Sample viewer

vx.netlux.org/Virus.DOS.Mosquito.354

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:56:33.01430544Z	26	PC: 12a61 \| Set disk transfer address
2018-12-17T22:56:33.01588996Z	78	PC: 12a6c \| Find first file
2018-12-17T22:56:33.024161803Z	67	PC: 12a73 \| Get or set file attributes
2018-12-17T22:56:33.029514107Z	67	PC: 12a7e \| Get or set file attributes
2018-12-17T22:56:33.035272724Z	61	PC: 12a87 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:56:33.043358868Z	87	PC: 12a8e \| Get or set file date and time
2018-12-17T22:56:33.044898133Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:56:33.051785873Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.054256068Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-17T22:56:33.069745602Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.071717189Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:56:33.079348208Z	87	PC: 12b23 \| Get or set file date and time
2018-12-17T22:56:33.082185913Z	62	PC: 12b27 \| Close file
2018-12-17T22:56:33.091586338Z	67	PC: 12b30 \| Get or set file attributes
2018-12-17T22:56:33.097039661Z	79	PC: 12a6c \| Find next file
2018-12-17T22:56:33.10117638Z	67	PC: 12a73 \| Get or set file attributes
2018-12-17T22:56:33.106338346Z	67	PC: 12a7e \| Get or set file attributes
2018-12-17T22:56:33.111309592Z	61	PC: 12a87 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:56:33.119492418Z	87	PC: 12a8e \| Get or set file date and time
2018-12-17T22:56:33.121361162Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:56:33.128557403Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.131003041Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-17T22:56:33.134011257Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.135590236Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:56:33.139612479Z	87	PC: 12b23 \| Get or set file date and time
2018-12-17T22:56:33.141225512Z	62	PC: 12b27 \| Close file
2018-12-17T22:56:33.150618804Z	67	PC: 12b30 \| Get or set file attributes
2018-12-17T22:56:33.155777734Z	79	PC: 12a6c \| Find next file
2018-12-17T22:56:33.15931803Z	67	PC: 12a73 \| Get or set file attributes
2018-12-17T22:56:33.164749333Z	67	PC: 12a7e \| Get or set file attributes
2018-12-17T22:56:33.17003457Z	61	PC: 12a87 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:56:33.177324567Z	87	PC: 12a8e \| Get or set file date and time
2018-12-17T22:56:33.178738315Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:56:33.18540446Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.187459834Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-17T22:56:33.190394332Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.192252716Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:56:33.196526491Z	87	PC: 12b23 \| Get or set file date and time
2018-12-17T22:56:33.198216609Z	62	PC: 12b27 \| Close file
2018-12-17T22:56:33.205994274Z	67	PC: 12b30 \| Get or set file attributes
2018-12-17T22:56:33.211106335Z	79	PC: 12a6c \| Find next file
2018-12-17T22:56:33.214076921Z	67	PC: 12a73 \| Get or set file attributes
2018-12-17T22:56:33.218654207Z	67	PC: 12a7e \| Get or set file attributes
2018-12-17T22:56:33.223845368Z	61	PC: 12a87 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:56:33.236726297Z	87	PC: 12a8e \| Get or set file date and time
2018-12-17T22:56:33.238667537Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:56:33.246678841Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.24844431Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-17T22:56:33.251741229Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.254342139Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:56:33.257421589Z	87	PC: 12b23 \| Get or set file date and time
2018-12-17T22:56:33.259214761Z	62	PC: 12b27 \| Close file
2018-12-17T22:56:33.26739909Z	67	PC: 12b30 \| Get or set file attributes
2018-12-17T22:56:33.272504509Z	79	PC: 12a6c \| Find next file
2018-12-17T22:56:33.275745984Z	67	PC: 12a73 \| Get or set file attributes
2018-12-17T22:56:33.280391358Z	67	PC: 12a7e \| Get or set file attributes
2018-12-17T22:56:33.286044969Z	61	PC: 12a87 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:56:33.298481202Z	87	PC: 12a8e \| Get or set file date and time
2018-12-17T22:56:33.300365064Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:56:33.308644782Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.310376248Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-17T22:56:33.313307118Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.31569589Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:56:33.318553443Z	87	PC: 12b23 \| Get or set file date and time
2018-12-17T22:56:33.320210638Z	62	PC: 12b27 \| Close file
2018-12-17T22:56:33.32870447Z	67	PC: 12b30 \| Get or set file attributes
2018-12-17T22:56:33.333643626Z	79	PC: 12a6c \| Find next file
2018-12-17T22:56:33.336830638Z	67	PC: 12a73 \| Get or set file attributes
2018-12-17T22:56:33.34181487Z	67	PC: 12a7e \| Get or set file attributes
2018-12-17T22:56:33.346965315Z	61	PC: 12a87 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:56:33.359516684Z	87	PC: 12a8e \| Get or set file date and time
2018-12-17T22:56:33.36139225Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:56:33.369479747Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.372335787Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-17T22:56:33.382062225Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.384852832Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:56:33.392150464Z	87	PC: 12b23 \| Get or set file date and time
2018-12-17T22:56:33.393766823Z	62	PC: 12b27 \| Close file
2018-12-17T22:56:33.403186764Z	67	PC: 12b30 \| Get or set file attributes
2018-12-17T22:56:33.408166838Z	79	PC: 12a6c \| Find next file
2018-12-17T22:56:33.412046403Z	67	PC: 12a73 \| Get or set file attributes
2018-12-17T22:56:33.418670077Z	67	PC: 12a7e \| Get or set file attributes
2018-12-17T22:56:33.424021429Z	61	PC: 12a87 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:56:33.436841314Z	87	PC: 12a8e \| Get or set file date and time
2018-12-17T22:56:33.440018858Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:56:33.447769Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.449864Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-17T22:56:33.453410909Z	66	PC: 12b59 \| Move file pointer
2018-12-17T22:56:33.45528391Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:56:33.45811341Z	87	PC: 12b23 \| Get or set file date and time
2018-12-17T22:56:33.459720662Z	62	PC: 12b27 \| Close file
2018-12-17T22:56:33.46893589Z	67	PC: 12b30 \| Get or set file attributes
2018-12-17T22:56:33.473636949Z	79	PC: 12a6c \| Find next file
2018-12-17T22:56:33.476649763Z	67	PC: 12a73 \| Get or set file attributes
2018-12-17T22:56:33.482858287Z	67	PC: 12a7e \| Get or set file attributes
2018-12-17T22:56:33.487686255Z	61	PC: 12a87 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:56:33.500635553Z	87	PC: 12a8e \| Get or set file date and time
2018-12-17T22:56:33.503591851Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:56:33.510517142Z	87	PC: 12b23 \| Get or set file date and time
2018-12-17T22:56:33.512925471Z	62	PC: 12b27 \| Close file
2018-12-17T22:56:33.521125799Z	67	PC: 12b30 \| Get or set file attributes
2018-12-17T22:56:33.526573763Z	79	PC: 12a6c \| Find next file
