Sample viewer

vx.netlux.org/Virus.DOS.CodeBreaker.1665

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:00:07.733104346Z	78	PC: 12aa0 \| Find first file
2018-12-17T23:00:07.740792644Z	67	PC: 12b5a \| Get or set file attributes
2018-12-17T23:00:07.759895162Z	61	PC: 12b62 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:00:07.767667358Z	87	PC: 12b68 \| Get or set file date and time
2018-12-17T23:00:07.769977249Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:00:07.777909556Z	66	PC: 12b90 \| Move file pointer
2018-12-17T23:00:07.779615402Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:07.783598126Z	66	PC: 12bad \| Move file pointer
2018-12-17T23:00:07.785781188Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:07.788257672Z	66	PC: 12bda \| Move file pointer
2018-12-17T23:00:07.790584344Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:07.794597536Z	66	PC: 12bf3 \| Move file pointer
2018-12-17T23:00:07.796634273Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-17T23:00:07.799539112Z	64	PC: 12c56 \| Write file or device (Write 48 bytes on handle 5)
2018-12-17T23:00:07.806307261Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-17T23:00:07.815779011Z	87	PC: 12d39 \| Get or set file date and time
2018-12-17T23:00:07.817404296Z	62	PC: 12d3d \| Close file
2018-12-17T23:00:07.826804721Z	67	PC: 12d4c \| Get or set file attributes
2018-12-17T23:00:07.837870356Z	79	PC: 12aa0 \| Find next file
2018-12-17T23:00:07.841158295Z	67	PC: 12b5a \| Get or set file attributes
2018-12-17T23:00:07.854024825Z	61	PC: 12b62 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:00:07.862641797Z	87	PC: 12b68 \| Get or set file date and time
2018-12-17T23:00:07.864528643Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:00:07.872066328Z	66	PC: 12b90 \| Move file pointer
2018-12-17T23:00:07.874200339Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:07.877108664Z	66	PC: 12bad \| Move file pointer
2018-12-17T23:00:07.878892537Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:07.88225226Z	66	PC: 12bda \| Move file pointer
2018-12-17T23:00:07.884010595Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:07.887110921Z	66	PC: 12bf3 \| Move file pointer
2018-12-17T23:00:07.890001253Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-17T23:00:07.892950996Z	64	PC: 12c56 \| Write file or device (Write 48 bytes on handle 5)
2018-12-17T23:00:07.896402071Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-17T23:00:07.90690541Z	87	PC: 12d39 \| Get or set file date and time
2018-12-17T23:00:07.917856189Z	62	PC: 12d3d \| Close file
2018-12-17T23:00:07.931302307Z	67	PC: 12d4c \| Get or set file attributes
2018-12-17T23:00:07.941780298Z	79	PC: 12aa0 \| Find next file
2018-12-17T23:00:07.94644837Z	67	PC: 12b5a \| Get or set file attributes
2018-12-17T23:00:07.957653387Z	61	PC: 12b62 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:00:07.966049456Z	87	PC: 12b68 \| Get or set file date and time
2018-12-17T23:00:07.968202281Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:00:07.975363669Z	66	PC: 12b90 \| Move file pointer
2018-12-17T23:00:07.977741167Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:07.982382229Z	66	PC: 12bad \| Move file pointer
2018-12-17T23:00:07.984078477Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:07.98703889Z	66	PC: 12bda \| Move file pointer
2018-12-17T23:00:07.988643556Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:07.991486628Z	66	PC: 12bf3 \| Move file pointer
2018-12-17T23:00:07.993293975Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-17T23:00:07.996273914Z	64	PC: 12c56 \| Write file or device (Write 48 bytes on handle 5)
2018-12-17T23:00:08.000093642Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-17T23:00:08.009664779Z	87	PC: 12d39 \| Get or set file date and time
2018-12-17T23:00:08.011782008Z	62	PC: 12d3d \| Close file
2018-12-17T23:00:08.020103846Z	67	PC: 12d4c \| Get or set file attributes
2018-12-17T23:00:08.030601354Z	79	PC: 12aa0 \| Find next file
2018-12-17T23:00:08.034424208Z	67	PC: 12b5a \| Get or set file attributes
2018-12-17T23:00:08.044975587Z	61	PC: 12b62 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:00:08.051746541Z	87	PC: 12b68 \| Get or set file date and time
2018-12-17T23:00:08.053967986Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:00:08.060091502Z	66	PC: 12b90 \| Move file pointer
2018-12-17T23:00:08.061675269Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.06723663Z	66	PC: 12bad \| Move file pointer
2018-12-17T23:00:08.068698527Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.07064752Z	66	PC: 12bda \| Move file pointer
2018-12-17T23:00:08.072995552Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:08.075861378Z	66	PC: 12bf3 \| Move file pointer
2018-12-17T23:00:08.077342101Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-17T23:00:08.080766546Z	64	PC: 12c56 \| Write file or device (Write 48 bytes on handle 5)
2018-12-17T23:00:08.083980466Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-17T23:00:08.093219238Z	87	PC: 12d39 \| Get or set file date and time
2018-12-17T23:00:08.096527234Z	62	PC: 12d3d \| Close file
2018-12-17T23:00:08.104931719Z	67	PC: 12d4c \| Get or set file attributes
2018-12-17T23:00:08.11567096Z	79	PC: 12aa0 \| Find next file
2018-12-17T23:00:08.118567893Z	67	PC: 12b5a \| Get or set file attributes
