Sample viewer

vx.netlux.org/Virus.DOS.Nautilus.1712

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:52:36.099162538Z	78	PC: 12aa2 \| Find first file
2018-12-17T22:52:36.105871115Z	67	PC: 12b67 \| Get or set file attributes
2018-12-17T22:52:36.403676559Z	61	PC: 12b6f \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:36.411542477Z	87	PC: 12b75 \| Get or set file date and time
2018-12-17T22:52:36.413544254Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:36.419266887Z	66	PC: 12ba0 \| Move file pointer
2018-12-17T22:52:36.420571676Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.42338059Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:52:36.425065625Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.427873691Z	66	PC: 12bed \| Move file pointer
2018-12-17T22:52:36.43001101Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.433762625Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:36.435355907Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-17T22:52:36.437635755Z	64	PC: 12c7c \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:52:36.441396886Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-17T22:52:36.446638138Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:52:36.44781778Z	62	PC: 12d66 \| Close file
2018-12-17T22:52:36.454626232Z	67	PC: 12d75 \| Get or set file attributes
2018-12-17T22:52:36.464122183Z	79	PC: 12aa2 \| Find next file
2018-12-17T22:52:36.466843718Z	67	PC: 12b67 \| Get or set file attributes
2018-12-17T22:52:36.477310543Z	61	PC: 12b6f \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:36.48478288Z	87	PC: 12b75 \| Get or set file date and time
2018-12-17T22:52:36.486444582Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:36.493143644Z	66	PC: 12ba0 \| Move file pointer
2018-12-17T22:52:36.495167938Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.497942212Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:52:36.499711969Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.501966169Z	66	PC: 12bed \| Move file pointer
2018-12-17T22:52:36.503452783Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.506553842Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:36.508215473Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-17T22:52:36.510611214Z	64	PC: 12c7c \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:52:36.513541955Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-17T22:52:36.524929563Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:52:36.52674678Z	62	PC: 12d66 \| Close file
2018-12-17T22:52:36.534640245Z	67	PC: 12d75 \| Get or set file attributes
2018-12-17T22:52:36.545711097Z	79	PC: 12aa2 \| Find next file
2018-12-17T22:52:36.549459673Z	67	PC: 12b67 \| Get or set file attributes
2018-12-17T22:52:36.559349308Z	61	PC: 12b6f \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:36.567101414Z	87	PC: 12b75 \| Get or set file date and time
2018-12-17T22:52:36.569063891Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:36.575670769Z	66	PC: 12ba0 \| Move file pointer
2018-12-17T22:52:36.577899421Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.580514566Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:52:36.582168338Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.584862549Z	66	PC: 12bed \| Move file pointer
2018-12-17T22:52:36.58649249Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.589347092Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:36.591626285Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-17T22:52:36.593802288Z	64	PC: 12c7c \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:52:36.596587307Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-17T22:52:36.60546508Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:52:36.607167831Z	62	PC: 12d66 \| Close file
2018-12-17T22:52:36.614853383Z	67	PC: 12d75 \| Get or set file attributes
2018-12-17T22:52:36.627957339Z	79	PC: 12aa2 \| Find next file
2018-12-17T22:52:36.630939287Z	67	PC: 12b67 \| Get or set file attributes
2018-12-17T22:52:36.644800462Z	61	PC: 12b6f \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:36.652216927Z	87	PC: 12b75 \| Get or set file date and time
2018-12-17T22:52:36.654196847Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:36.66076015Z	66	PC: 12ba0 \| Move file pointer
2018-12-17T22:52:36.662624774Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.665474389Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:52:36.66706454Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.669388476Z	66	PC: 12bed \| Move file pointer
2018-12-17T22:52:36.671151862Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.674005806Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:36.675806877Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-17T22:52:36.678416734Z	64	PC: 12c7c \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:52:36.681524401Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-17T22:52:36.690786835Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:52:36.69274799Z	62	PC: 12d66 \| Close file
2018-12-17T22:52:36.700569439Z	67	PC: 12d75 \| Get or set file attributes
2018-12-17T22:52:36.710563288Z	79	PC: 12aa2 \| Find next file
2018-12-17T22:52:36.714413858Z	67	PC: 12b67 \| Get or set file attributes
2018-12-17T22:52:36.724271292Z	61	PC: 12b6f \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:52:36.731149912Z	87	PC: 12b75 \| Get or set file date and time
2018-12-17T22:52:36.73313399Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:36.739393319Z	66	PC: 12ba0 \| Move file pointer
2018-12-17T22:52:36.740788718Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.743659719Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:52:36.744959165Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.74682659Z	66	PC: 12bed \| Move file pointer
2018-12-17T22:52:36.748680367Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.751255387Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:36.752787225Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-17T22:52:36.755023128Z	64	PC: 12c7c \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:52:36.758510784Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-17T22:52:36.76687103Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:52:36.768423695Z	62	PC: 12d66 \| Close file
2018-12-17T22:52:36.775973094Z	67	PC: 12d75 \| Get or set file attributes
2018-12-17T22:52:36.786071313Z	79	PC: 12aa2 \| Find next file
2018-12-17T22:52:36.789190355Z	67	PC: 12b67 \| Get or set file attributes
2018-12-17T22:52:36.798993713Z	61	PC: 12b6f \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:52:36.80585747Z	87	PC: 12b75 \| Get or set file date and time
2018-12-17T22:52:36.807771933Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:36.813926608Z	66	PC: 12ba0 \| Move file pointer
2018-12-17T22:52:36.815042277Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.818678695Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:52:36.820597972Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.823533865Z	66	PC: 12bed \| Move file pointer
2018-12-17T22:52:36.826720942Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.829854015Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:36.831585704Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-17T22:52:36.834779907Z	64	PC: 12c7c \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:52:36.84320185Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-17T22:52:36.852006799Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:52:36.855022512Z	62	PC: 12d66 \| Close file
2018-12-17T22:52:36.862868189Z	67	PC: 12d75 \| Get or set file attributes