2018-12-17T22:56:33.529954018Z	42	PC: 12b39 \| Get date 0x12b39: cmp dh, 1 0x12b3c: jne 0x12b46 0x12b3e: cmp dl, 9 0x12b41: jne 0x12b46 0x12b43: call 0x12b5a 0x12b46: cmp word ptr [0x22d], 0x2e2a 0x12b4c: je 0x12ba2 0x12b4e: mov ax, 0x100 0x12b51: jmp ax 0x12b53: xor cx, cx 0x12b55: xor dx, dx 0x12b57: int 0x21 0x12b59: ret 0x12b5a: mov ah, 9 0x12b5c: lea dx, word ptr [bp + 0x163] 0x12b60: int 0x21 0x12b62: ret 0x12b63: call 0x12b66 0x12b66: nop 0x12b67: jmp 0x12b84
2018-12-17T22:56:33.532655168Z	76	PC: 12ba7 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12260,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:32:19.891080895Z	26	PC: 12a61 \| Set disk transfer address
2018-12-25T12:32:19.893022066Z	78	PC: 12a6c \| Find first file
2018-12-25T12:32:19.900419288Z	67	PC: 12a73 \| Get or set file attributes
2018-12-25T12:32:19.90545226Z	67	PC: 12a7e \| Get or set file attributes
2018-12-25T12:32:19.910609606Z	61	PC: 12a87 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:32:19.918477751Z	87	PC: 12a8e \| Get or set file date and time
2018-12-25T12:32:19.91996946Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:32:19.927079176Z	66	PC: 12b59 \| Move file pointer
2018-12-25T12:32:19.93137517Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-25T12:32:19.9534968Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:19.957952835Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:32:19.967408137Z	87	PC: 12b23 \| Get or set file date and time
2018-12-25T12:32:19.969005933Z	62	PC: 12b27 \| Close file
2018-12-25T12:32:19.977479652Z	67	PC: 12b30 \| Get or set file attributes
2018-12-25T12:32:19.982392229Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:19.985555924Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:19.990118206Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:19.995450291Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.008625182Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.010202877Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.017887283Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.020797345Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.028113562Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.029634947Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.033637101Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.035459802Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.044328965Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.051833811Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.054772117Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.059562918Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.064934224Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.069565663Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.070661781Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.076812322Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.080873548Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.092068878Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.094789425Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.098580027Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.100256003Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.108512482Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.11358588Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.116684899Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.121028355Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.125769886Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.133020532Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.134458397Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.141871734Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.143374738Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.146174949Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.147811881Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.150535194Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.152019533Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.160674027Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.16550435Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.16835538Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.172711651Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.177889324Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.185080065Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.186755628Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.194309972Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.195856822Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.198937935Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.20151851Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.204761361Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.206738883Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.215889231Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.226196556Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.23388531Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.239555305Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.245027544Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.252419725Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.253857282Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.260944383Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.262469758Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.271479808Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.274107347Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.281275248Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.282790543Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.291913698Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.29756693Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.300406061Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.305838674Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.310678526Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.317788627Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.319829724Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.326745297Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.328126459Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.33095848Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.332528175Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.335164306Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.336754774Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.344843212Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.349587722Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.352854568Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.358353625Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.363826558Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.370983345Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.373542954Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.380602576Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.382177775Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.390409432Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.397004359Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.399600643Z	42	PC: 12b39 \| Get date 0x12b39: cmp dh, 1 0x12b3c: jne 0x12b46 0x12b3e: cmp dl, 9 0x12b41: jne 0x12b46 0x12b43: call 0x12b5a 0x12b46: cmp word ptr [0x22d], 0x2e2a 0x12b4c: je 0x12ba2 0x12b4e: mov ax, 0x100 0x12b51: jmp ax 0x12b53: xor cx, cx 0x12b55: xor dx, dx 0x12b57: int 0x21 0x12b59: ret 0x12b5a: mov ah, 9 0x12b5c: lea dx, word ptr [bp + 0x163] 0x12b60: int 0x21 0x12b62: ret 0x12b63: call 0x12b66 0x12b66: nop 0x12b67: jmp 0x12b84
