Sample viewer

vx.netlux.org/Virus.DOS.Wit.555

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:53:49.458178286Z 26 PC: 12a75 | Set disk transfer address
2018-12-17T22:53:49.460603207Z 71 PC: 12a87 | Get current directory
2018-12-17T22:53:49.463688773Z 42 PC: 12a8d | Get date 0x12a8d: cmp dh, 4
0x12a90: jne 0x12aab
0x12a92: cmp dl, 0xf
0x12a95: jne 0x12aab
0x12a97: mov ax, 0x1010
0x12a9a: out 0x70, ax
0x12a9c: mov dx, 0x2f5
0x12a9f: mov ah, 9
0x12aa1: int 0x21
0x12aa3: mov ah, 8
0x12aa5: int 0x21
0x12aa7: mov al, 0xfe
0x12aa9: out 0x64, al
0x12aab: mov ah, byte ptr [0x320]
0x12aaf: mov cl, 7
0x12ab1: mov dx, 0x2e9
0x12ab4: int 0x21
0x12ab6: jae 0x12abb
0x12ab8: jmp 0x12be9
0x12abb: mov dx, word ptr [0x318]
2018-12-17T22:53:49.466511458Z 78 PC: 12ab6 | Find first file
2018-12-17T22:53:49.473675954Z 67 PC: 12ac7 | Get or set file attributes
2018-12-17T22:53:49.479467552Z 67 PC: 12ad6 | Get or set file attributes
2018-12-17T22:53:49.495452021Z 61 PC: 12adf | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:53:49.507390973Z 87 PC: 12aed | Get or set file date and time
2018-12-17T22:53:49.509845892Z 63 PC: 12b08 | Read file or device (Read 603 bytes on handle 5)
2018-12-17T22:53:49.516145467Z 66 PC: 12b27 | Move file pointer
2018-12-17T22:53:49.517722852Z 66 PC: 12b48 | Move file pointer
2018-12-17T22:53:49.519726845Z 64 PC: 12b63 | Write file or device (Write 407 bytes on handle 5)
2018-12-17T22:53:49.523960246Z 66 PC: 12b97 | Move file pointer
2018-12-17T22:53:49.525527144Z 64 PC: 12ba8 | Write file or device (Write 603 bytes on handle 5)
2018-12-17T22:53:49.534417959Z 87 PC: 12bb9 | Get or set file date and time
2018-12-17T22:53:49.541789393Z 62 PC: 12bbf | Close file
2018-12-17T22:53:49.549633957Z 67 PC: 12bcf | Get or set file attributes
2018-12-17T22:53:49.559743017Z 79 PC: 12ab6 | Find next file
2018-12-17T22:53:49.562331196Z 67 PC: 12ac7 | Get or set file attributes
2018-12-17T22:53:49.567801845Z 67 PC: 12ad6 | Get or set file attributes
2018-12-17T22:53:49.580322779Z 61 PC: 12adf | Open file (Filename = 'PRINT.COM')
2018-12-17T22:53:49.587515498Z 87 PC: 12aed | Get or set file date and time
2018-12-17T22:53:49.589147785Z 63 PC: 12b08 | Read file or device (Read 603 bytes on handle 5)
2018-12-17T22:53:49.596411423Z 66 PC: 12b27 | Move file pointer
2018-12-17T22:53:49.59813037Z 66 PC: 12b48 | Move file pointer
2018-12-17T22:53:49.599759166Z 64 PC: 12b63 | Write file or device (Write 27 bytes on handle 5)
2018-12-17T22:53:49.604398935Z 66 PC: 12b97 | Move file pointer
2018-12-17T22:53:49.606165264Z 64 PC: 12ba8 | Write file or device (Write 603 bytes on handle 5)
2018-12-17T22:53:49.614200949Z 87 PC: 12bb9 | Get or set file date and time
2018-12-17T22:53:49.616794614Z 62 PC: 12bbf | Close file
2018-12-17T22:53:49.62443594Z 67 PC: 12bcf | Get or set file attributes
2018-12-17T22:53:49.63429338Z 79 PC: 12ab6 | Find next file
2018-12-17T22:53:49.638098692Z 67 PC: 12ac7 | Get or set file attributes
2018-12-17T22:53:49.644192803Z 67 PC: 12ad6 | Get or set file attributes
2018-12-17T22:53:49.653824902Z 61 PC: 12adf | Open file (Filename = 'HELLO.COM')
2018-12-17T22:53:49.660465055Z 87 PC: 12aed | Get or set file date and time
2018-12-17T22:53:49.662387085Z 63 PC: 12b08 | Read file or device (Read 603 bytes on handle 5)
