Sample viewer

vx.netlux.org/Virus.DOS.DARV.1024

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:49:40.040342702Z 53 PC: 12ed6 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:40.042091654Z 37 PC: 12ee6 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:40.04564239Z 26 PC: 12eed | Set disk transfer address
2018-12-17T22:49:40.047255588Z 78 PC: 12ef7 | Find first file
2018-12-17T22:49:40.054951059Z 61 PC: 12d9e | Open file (Filename = '')
2018-12-17T22:49:40.063740013Z 66 PC: 12d58 | Move file pointer
2018-12-17T22:49:40.065866496Z 63 PC: 12d66 | Read file or device (Read 24 bytes on handle 5)
2018-12-17T22:49:40.069243573Z 66 PC: 12dd2 | Move file pointer
2018-12-17T22:49:40.072131186Z 63 PC: 12d66 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:40.08407458Z 62 PC: 12e9a | Close file
2018-12-17T22:49:40.086757153Z 79 PC: 12f09 | Find next file
2018-12-17T22:49:40.090077104Z 37 PC: 12f17 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:40.091855549Z 9 PC: 12f20 | Display string (Could not find end pointer)
2018-12-17T22:49:40.09822199Z 9 PC: 12c22 | Display string (Could not find end pointer)
2018-12-17T22:49:40.104464077Z 76 PC: 12c28 | Terminate with return code (Return code = '0')