2018-12-25T12:32:20.402487983Z	76	PC: 12ba7 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":9,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12260,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:32:19.947511731Z	26	PC: 12a61 \| Set disk transfer address
2018-12-25T12:32:19.949042737Z	78	PC: 12a6c \| Find first file
2018-12-25T12:32:19.956029078Z	67	PC: 12a73 \| Get or set file attributes
2018-12-25T12:32:19.961209927Z	67	PC: 12a7e \| Get or set file attributes
2018-12-25T12:32:19.972498869Z	61	PC: 12a87 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:32:19.986342826Z	87	PC: 12a8e \| Get or set file date and time
2018-12-25T12:32:19.987789845Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:32:19.994792426Z	66	PC: 12b59 \| Move file pointer
2018-12-25T12:32:19.996637198Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-25T12:32:20.012975028Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.014379823Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:32:20.022116964Z	87	PC: 12b23 \| Get or set file date and time
2018-12-25T12:32:20.02428481Z	62	PC: 12b27 \| Close file
2018-12-25T12:32:20.031256765Z	67	PC: 12b30 \| Get or set file attributes
2018-12-25T12:32:20.035568494Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.038827027Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.044589891Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.048890297Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.063042406Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.064568083Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.071632333Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.074188238Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.077560566Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.079454013Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.083060837Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.085004022Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.092975686Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.096771304Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.099652325Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.104310689Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.109496016Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.122675655Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.124318491Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.132017496Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.133626886Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.136333725Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.138036769Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.140945517Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.142873276Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.151556742Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.156298Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.159088385Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.163490898Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.168194375Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.181039203Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.182603638Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.190762789Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.192342052Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.195581755Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.197485047Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.200432263Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.202099522Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.21085033Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.216361531Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.219303039Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.224243446Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.228610034Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.241339666Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.242981152Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.247103602Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.24818753Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.250928758Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.25257779Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.255503115Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.257284851Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.262856079Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.265925538Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.26798654Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.271673592Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.274832975Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.279220299Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.281560358Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.286400671Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.28759403Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.297023764Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.298496149Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.305913861Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.307960938Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.316737023Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.322180551Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.324927318Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.327927627Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.330923869Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.336257889Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.337554285Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.341884278Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.347962176Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.351158889Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.352690041Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.355490236Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.357398979Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.36543365Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.370148647Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.374101941Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.378834497Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.383720426Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.397784468Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.399627707Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.406857641Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.409946054Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.418152131Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.424599133Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.428059158Z	42	PC: 12b39 \| Get date 0x12b39: cmp dh, 1 0x12b3c: jne 0x12b46 0x12b3e: cmp dl, 9 0x12b41: jne 0x12b46 0x12b43: call 0x12b5a 0x12b46: cmp word ptr [0x22d], 0x2e2a 0x12b4c: je 0x12ba2 0x12b4e: mov ax, 0x100 0x12b51: jmp ax 0x12b53: xor cx, cx 0x12b55: xor dx, dx 0x12b57: int 0x21 0x12b59: ret 0x12b5a: mov ah, 9 0x12b5c: lea dx, word ptr [bp + 0x163] 0x12b60: int 0x21 0x12b62: ret 0x12b63: call 0x12b66 0x12b66: nop 0x12b67: jmp 0x12b84