2018-12-17T22:52:36.87283492Z	79	PC: 12aa2 \| Find next file
2018-12-17T22:52:36.876691503Z	67	PC: 12b67 \| Get or set file attributes
2018-12-17T22:52:36.886988093Z	61	PC: 12b6f \| Open file (Filename = 'PAH.COM')
2018-12-17T22:52:36.89460991Z	87	PC: 12b75 \| Get or set file date and time
2018-12-17T22:52:36.89696861Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:36.90333341Z	66	PC: 12ba0 \| Move file pointer
2018-12-17T22:52:36.905367328Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.908242778Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:52:36.909449285Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.911091425Z	66	PC: 12bed \| Move file pointer
2018-12-17T22:52:36.91286958Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.915348014Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:36.916698627Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-17T22:52:36.919226927Z	64	PC: 12c7c \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:52:36.921893993Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-17T22:52:36.93014995Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:52:36.932255162Z	62	PC: 12d66 \| Close file
2018-12-17T22:52:36.93981578Z	67	PC: 12d75 \| Get or set file attributes
2018-12-17T22:52:36.94937312Z	79	PC: 12aa2 \| Find next file
2018-12-17T22:52:36.952789532Z	67	PC: 12b67 \| Get or set file attributes
2018-12-17T22:52:36.962678402Z	61	PC: 12b6f \| Open file (Filename = 'TEST.COM')
2018-12-17T22:52:36.969427031Z	87	PC: 12b75 \| Get or set file date and time
2018-12-17T22:52:36.972073282Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:36.978222749Z	66	PC: 12ba0 \| Move file pointer
2018-12-17T22:52:36.979382817Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.981126868Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:52:36.982447141Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:52:36.983954424Z	66	PC: 12bed \| Move file pointer
2018-12-17T22:52:36.985144734Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.988266952Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:36.98922624Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-17T22:52:36.990698859Z	64	PC: 12c7c \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:52:36.998197442Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-17T22:52:37.006462087Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:52:37.008153219Z	62	PC: 12d66 \| Close file
2018-12-17T22:52:37.01636251Z	67	PC: 12d75 \| Get or set file attributes

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10943,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:29:43.374782645Z	78	PC: 12aa2 \| Find first file
2018-12-25T12:29:43.3809472Z	67	PC: 12b67 \| Get or set file attributes
2018-12-25T12:29:43.396429429Z	61	PC: 12b6f \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:29:43.407375794Z	87	PC: 12b75 \| Get or set file date and time
2018-12-25T12:29:43.411188431Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-25T12:29:43.417404758Z	66	PC: 12ba0 \| Move file pointer
2018-12-25T12:29:43.418638973Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-25T12:29:43.421951304Z	66	PC: 12bbd \| Move file pointer
2018-12-25T12:29:43.423512426Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-25T12:29:43.4252133Z	66	PC: 12bed \| Move file pointer
2018-12-25T12:29:43.426597658Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:29:43.429221796Z	66	PC: 12c07 \| Move file pointer
2018-12-25T12:29:43.430454668Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-25T12:29:43.432634591Z	64	PC: 12ca2 \| Write file or device (Write 49 bytes on handle 5)
2018-12-25T12:29:43.435677714Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-25T12:29:43.443867869Z	87	PC: 12d62 \| Get or set file date and time
2018-12-25T12:29:43.445247785Z	62	PC: 12d66 \| Close file
2018-12-25T12:29:43.45275565Z	67	PC: 12d75 \| Get or set file attributes
2018-12-25T12:29:43.462221668Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:43.464842119Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:43.474820928Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:43.481517932Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:43.483012445Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:43.49086734Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:43.492587664Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:43.494959028Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:43.496768318Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:43.498682081Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:43.500363781Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:43.503995856Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:43.505994658Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:43.508296374Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:29:43.511117589Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:43.519898283Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:43.521230354Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:43.528729902Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:43.538635016Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:43.541220007Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:43.556506576Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:43.564080079Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:43.565588036Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:43.571824719Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:43.582501678Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:43.584089762Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:43.5851123Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:43.587131265Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:43.588274125Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:43.592876095Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:43.594651069Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:43.596154785Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:29:43.59798167Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:43.605351845Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:43.606965452Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:43.617423055Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:43.628360399Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:43.63110432Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:43.640899886Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:43.647809092Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:43.649077836Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:43.655814397Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:43.663027708Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:43.665664023Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:43.667135553Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:43.670329713Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:43.67204004Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:43.674908844Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:43.677348491Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:43.679424045Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:29:43.682030036Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:43.690844579Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:43.692264704Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:43.699647685Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:43.706600347Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