2018-12-17T23:00:08.129699152Z	61	PC: 12b62 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:00:08.137756033Z	87	PC: 12b68 \| Get or set file date and time
2018-12-17T23:00:08.13971813Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:00:08.147709969Z	66	PC: 12b90 \| Move file pointer
2018-12-17T23:00:08.149439669Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.152305695Z	66	PC: 12bad \| Move file pointer
2018-12-17T23:00:08.155170409Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.157264544Z	66	PC: 12bda \| Move file pointer
2018-12-17T23:00:08.158823213Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:08.16258344Z	66	PC: 12bf3 \| Move file pointer
2018-12-17T23:00:08.164197563Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-17T23:00:08.16665447Z	64	PC: 12c56 \| Write file or device (Write 48 bytes on handle 5)
2018-12-17T23:00:08.169816152Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-17T23:00:08.179326513Z	87	PC: 12d39 \| Get or set file date and time
2018-12-17T23:00:08.180946999Z	62	PC: 12d3d \| Close file
2018-12-17T23:00:08.189085733Z	67	PC: 12d4c \| Get or set file attributes
2018-12-17T23:00:08.200089993Z	79	PC: 12aa0 \| Find next file
2018-12-17T23:00:08.203145595Z	67	PC: 12b5a \| Get or set file attributes
2018-12-17T23:00:08.214594671Z	61	PC: 12b62 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:00:08.222903886Z	87	PC: 12b68 \| Get or set file date and time
2018-12-17T23:00:08.224674233Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:00:08.231443915Z	66	PC: 12b90 \| Move file pointer
2018-12-17T23:00:08.233578486Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.236099112Z	66	PC: 12bad \| Move file pointer
2018-12-17T23:00:08.23752897Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.239947364Z	66	PC: 12bda \| Move file pointer
2018-12-17T23:00:08.241422787Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:08.244141897Z	66	PC: 12bf3 \| Move file pointer
2018-12-17T23:00:08.246602802Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-17T23:00:08.24886344Z	64	PC: 12c56 \| Write file or device (Write 48 bytes on handle 5)
2018-12-17T23:00:08.257230794Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-17T23:00:08.266944649Z	87	PC: 12d39 \| Get or set file date and time
2018-12-17T23:00:08.268518527Z	62	PC: 12d3d \| Close file
2018-12-17T23:00:08.276426578Z	67	PC: 12d4c \| Get or set file attributes
2018-12-17T23:00:08.289097669Z	79	PC: 12aa0 \| Find next file
2018-12-17T23:00:08.292555778Z	67	PC: 12b5a \| Get or set file attributes
2018-12-17T23:00:08.302648966Z	61	PC: 12b62 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:00:08.310350018Z	87	PC: 12b68 \| Get or set file date and time
2018-12-17T23:00:08.313284172Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:00:08.320859187Z	66	PC: 12b90 \| Move file pointer
2018-12-17T23:00:08.322729923Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.326506951Z	66	PC: 12bad \| Move file pointer
2018-12-17T23:00:08.328149467Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.330372615Z	66	PC: 12bda \| Move file pointer
2018-12-17T23:00:08.332951191Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:08.336273525Z	66	PC: 12bf3 \| Move file pointer
2018-12-17T23:00:08.338061224Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-17T23:00:08.341143927Z	64	PC: 12c56 \| Write file or device (Write 48 bytes on handle 5)
2018-12-17T23:00:08.344181616Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-17T23:00:08.353665658Z	87	PC: 12d39 \| Get or set file date and time
2018-12-17T23:00:08.355379659Z	62	PC: 12d3d \| Close file
2018-12-17T23:00:08.363904139Z	67	PC: 12d4c \| Get or set file attributes
2018-12-17T23:00:08.374719033Z	79	PC: 12aa0 \| Find next file
2018-12-17T23:00:08.379060331Z	67	PC: 12b5a \| Get or set file attributes
2018-12-17T23:00:08.389376087Z	61	PC: 12b62 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:00:08.396554828Z	87	PC: 12b68 \| Get or set file date and time
2018-12-17T23:00:08.398146328Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:00:08.401354227Z	66	PC: 12b90 \| Move file pointer
2018-12-17T23:00:08.402911533Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.40544338Z	66	PC: 12bad \| Move file pointer
2018-12-17T23:00:08.407000056Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:08.409622945Z	66	PC: 12bda \| Move file pointer
2018-12-17T23:00:08.41107829Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:08.415410171Z	66	PC: 12bf3 \| Move file pointer
2018-12-17T23:00:08.417343664Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-17T23:00:08.419988184Z	64	PC: 12c56 \| Write file or device (Write 48 bytes on handle 5)
2018-12-17T23:00:08.425788785Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-17T23:00:08.435580095Z	87	PC: 12d39 \| Get or set file date and time
2018-12-17T23:00:08.437669291Z	62	PC: 12d3d \| Close file
2018-12-17T23:00:08.447263291Z	67	PC: 12d4c \| Get or set file attributes

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":13437,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:38:12.254098882Z	78	PC: 12aa0 \| Find first file
2018-12-25T12:38:12.260885255Z	67	PC: 12b5a \| Get or set file attributes
2018-12-25T12:38:12.276716073Z	61	PC: 12b62 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:38:12.283144635Z	87	PC: 12b68 \| Get or set file date and time