2018-12-25T12:32:20.430526077Z	9	PC: 12b62 \| Display string (String= 'Virus Mosquito v1.0b - VirusBrasil 2000. ')
2018-12-25T12:32:20.436729366Z	76	PC: 12ba7 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12260,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:32:19.988513769Z	26	PC: 12a61 \| Set disk transfer address
2018-12-25T12:32:19.989748801Z	78	PC: 12a6c \| Find first file
2018-12-25T12:32:19.995417635Z	67	PC: 12a73 \| Get or set file attributes
2018-12-25T12:32:19.999790438Z	67	PC: 12a7e \| Get or set file attributes
2018-12-25T12:32:20.004619865Z	61	PC: 12a87 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:32:20.010898643Z	87	PC: 12a8e \| Get or set file date and time
2018-12-25T12:32:20.012064324Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:32:20.018590888Z	66	PC: 12b59 \| Move file pointer
2018-12-25T12:32:20.020016583Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-25T12:32:20.034644381Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.036869929Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:32:20.043064092Z	87	PC: 12b23 \| Get or set file date and time
2018-12-25T12:32:20.044081213Z	62	PC: 12b27 \| Close file
2018-12-25T12:32:20.049584694Z	67	PC: 12b30 \| Get or set file attributes
2018-12-25T12:32:20.052256771Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.054172399Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.057214251Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.061341588Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.067680733Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.068873894Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.075631265Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.077056889Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.079690075Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.081992383Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.084550482Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.086008658Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.094492107Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.103243343Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.109365644Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.119426662Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.123901318Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.133417282Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.135275828Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.141477754Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.142845777Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.145912742Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.14729327Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.149742501Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.151783987Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.159333364Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.163598748Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.167177885Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.17592381Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.185021003Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.19522418Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.196523897Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.202661877Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.20444341Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.207127816Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.208499546Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.211412447Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.212701367Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.217342875Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.220522396Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.223380603Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.227232429Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.235225965Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.242309385Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.243323984Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.248149002Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.249434375Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.251889782Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.253630716Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.255995967Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.257262865Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.264317526Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.269005331Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.271786967Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.277175782Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.281573259Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.289034962Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.29089344Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.300663438Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.302325502Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.308158609Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.312214171Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.316765142Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.318625811Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.325036135Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.327995512Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.330392601Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.334181238Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.337094888Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.341214026Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.342930233Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.34721982Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.348411221Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.350884467Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.351959579Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.353709756Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.355374894Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.360389773Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.366075212Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.371783685Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.380068531Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.388439456Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.398003699Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.399467571Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.406220336Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.408081847Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.415238171Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.420783544Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.423883418Z	42	PC: 12b39 \| Get date 0x12b39: cmp dh, 1 0x12b3c: jne 0x12b46 0x12b3e: cmp dl, 9 0x12b41: jne 0x12b46 0x12b43: call 0x12b5a 0x12b46: cmp word ptr [0x22d], 0x2e2a 0x12b4c: je 0x12ba2 0x12b4e: mov ax, 0x100 0x12b51: jmp ax 0x12b53: xor cx, cx 0x12b55: xor dx, dx 0x12b57: int 0x21 0x12b59: ret 0x12b5a: mov ah, 9 0x12b5c: lea dx, word ptr [bp + 0x163] 0x12b60: int 0x21 0x12b62: ret 0x12b63: call 0x12b66 0x12b66: nop 0x12b67: jmp 0x12b84