:43.709426629Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:43.719556285Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:43.727536096Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:43.729278214Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:43.735790915Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:43.737903832Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:43.740432063Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:43.741868368Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:43.744733719Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:43.746028079Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:43.748548445Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:43.750254802Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:43.752221717Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:29:43.754804026Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:43.76360745Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:43.765130534Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:43.770064514Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:43.776643795Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:43.779315064Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:43.787373483Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:43.792045991Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:43.793195918Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:43.797182676Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:43.798858801Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:43.800599538Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:43.801725439Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:43.803957506Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:43.805541017Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:43.808344021Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:43.810406803Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:43.812663151Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:29:43.820735651Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:43.830000672Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:43.831336247Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:43.836422993Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:43.842723487Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:43.845489821Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:43.855226295Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:43.861725174Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:43.86306036Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:43.869286827Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:43.870589333Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:43.873318982Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:43.874466604Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:43.876199073Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:43.877645979Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:43.880065211Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:43.881276567Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:43.883311154Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:29:43.88577654Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:43.894031863Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:43.895357753Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:43.902434698Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:44.11724231Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:44.120761304Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:44.231266088Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:44.237963201Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:44.240261969Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:44.246788727Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:44.248043479Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:44.250501463Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:44.251805437Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:44.254595508Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:44.256449165Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:44.258962097Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:44.260261084Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:44.262855436Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:29:44.270202438Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:44.278658554Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:44.280753709Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:44.288392258Z	67	PC: 12d75 \| Get or set file attributes (See above)

{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10943,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:29:43.48464054Z	78	PC: 12aa2 \| Find first file
2018-12-25T12:29:43.491828342Z	67	PC: 12b67 \| Get or set file attributes
2018-12-25T12:29:45.005500417Z	61	PC: 12b6f \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:29:45.019153534Z	87	PC: 12b75 \| Get or set file date and time
2018-12-25T12:29:45.020769909Z	63	PC: 12b89 \| Read file or device (Read 5 bytes on handle 5)
2018-12-25T12:29:45.027635608Z	66	PC: 12ba0 \| Move file pointer
2018-12-25T12:29:45.028703092Z	63	PC: 12bab \| Read file or device (Read 2 bytes on handle 5)
2018-12-25T12:29:45.030517693Z	66	PC: 12bbd \| Move file pointer
2018-12-25T12:29:45.044810162Z	63	PC: 12bc8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-25T12:29:45.0468711Z	66	PC: 12bed \| Move file pointer
2018-12-25T12:29:45.048542456Z	64	PC: 12bf8 \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:29:45.056976379Z	66	PC: 12c07 \| Move file pointer
2018-12-25T12:29:45.058486277Z	42	PC: 12c0b \| Get date 0x12c0b: or al, al 0x12c0d: je 0x12c41 0x12c0f: nop 0x12c10: nop 0x12c11: nop 0x12c12: cmp al, 1 0x12c14: je 0x12c67 0x12c16: nop 0x12c17: nop 0x12c18: nop 0x12c19: cmp al, 2 0x12c1b: je 0x12c8d 0x12c1d: nop 0x12c1e: nop 0x12c1f: nop 0x12c20: cmp al, 3 0x12c22: jne 0x12c2a 0x12c24: nop 0x12c25: nop 0x12c26: nop
2018-12-25T12:29:45.060839735Z	64	PC: 12cc8 \| Write file or device (Write 49 bytes on handle 5)
2018-12-25T12:29:45.064454752Z	64	PC: 12d56 \| Write file or device (Write 1663 bytes on handle 5)
2018-12-25T12:29:45.39253207Z	87	PC: 12d62 \| Get or set file date and time
2018-12-25T12:29:45.398556766Z	62	PC: 12d66 \| Close file
2018-12-25T12:29:45.407192632Z	67	PC: 12d75 \| Get or set file attributes
2018-12-25T12:29:45.414091105Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:45.41659956Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:45.426821334Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:45.434139962Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:45.435576995Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:45.442967269Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:45.470355729Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:45.472347499Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:45.473663302Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:45.47643959Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:45.477900659Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:45.480828951Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:45.482984567Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:45.485379314Z	64	PC: 12cc8 \| Write file or device (See above)