2018-12-25T12:38:12.285036159Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-25T12:38:12.291598942Z	66	PC: 12b90 \| Move file pointer
2018-12-25T12:38:12.292894808Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-25T12:38:12.295520101Z	66	PC: 12bad \| Move file pointer
2018-12-25T12:38:12.297468849Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-25T12:38:12.300430747Z	66	PC: 12bda \| Move file pointer
2018-12-25T12:38:12.302099654Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:38:12.305065078Z	66	PC: 12bf3 \| Move file pointer
2018-12-25T12:38:12.306474159Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-25T12:38:12.308452814Z	64	PC: 12c7c \| Write file or device (Write 48 bytes on handle 5)
2018-12-25T12:38:12.312108117Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-25T12:38:12.320510768Z	87	PC: 12d39 \| Get or set file date and time
2018-12-25T12:38:12.331391289Z	62	PC: 12d3d \| Close file
2018-12-25T12:38:12.357124416Z	67	PC: 12d4c \| Get or set file attributes
2018-12-25T12:38:12.367522866Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.37045534Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.380901865Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.387465839Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.388726976Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.395431429Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.396875159Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.399194154Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.401532204Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.403724884Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.405257392Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.408294101Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.410488206Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.413085572Z	64	PC: 12c7c \| Write file or device (See above)
2018-12-25T12:38:12.41586059Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.424909095Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.426309138Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.434281899Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.449335306Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.452522099Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.462811818Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.470524867Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.472455155Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.479395419Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.481651256Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.484136633Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.485546705Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.487609209Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.489582449Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.493392132Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.494705399Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.497703457Z	64	PC: 12c7c \| Write file or device (See above)
2018-12-25T12:38:12.501089156Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.510147153Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.512462698Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.519958323Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.529753583Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.533373801Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.543021459Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.549550493Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.551951423Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.558427019Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.559967578Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.562717932Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.565020081Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.567744506Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.569250886Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.57292783Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.574464352Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.580320493Z	64	PC: 12c7c \| Write file or device (See above)
2018-12-25T12:38:12.584242492Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.592734797Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.594395224Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.603023458Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.61283327Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.615681943Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.633227658Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.640763401Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.642439789Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.651182799Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.652998156Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.655648982Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.658000985Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.66035046Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.661922545Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.664398756Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.665484426Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.666980543Z	64	PC: 12c7c \| Write file or device (See above)