2018-12-25T12:32:20.426270806Z	76	PC: 12ba7 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12260,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:32:20.405808057Z	26	PC: 12a61 \| Set disk transfer address
2018-12-25T12:32:20.40739724Z	78	PC: 12a6c \| Find first file
2018-12-25T12:32:20.41311841Z	67	PC: 12a73 \| Get or set file attributes
2018-12-25T12:32:20.417517043Z	67	PC: 12a7e \| Get or set file attributes
2018-12-25T12:32:20.427087945Z	61	PC: 12a87 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:32:20.437080423Z	87	PC: 12a8e \| Get or set file date and time
2018-12-25T12:32:20.438270795Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:32:20.444241909Z	66	PC: 12b59 \| Move file pointer
2018-12-25T12:32:20.446058501Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-25T12:32:20.459456971Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.460646385Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:32:20.467220888Z	87	PC: 12b23 \| Get or set file date and time
2018-12-25T12:32:20.468629466Z	62	PC: 12b27 \| Close file
2018-12-25T12:32:20.47601788Z	67	PC: 12b30 \| Get or set file attributes
2018-12-25T12:32:20.480269986Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.48300277Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.486821292Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.496239526Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.50545289Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.506686709Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.513471946Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.514697751Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.517114899Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.518873735Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.521600154Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.523250015Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.531062307Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.535726168Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.538408713Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.542912252Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.552725746Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.564446132Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.566029122Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.579114813Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.580829749Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.583779061Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.586022886Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.588688936Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.5902611Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.59787541Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.602105935Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.604612822Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.609299433Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.613965513Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.625321977Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.627139755Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.633862896Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.635492341Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.639481222Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.641146994Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.644062897Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.646855642Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.655302774Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.660100295Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.663580958Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.667601104Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.671517156Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.682917467Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.684596189Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.690785187Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.692404555Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.695464498Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.696757156Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.699928881Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.701703643Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.70868312Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.712836556Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.715430424Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.719581501Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.724278086Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.731300019Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.732842832Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.739044514Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.741107717Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.748920771Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.750247552Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.757831366Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.759360929Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.78339817Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.792874385Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.801198958Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.805590036Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.819182918Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.826078639Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.827960828Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.835931095Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.837780175Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.840845173Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.843753806Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:20.846763758Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.848581485Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.856920106Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.867168929Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.873759081Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.879065346Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.883551666Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.890434547Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.892981751Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.900136087Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:20.901918207Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:20.90963938Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:20.921588979Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.924039182Z	42	PC: 12b39 \| Get date 0x12b39: cmp dh, 1 0x12b3c: jne 0x12b46 0x12b3e: cmp dl, 9 0x12b41: jne 0x12b46 0x12b43: call 0x12b5a 0x12b46: cmp word ptr [0x22d], 0x2e2a 0x12b4c: je 0x12ba2 0x12b4e: mov ax, 0x100 0x12b51: jmp ax 0x12b53: xor cx, cx 0x12b55: xor dx, dx 0x12b57: int 0x21 0x12b59: ret 0x12b5a: mov ah, 9 0x12b5c: lea dx, word ptr [bp + 0x163] 0x12b60: int 0x21 0x12b62: ret 0x12b63: call 0x12b66 0x12b66: nop 0x12b67: jmp 0x12b84
2018-12-25T12:32:20.926182341Z	76	PC: 12ba7 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":9,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12260,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:32:20.89998863Z	26	PC: 12a61 \| Set disk transfer address