2018-12-17T22:53:49.668867225Z 66 PC: 12b27 | Move file pointer
2018-12-17T22:53:49.670229769Z 66 PC: 12b48 | Move file pointer
2018-12-17T22:53:49.672194994Z 64 PC: 12b63 | Write file or device (Write 92 bytes on handle 5)
2018-12-17T22:53:49.675978923Z 66 PC: 12b97 | Move file pointer
2018-12-17T22:53:49.677123154Z 64 PC: 12ba8 | Write file or device (Write 603 bytes on handle 5)
2018-12-17T22:53:49.685602334Z 87 PC: 12bb9 | Get or set file date and time
2018-12-17T22:53:49.687373523Z 62 PC: 12bbf | Close file
2018-12-17T22:53:49.69699044Z 67 PC: 12bcf | Get or set file attributes
2018-12-17T22:53:49.71651137Z 79 PC: 12ab6 | Find next file
2018-12-17T22:53:49.719892572Z 67 PC: 12ac7 | Get or set file attributes
2018-12-17T22:53:49.725403421Z 67 PC: 12ad6 | Get or set file attributes
2018-12-17T22:53:49.735761867Z 61 PC: 12adf | Open file (Filename = 'PHANG.COM')
2018-12-17T22:53:49.742276882Z 87 PC: 12aed | Get or set file date and time
2018-12-17T22:53:49.74367845Z 63 PC: 12b08 | Read file or device (Read 603 bytes on handle 5)
2018-12-17T22:53:49.751133623Z 66 PC: 12b27 | Move file pointer
2018-12-17T22:53:49.752984553Z 66 PC: 12b48 | Move file pointer
2018-12-17T22:53:49.75495699Z 64 PC: 12b63 | Write file or device (Write 29 bytes on handle 5)
2018-12-17T22:53:49.760173673Z 66 PC: 12b97 | Move file pointer
2018-12-17T22:53:49.762422681Z 64 PC: 12ba8 | Write file or device (Write 603 bytes on handle 5)
2018-12-17T22:53:49.77027259Z 87 PC: 12bb9 | Get or set file date and time
2018-12-17T22:53:49.772203478Z 62 PC: 12bbf | Close file
2018-12-17T22:53:49.780625681Z 67 PC: 12bcf | Get or set file attributes
2018-12-17T22:53:49.79087961Z 79 PC: 12ab6 | Find next file
2018-12-17T22:53:49.79381124Z 67 PC: 12ac7 | Get or set file attributes
2018-12-17T22:53:49.800460956Z 67 PC: 12ad6 | Get or set file attributes
2018-12-17T22:53:49.810224162Z 61 PC: 12adf | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:53:49.817015307Z 87 PC: 12aed | Get or set file date and time
2018-12-17T22:53:49.82081316Z 63 PC: 12b08 | Read file or device (Read 603 bytes on handle 5)
2018-12-17T22:53:49.827263853Z 66 PC: 12b27 | Move file pointer
2018-12-17T22:53:49.828917592Z 66 PC: 12b48 | Move file pointer
2018-12-17T22:53:49.83198216Z 64 PC: 12b63 | Write file or device (Write 29 bytes on handle 5)
2018-12-17T22:53:49.836239781Z 66 PC: 12b97 | Move file pointer
2018-12-17T22:53:49.837902086Z 64 PC: 12ba8 | Write file or device (Write 603 bytes on handle 5)
2018-12-17T22:53:49.846319738Z 87 PC: 12bb9 | Get or set file date and time
2018-12-17T22:53:49.848117848Z 62 PC: 12bbf | Close file
2018-12-17T22:53:49.856375138Z 67 PC: 12bcf | Get or set file attributes
2018-12-17T22:53:49.867342554Z 26 PC: 12c0d | Set disk transfer address
2018-12-17T22:53:49.868716669Z 59 PC: 12c18 | Change current directory

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11350,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:30:23.264421556Z 26 PC: 12a75 | Set disk transfer address
2018-12-25T12:30:23.266030907Z 71 PC: 12a87 | Get current directory
2018-12-25T12:30:23.267913092Z 42 PC: 12a8d | Get date 0x12a8d: cmp dh, 4
0x12a90: jne 0x12aab
0x12a92: cmp dl, 0xf
0x12a95: jne 0x12aab
0x12a97: mov ax, 0x1010
0x12a9a: out 0x70, ax
0x12a9c: mov dx, 0x2f5
0x12a9f: mov ah, 9
