, 0x3521
2018-12-25T12:23:53.318492054Z 53 PC: 12a70 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:23:53.319782529Z 37 PC: 12a7f | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:23:53.320912635Z 49 PC: 12a83 | Terminate and stay resident (Return code = '0' | Memory size = '28')

{"DateBased":true,"Day":4,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9834,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:23:53.773756172Z 42 PC: 12a44 | Get date 0x12a44: cmp al, 5
0x12a46: jne 0x12a6b
0x12a48: nop
0x12a49: nop
0x12a4a: mov ax, 0x13
0x12a4d: int 0x10
0x12a4f: mov bx, 0xa000
0x12a52: mov ds, bx
0x12a54: mov byte ptr [bx], cl
0x12a56: add bx, bx
0x12a58: jae 0x12a5d
0x12a5a: xor bl, 0x2d
0x12a5d: loop 0x12a54
0x12a5f: mov ah, 1
0x12a61: int 0x16
0x12a63: je 0x12a54
0x12a65: mov ax, 3
0x12a68: int 0x10
0x12a6a: ret
0x12a6b: mov ax, 0x3521