2018-12-25T12:32:20.902159448Z	78	PC: 12a6c \| Find first file
2018-12-25T12:32:20.906039982Z	67	PC: 12a73 \| Get or set file attributes
2018-12-25T12:32:20.909518931Z	67	PC: 12a7e \| Get or set file attributes
2018-12-25T12:32:20.914742728Z	61	PC: 12a87 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:32:20.919408587Z	87	PC: 12a8e \| Get or set file date and time
2018-12-25T12:32:20.920401455Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:32:20.925709902Z	66	PC: 12b59 \| Move file pointer
2018-12-25T12:32:20.927877597Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-25T12:32:20.942277333Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.943801892Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:32:20.950865355Z	87	PC: 12b23 \| Get or set file date and time
2018-12-25T12:32:20.952189876Z	62	PC: 12b27 \| Close file
2018-12-25T12:32:20.959711222Z	67	PC: 12b30 \| Get or set file attributes
2018-12-25T12:32:20.964127704Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.966451273Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.97008567Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.974220772Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.985047843Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.986312346Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:20.994650419Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.995960403Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:20.998317605Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.000301065Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.003007017Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.004689592Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.012904265Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.017920325Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.02074371Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.025725511Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.030510153Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.036967441Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.039060474Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.04561952Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.047186323Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.050607326Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.051988725Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.058972964Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.060640373Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.068822052Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.073736714Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.076204829Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.080410306Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.084197626Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.091080741Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.093069163Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.099142779Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.100479975Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.103784927Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.105139312Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.108026474Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.110119898Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.117403578Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.121391846Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.124844862Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.129186864Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.133388062Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.145840229Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.147674076Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.154580858Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.157492327Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.160254736Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.161547477Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.16413274Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.165386946Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.170432433Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.17563492Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.177453319Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.180477271Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.184526316Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.191471128Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.192873881Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.198055958Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.19990411Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.206211015Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.207409467Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.212131799Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.213228067Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.218330338Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.226009942Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.232088791Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.236491025Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.240380311Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.244539317Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.245606962Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.250671254Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.251786942Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.254109579Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.258936819Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.261541279Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.262734586Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.268064625Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.277628217Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.283915909Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.291968184Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.295652176Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.302022171Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.303634875Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.308302671Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.31007728Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.316277315Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.321022137Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.323620322Z	42	PC: 12b39 \| Get date 0x12b39: cmp dh, 1 0x12b3c: jne 0x12b46 0x12b3e: cmp dl, 9 0x12b41: jne 0x12b46 0x12b43: call 0x12b5a 0x12b46: cmp word ptr [0x22d], 0x2e2a 0x12b4c: je 0x12ba2 0x12b4e: mov ax, 0x100 0x12b51: jmp ax 0x12b53: xor cx, cx 0x12b55: xor dx, dx 0x12b57: int 0x21 0x12b59: ret 0x12b5a: mov ah, 9 0x12b5c: lea dx, word ptr [bp + 0x163] 0x12b60: int 0x21 0x12b62: ret 0x12b63: call 0x12b66 0x12b66: nop 0x12b67: jmp 0x12b84
2018-12-25T12:32:21.327048704Z	9	PC: 12b62 \| Display string (String= 'Virus Mosquito v1.0b - VirusBrasil 2000. ')
2018-12-25T12:32:21.332656688Z	76	PC: 12ba7 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12260,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:32:20.898305658Z	26	PC: 12a61 \| Set disk transfer address