0x12aa1: int 0x21
0x12aa3: mov ah, 8
0x12aa5: int 0x21
0x12aa7: mov al, 0xfe
0x12aa9: out 0x64, al
0x12aab: mov ah, byte ptr [0x320]
0x12aaf: mov cl, 7
0x12ab1: mov dx, 0x2e9
0x12ab4: int 0x21
0x12ab6: jae 0x12abb
0x12ab8: jmp 0x12be9
0x12abb: mov dx, word ptr [0x318]
2018-12-25T12:30:23.269398647Z 78 PC: 12ab6 | Find first file
2018-12-25T12:30:23.273302007Z 67 PC: 12ac7 | Get or set file attributes
2018-12-25T12:30:23.279791852Z 67 PC: 12ad6 | Get or set file attributes
2018-12-25T12:30:23.292516791Z 61 PC: 12adf | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:30:23.304064069Z 87 PC: 12aed | Get or set file date and time
2018-12-25T12:30:23.30567916Z 63 PC: 12b08 | Read file or device (Read 603 bytes on handle 5)
2018-12-25T12:30:23.311837699Z 66 PC: 12b27 | Move file pointer
2018-12-25T12:30:23.313205655Z 66 PC: 12b48 | Move file pointer
2018-12-25T12:30:23.315268982Z 64 PC: 12b63 | Write file or device (Write 407 bytes on handle 5)
2018-12-25T12:30:23.319167812Z 66 PC: 12b97 | Move file pointer
2018-12-25T12:30:23.320392242Z 64 PC: 12ba8 | Write file or device (Write 603 bytes on handle 5)
2018-12-25T12:30:23.327764472Z 87 PC: 12bb9 | Get or set file date and time
2018-12-25T12:30:23.329287524Z 62 PC: 12bbf | Close file
2018-12-25T12:30:23.336778473Z 67 PC: 12bcf | Get or set file attributes
2018-12-25T12:30:23.347940042Z 79 PC: 12ab6 | Find next file (See above)
2018-12-25T12:30:23.350503363Z 67 PC: 12ac7 | Get or set file attributes (See above)
2018-12-25T12:30:23.35588017Z 67 PC: 12ad6 | Get or set file attributes (See above)
2018-12-25T12:30:23.366536354Z 61 PC: 12adf | Open file (See above)
2018-12-25T12:30:23.37313881Z 87 PC: 12aed | Get or set file date and time (See above)
2018-12-25T12:30:23.374568725Z 63 PC: 12b08 | Read file or device (See above)
2018-12-25T12:30:23.381656829Z 66 PC: 12b27 | Move file pointer (See above)
2018-12-25T12:30:23.383281179Z 66 PC: 12b48 | Move file pointer (See above)
2018-12-25T12:30:23.385083091Z 64 PC: 12b63 | Write file or device (See above)
2018-12-25T12:30:23.389865144Z 66 PC: 12b97 | Move file pointer (See above)
2018-12-25T12:30:23.391183529Z 64 PC: 12ba8 | Write file or device (See above)
2018-12-25T12:30:23.398212547Z 87 PC: 12bb9 | Get or set file date and time (See above)
2018-12-25T12:30:23.400272482Z 62 PC: 12bbf | Close file (See above)
2018-12-25T12:30:23.407842618Z 67 PC: 12bcf | Get or set file attributes (See above)
2018-12-25T12:30:23.417568135Z 79 PC: 12ab6 | Find next file (See above)
2018-12-25T12:30:23.421177455Z 67 PC: 12ac7 | Get or set file attributes (See above)
2018-12-25T12:30:23.4268486Z 67 PC: 12ad6 | Get or set file attributes (See above)
2018-12-25T12:30:23.4374106Z 61 PC: 12adf | Open file (See above)
2018-12-25T12:30:23.444669549Z 87 PC: 12aed | Get or set file date and time (See above)
2018-12-25T12:30:23.446295386Z 63 PC: 12b08 | Read file or device (See above)
2018-12-25T12:30:23.452626801Z 66 PC: 12b27 | Move file pointer (See above)
2018-12-25T12:30:23.454342311Z 66 PC: 12b48 | Move file pointer (See above)
2018-12-25T12:30:23.456242815Z 64 PC: 12b63 | Write file or device (See above)
2018-12-25T12:30:23.460371694Z 66 PC: 12b97 | Move file pointer (See above)
2018-12-25T12:30:23.462027065Z 64 PC: 12ba8 | Write file or device (See above)