2018-12-25T12:29:45.488502942Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:45.500803339Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:45.502478582Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:45.512019187Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:45.523897227Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:45.527519521Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:45.538672868Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:45.546802164Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:45.54831441Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:45.554664583Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:45.556280501Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:45.559224415Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:45.560676006Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:45.56257036Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:45.564043145Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:45.566839073Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:45.568697333Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:45.571748595Z	64	PC: 12cc8 \| Write file or device (See above)
2018-12-25T12:29:45.575316417Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:45.585408431Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:45.593465032Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:45.605649522Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:45.616901613Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:45.620963987Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:45.633628294Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:45.638023318Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:45.639897756Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:45.646074117Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:45.647922908Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:45.651224114Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:45.653183523Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:45.656395698Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:45.658383034Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:45.662213769Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:45.664080745Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:45.666890807Z	64	PC: 12cc8 \| Write file or device (See above)
2018-12-25T12:29:45.671149575Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:45.680664231Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:45.684032169Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:45.694171164Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:45.705223354Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:45.708110832Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:45.719717444Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:45.727877897Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:45.729478018Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:45.73692934Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:45.738476643Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:45.741113336Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:45.742928249Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:45.745323836Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:45.747258983Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:45.750522285Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:45.752587247Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:45.755063648Z	64	PC: 12cc8 \| Write file or device (See above)
2018-12-25T12:29:45.758691124Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:45.769091413Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:45.771083954Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:45.780369973Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:45.790239727Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:45.792176046Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:45.798883751Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:45.804043763Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:45.814060802Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:45.821560763Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:45.824243328Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:45.827466071Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:45.829178246Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:45.832155181Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:45.834150523Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:45.837175208Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:45.83906043Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:45.84151848Z	64	PC: 12cc8 \| Write file or device (See above)
2018-12-25T12:29:45.850870952Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:45.862353812Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:45.86407392Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:45.872993611Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:45.88513388Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:45.88818575Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:45.899153582Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:45.906487156Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:45.924172481Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:45.932027221Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:45.934515056Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:45.937583529Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:45.939386262Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:45.941908122Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:45.944010916Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:45.947338329Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:45.949103989Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:45.951831161Z	64	PC: 12cc8 \| Write file or device (See above)
2018-12-25T12:29:45.95485663Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:45.964427341Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:45.974936058Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:45.982839911Z	67	PC: 12d75 \| Get or set file attributes (See above)
2018-12-25T12:29:45.993092978Z	79	PC: 12aa2 \| Find next file (See above)
2018-12-25T12:29:45.997728086Z	67	PC: 12b67 \| Get or set file attributes (See above)
2018-12-25T12:29:46.008193266Z	61	PC: 12b6f \| Open file (See above)
2018-12-25T12:29:46.015591951Z	87	PC: 12b75 \| Get or set file date and time (See above)
2018-12-25T12:29:46.018615227Z	63	PC: 12b89 \| Read file or device (See above)
2018-12-25T12:29:46.025820299Z	66	PC: 12ba0 \| Move file pointer (See above)
2018-12-25T12:29:46.027661679Z	63	PC: 12bab \| Read file or device (See above)
2018-12-25T12:29:46.031457012Z	66	PC: 12bbd \| Move file pointer (See above)
2018-12-25T12:29:46.03310071Z	63	PC: 12bc8 \| Read file or device (See above)
2018-12-25T12:29:46.036901763Z	66	PC: 12bed \| Move file pointer (See above)
2018-12-25T12:29:46.038848036Z	64	PC: 12bf8 \| Write file or device (See above)
2018-12-25T12:29:46.041761066Z	66	PC: 12c07 \| Move file pointer (See above)
2018-12-25T12:29:46.043278559Z	42	PC: 12c0b \| Get date (See above)
2018-12-25T12:29:46.045958262Z	64	PC: 12cc8 \| Write file or device (See above)
2018-12-25T12:29:46.053918858Z	64	PC: 12d56 \| Write file or device (See above)
2018-12-25T12:29:46.068769538Z	87	PC: 12d62 \| Get or set file date and time (See above)
2018-12-25T12:29:46.081671586Z	62	PC: 12d66 \| Close file (See above)
2018-12-25T12:29:46.091194493Z	67	PC: 12d75 \| Get or set file attributes (See above)