2018-12-25T12:32:20.900813863Z	78	PC: 12a6c \| Find first file
2018-12-25T12:32:20.906851578Z	67	PC: 12a73 \| Get or set file attributes
2018-12-25T12:32:20.911494509Z	67	PC: 12a7e \| Get or set file attributes
2018-12-25T12:32:20.916906776Z	61	PC: 12a87 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:32:20.923487917Z	87	PC: 12a8e \| Get or set file date and time
2018-12-25T12:32:20.924763514Z	63	PC: 12aa1 \| Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:32:20.93579131Z	66	PC: 12b59 \| Move file pointer
2018-12-25T12:32:20.937473715Z	64	PC: 12b05 \| Write file or device (Write 354 bytes on handle 5)
2018-12-25T12:32:20.951314338Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:20.952691619Z	64	PC: 12b16 \| Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:32:20.959994245Z	87	PC: 12b23 \| Get or set file date and time
2018-12-25T12:32:20.96156337Z	62	PC: 12b27 \| Close file
2018-12-25T12:32:20.96916302Z	67	PC: 12b30 \| Get or set file attributes
2018-12-25T12:32:20.974406013Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:20.976935168Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:20.981088567Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:20.986510373Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:20.993328201Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:20.995052608Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.006787736Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.008375333Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.011045456Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.013614884Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.016109038Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.017634861Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.025106694Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.034453772Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.040653274Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.04531938Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.049580199Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.055995225Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.058398987Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.065001467Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.066418091Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.069615598Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.071265844Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.074077813Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.07626593Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.09054583Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.099803082Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.106526585Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.111065794Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.114806691Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.12124732Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.123087986Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.129558344Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.131025788Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.134718216Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.1361188Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.138649045Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.140836038Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.148341018Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.156854276Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.170946237Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.175062008Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.179148119Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.185958458Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.187417683Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.193794231Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.195874554Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.198785695Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.200393786Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.203693788Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.205419247Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.21282407Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.218002614Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.220994969Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.225568523Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.230872938Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.243235878Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.244938459Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.251702364Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.253977607Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.262129392Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.263781163Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.271465141Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.272924095Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.280477677Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.285328583Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.288807518Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.293360568Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.298466673Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.310183997Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.311853654Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.319211359Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.321061667Z	64	PC: 12b05 \| Write file or device (See above)
2018-12-25T12:32:21.32391246Z	66	PC: 12b59 \| Move file pointer (See above)
2018-12-25T12:32:21.326538769Z	64	PC: 12b16 \| Write file or device (See above)
2018-12-25T12:32:21.329630153Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.33150769Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.340266095Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.344660383Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.34724276Z	67	PC: 12a73 \| Get or set file attributes (See above)
2018-12-25T12:32:21.352492825Z	67	PC: 12a7e \| Get or set file attributes (See above)
2018-12-25T12:32:21.356612263Z	61	PC: 12a87 \| Open file (See above)
2018-12-25T12:32:21.367834959Z	87	PC: 12a8e \| Get or set file date and time (See above)
2018-12-25T12:32:21.370419274Z	63	PC: 12aa1 \| Read file or device (See above)
2018-12-25T12:32:21.377535927Z	87	PC: 12b23 \| Get or set file date and time (See above)
2018-12-25T12:32:21.379079529Z	62	PC: 12b27 \| Close file (See above)
2018-12-25T12:32:21.646029821Z	67	PC: 12b30 \| Get or set file attributes (See above)
2018-12-25T12:32:21.652567473Z	79	PC: 12a6c \| Find next file (See above)
2018-12-25T12:32:21.655197588Z	42	PC: 12b39 \| Get date 0x12b39: cmp dh, 1 0x12b3c: jne 0x12b46 0x12b3e: cmp dl, 9 0x12b41: jne 0x12b46 0x12b43: call 0x12b5a 0x12b46: cmp word ptr [0x22d], 0x2e2a 0x12b4c: je 0x12ba2 0x12b4e: mov ax, 0x100 0x12b51: jmp ax 0x12b53: xor cx, cx 0x12b55: xor dx, dx 0x12b57: int 0x21 0x12b59: ret 0x12b5a: mov ah, 9 0x12b5c: lea dx, word ptr [bp + 0x163] 0x12b60: int 0x21 0x12b62: ret 0x12b63: call 0x12b66 0x12b66: nop 0x12b67: jmp 0x12b84
2018-12-25T12:32:21.657032156Z	76	PC: 12ba7 \| Terminate with return code (Return code = '0')