2018-12-25T12:30:23.469461205Z 87 PC: 12bb9 | Get or set file date and time (See above)
2018-12-25T12:30:23.470768252Z 62 PC: 12bbf | Close file (See above)
2018-12-25T12:30:23.478384966Z 67 PC: 12bcf | Get or set file attributes (See above)
2018-12-25T12:30:23.488245394Z 79 PC: 12ab6 | Find next file (See above)
2018-12-25T12:30:23.490618171Z 67 PC: 12ac7 | Get or set file attributes (See above)
2018-12-25T12:30:23.496296429Z 67 PC: 12ad6 | Get or set file attributes (See above)
2018-12-25T12:30:23.508694243Z 61 PC: 12adf | Open file (See above)
2018-12-25T12:30:23.515048976Z 87 PC: 12aed | Get or set file date and time (See above)
2018-12-25T12:30:23.516416802Z 63 PC: 12b08 | Read file or device (See above)
2018-12-25T12:30:23.523735404Z 66 PC: 12b27 | Move file pointer (See above)
2018-12-25T12:30:23.525102521Z 66 PC: 12b48 | Move file pointer (See above)
2018-12-25T12:30:23.526460539Z 64 PC: 12b63 | Write file or device (See above)
2018-12-25T12:30:23.531470542Z 66 PC: 12b97 | Move file pointer (See above)
2018-12-25T12:30:23.533122019Z 64 PC: 12ba8 | Write file or device (See above)
2018-12-25T12:30:23.540545308Z 87 PC: 12bb9 | Get or set file date and time (See above)
2018-12-25T12:30:23.543026893Z 62 PC: 12bbf | Close file (See above)
2018-12-25T12:30:23.553434561Z 67 PC: 12bcf | Get or set file attributes (See above)
2018-12-25T12:30:23.55985403Z 79 PC: 12ab6 | Find next file (See above)
2018-12-25T12:30:23.562815345Z 67 PC: 12ac7 | Get or set file attributes (See above)
2018-12-25T12:30:23.566672762Z 67 PC: 12ad6 | Get or set file attributes (See above)
2018-12-25T12:30:23.572998968Z 61 PC: 12adf | Open file (See above)
2018-12-25T12:30:23.57725995Z 87 PC: 12aed | Get or set file date and time (See above)
2018-12-25T12:30:23.578657959Z 63 PC: 12b08 | Read file or device (See above)
2018-12-25T12:30:23.582608969Z 66 PC: 12b27 | Move file pointer (See above)
2018-12-25T12:30:23.583885934Z 66 PC: 12b48 | Move file pointer (See above)
2018-12-25T12:30:23.585582719Z 64 PC: 12b63 | Write file or device (See above)
2018-12-25T12:30:23.58870108Z 66 PC: 12b97 | Move file pointer (See above)
2018-12-25T12:30:23.589837251Z 64 PC: 12ba8 | Write file or device (See above)
2018-12-25T12:30:23.595474037Z 87 PC: 12bb9 | Get or set file date and time (See above)
2018-12-25T12:30:23.597058001Z 62 PC: 12bbf | Close file (See above)
2018-12-25T12:30:23.604867516Z 67 PC: 12bcf | Get or set file attributes (See above)
2018-12-25T12:30:23.615804458Z 26 PC: 12c0d | Set disk transfer address
2018-12-25T12:30:23.616840283Z 59 PC: 12c18 | Change current directory

{"DateBased":true,"Day":1,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11350,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:30:23.513276512Z 26 PC: 12a75 | Set disk transfer address
2018-12-25T12:30:23.515593097Z 71 PC: 12a87 | Get current directory
2018-12-25T12:30:23.518690876Z 42 PC: 12a8d | Get date 0x12a8d: cmp dh, 4
0x12a90: jne 0x12aab
0x12a92: cmp dl, 0xf
0x12a95: jne 0x12aab
0x12a97: mov ax, 0x1010
0x12a9a: out 0x70, ax
0x12a9c: mov dx, 0x2f5
0x12a9f: mov ah, 9
0x12aa1: int 0x21
0x12aa3: mov ah, 8
0x12aa5: int 0x21
0x12aa7: mov al, 0xfe
0x12aa9: out 0x64, al
0x12aab: mov ah, byte ptr [0x320]
0x12aaf: mov cl, 7
0x12ab1: mov dx, 0x2e9
0x12ab4: int 0x21
0x12ab6: jae 0x12abb
0x12ab8: jmp 0x12be9
0x12abb: mov dx, word ptr [0x318]
2018-12-25T12:30:23.521190374Z 78 PC: 12ab6 | Find first file
2018-12-25T12:30:23.52800182Z 67 PC: 12ac7 | Get or set file attributes
2018-12-25T12:30:23.533956157Z 67 PC: 12ad6 | Get or set file attributes
2018-12-25T12:30:23.549516433Z 61 PC: 12adf | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:30:23.560997244Z 87 PC: 12aed | Get or set file date and time
2018-12-25T12:30:23.562716821Z 63 PC: 12b08 | Read file or device (Read 603 bytes on handle 5)
2018-12-25T12:30:23.569935161Z 66 PC: 12b27 | Move file pointer
2018-12-25T12:30:23.571271153Z 66 PC: 12b48 | Move file pointer
2018-12-25T12:30:23.572885079Z 64 PC: 12b63 | Write file or device (Write 407 bytes on handle 5)
2018-12-25T12:30:23.576875483Z 66 PC: 12b97 | Move file pointer
2018-12-25T12:30:23.578176346Z 64 PC: 12ba8 | Write file or device (Write 603 bytes on handle 5)
2018-12-25T12:30:23.586112333Z 87 PC: 12bb9 | Get or set file date and time
2018-12-25T12:30:23.587627717Z 62 PC: 12bbf | Close file
2018-12-25T12:30:23.595094308Z 67 PC: 12bcf | Get or set file attributes
2018-12-25T12:30:23.605127843Z 79 PC: 12ab6 | Find next file (See above)
2018-12-25T12:30:23.607930565Z 67 PC: 12ac7 | Get or set file attributes (See above)
2018-12-25T12:30:23.613539229Z 67 PC: 12ad6 | Get or set file attributes (See above)
2018-12-25T12:30:23.623785474Z 61 PC: 12adf | Open file (See above)
2018-12-25T12:30:23.635910218Z 87 PC: 12aed | Get or set file date and time (See above)
2018-12-25T12:30:23.637225621Z 63 PC: 12b08 | Read file or device (See above)
2018-12-25T12:30:23.644577749Z 66 PC: 12b27 | Move file pointer (See above)
2018-12-25T12:30:23.645936971Z 66 PC: 12b48 | Move file pointer (See above)
2018-12-25T12:30:23.647300232Z 64 PC: 12b63 | Write file or device (See above)
2018-12-25T12:30:23.651580497Z 66 PC: 12b97 | Move file pointer (See above)
2018-12-25T12:30:23.652938476Z 64 PC: 12ba8 | Write file or device (See above)
2018-12-25T12:30:23.660543835Z 87 PC: 12bb9 | Get or set file date and time (See above)
2018-12-25T12:30:23.66301074Z 62 PC: 12bbf | Close file (See above)
2018-12-25T12:30:23.670722555Z 67 PC: 12bcf | Get or set file attributes (See above)
2018-12-25T12:30:23.680345209Z 79 PC: 12ab6 | Find next file (See above)
2018-12-25T12:30:23.696580266Z 67 PC: 12ac7 | Get or set file attributes (See above)
2018-12-25T12:30:23.702789418Z 67 PC: 12ad6 | Get or set file attributes (See above)
2018-12-25T12:30:23.712985723Z 61 PC: 12adf | Open file (See above)
2018-12-25T12:30:23.719786762Z 87 PC: 12aed | Get or set file date and time (See above)
2018-12-25T12:30:23.728098833Z 63 PC: 12b08 | Read file or device (See above)
2018-12-25T12:30:23.734344336Z 66 PC: 12b27 | Move file pointer (See above)
2018-12-25T12:30:23.735663045Z 66 PC: 12b48 | Move file pointer (See above)
2018-12-25T12:30:23.737261824Z 64 PC: 12b63 | Write file or device (See above)
2018-12-25T12:30:23.74129429Z 66 PC: 12b97 | Move file pointer (See above)
2018-12-25T12:30:23.742887314Z 64 PC: 12ba8 | Write file or device (See above)
2018-12-25T12:30:23.751225708Z 87 PC: 12bb9 | Get or set file date and time (See above)
2018-12-25T12:30:23.752852006Z 62 PC: 12bbf | Close file (See above)
2018-12-25T12:30:23.760539723Z 67 PC: 12bcf | Get or set file attributes (See above)
2018-12-25T12:30:23.770697918Z 79 PC: 12ab6 | Find next file (See above)
2018-12-25T12:30:23.773141158Z 67 PC: 12ac7 | Get or set file attributes (See above)
2018-12-25T12:30:23.778553469Z 67 PC: 12ad6 | Get or set file attributes (See above)
2018-12-25T12:30:23.791444622Z 61 PC: 12adf | Open file (See above)
2018-12-25T12:30:23.797858565Z 87 PC: 12aed | Get or set file date and time (See above)
2018-12-25T12:30:23.799178118Z 63 PC: 12b08 | Read file or device (See above)
2018-12-25T12:30:23.806111244Z 66 PC: 12b27 | Move file pointer (See above)
2018-12-25T12:30:23.807516502Z 66 PC: 12b48 | Move file pointer (See above)
2018-12-25T12:30:23.808835362Z 64 PC: 12b63 | Write file or device (See above)
2018-12-25T12:30:23.813415005Z 66 PC: 12b97 | Move file pointer (See above)
2018-12-25T12:30:23.81497444Z 64 PC: 12ba8 | Write file or device (See above)
2018-12-25T12:30:23.822350367Z 87 PC: 12bb9 | Get or set file date and time (See above)
2018-12-25T12:30:23.824757661Z 62 PC: 12bbf | Close file (See above)
2018-12-25T12:30:23.832339621Z 67 PC: 12bcf | Get or set file attributes (See above)
2018-12-25T12:30:23.842253398Z 79 PC: 12ab6 | Find next file (See above)
2018-12-25T12:30:23.84546973Z 67 PC: 12ac7 | Get or set file attributes (See above)
2018-12-25T12:30:23.851638522Z 67 PC: 12ad6 | Get or set file attributes (See above)
2018-12-25T12:30:23.861168092Z 61 PC: 12adf | Open file (See above)
2018-12-25T12:30:23.87172155Z 87 PC: 12aed | Get or set file date and time (See above)
2018-12-25T12:30:23.873425133Z 63 PC: 12b08 | Read file or device (See above)
2018-12-25T12:30:23.879764276Z 66 PC: 12b27 | Move file pointer (See above)
2018-12-25T12:30:23.882137426Z 66 PC: 12b48 | Move file pointer (See above)
2018-12-25T12:30:23.883607316Z 64 PC: 12b63 | Write file or device (See above)
2018-12-25T12:30:23.887458249Z 66 PC: 12b97 | Move file pointer (See above)
2018-12-25T12:30:23.889240104Z 64 PC: 12ba8 | Write file or device (See above)
2018-12-25T12:30:23.896469701Z 87 PC: 12bb9 | Get or set file date and time (See above)
2018-12-25T12:30:23.897801522Z 62 PC: 12bbf | Close file (See above)
2018-12-25T12:30:23.905795631Z 67 PC: 12bcf | Get or set file attributes (See above)
2018-12-25T12:30:23.915377234Z 26 PC: 12c0d | Set disk transfer address
2018-12-25T12:30:23.916289273Z 59 PC: 12c18 | Change current directory

{"DateBased":true,"Day":15,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11350,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:30:24.018111083Z 26 PC: 12a75 | Set disk transfer address
2018-12-25T12:30:24.019666339Z 71 PC: 12a87 | Get current directory
2018-12-25T12:30:24.022385647Z 42 PC: 12a8d | Get date 0x12a8d: cmp dh, 4
0x12a90: jne 0x12aab
0x12a92: cmp dl, 0xf
0x12a95: jne 0x12aab
0x12a97: mov ax, 0x1010
0x12a9a: out 0x70, ax
0x12a9c: mov dx, 0x2f5
0x12a9f: mov ah, 9
0x12aa1: int 0x21
0x12aa3: mov ah, 8
0x12aa5: int 0x21
0x12aa7: mov al, 0xfe
0x12aa9: out 0x64, al
0x12aab: mov ah, byte ptr [0x320]
0x12aaf: mov cl, 7
0x12ab1: mov dx, 0x2e9
0x12ab4: int 0x21
0x12ab6: jae 0x12abb
0x12ab8: jmp 0x12be9
0x12abb: mov dx, word ptr [0x318]
2018-12-25T12:30:24.024928025Z 9 PC: 12aa3 | Display string (String= '��ࠡ���� - rulez forever ! ')
2018-12-25T12:30:24.029261786Z 8 PC: 12aa7 | Console input without echo