2018-12-25T12:38:12.669310651Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.674793196Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.676048056Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.683866418Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.69447697Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.69733484Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.707466512Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.715078748Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.716697817Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.72310874Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.726668985Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.728821158Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.730367529Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.733148666Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.734711517Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.737479486Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.750586407Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.752647349Z	64	PC: 12c7c \| Write file or device (See above)
2018-12-25T12:38:12.760435002Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.766319017Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.767369727Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.772155652Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.778740209Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.780482978Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.787343879Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.794759406Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.79662274Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.803134814Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.805417217Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.808316557Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.809862746Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.812577414Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.81443199Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.817180011Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.818888923Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.822013333Z	64	PC: 12c7c \| Write file or device (See above)
2018-12-25T12:38:12.824940158Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.837065992Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.840091199Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.847696136Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.857924151Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.861438907Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.87088495Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.877634531Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.880206229Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.88300935Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.88455063Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.887950073Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.889647056Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.892439135Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.895983365Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.898532297Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.900697708Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.903914707Z	64	PC: 12c7c \| Write file or device (See above)
2018-12-25T12:38:12.907785758Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.916650208Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.920065993Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.928610699Z	67	PC: 12d4c \| Get or set file attributes (See above)

{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":13437,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:38:12.387744146Z	78	PC: 12aa0 \| Find first file
2018-12-25T12:38:12.39363969Z	67	PC: 12b5a \| Get or set file attributes
2018-12-25T12:38:12.408828044Z	61	PC: 12b62 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:38:12.420416507Z	87	PC: 12b68 \| Get or set file date and time
2018-12-25T12:38:12.421954533Z	63	PC: 12b7c \| Read file or device (Read 5 bytes on handle 5)
2018-12-25T12:38:12.428860735Z	66	PC: 12b90 \| Move file pointer
2018-12-25T12:38:12.430417283Z	63	PC: 12b9b \| Read file or device (Read 2 bytes on handle 5)
2018-12-25T12:38:12.432915962Z	66	PC: 12bad \| Move file pointer
2018-12-25T12:38:12.435584342Z	63	PC: 12bb8 \| Read file or device (Read 2 bytes on handle 5)
2018-12-25T12:38:12.437548737Z	66	PC: 12bda \| Move file pointer
2018-12-25T12:38:12.438979472Z	64	PC: 12be5 \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:38:12.445339234Z	66	PC: 12bf3 \| Move file pointer
2018-12-25T12:38:12.44706723Z	42	PC: 12bf7 \| Get date 0x12bf7: or al, al 0x12bf9: je 0x12c1b 0x12bfb: cmp al, 1 0x12bfd: je 0x12c41 0x12bff: cmp al, 2 0x12c01: je 0x12c67 0x12c03: cmp al, 3 0x12c05: jne 0x12c0a 0x12c07: jmp 0x12c8d 0x12c0a: cmp al, 4 0x12c0c: jne 0x12c11 0x12c0e: jmp 0x12cb2 0x12c11: cmp al, 5 0x12c13: jne 0x12c18 0x12c15: jmp 0x12cda 0x12c18: jmp 0x12cff 0x12c1b: mov al, byte ptr ds:[bp + 0x124] 0x12c20: mov byte ptr ds:[bp + 0x433], al 0x12c25: mov ah, 0x40 0x12c27: lea dx, word ptr [bp + 0x419]
2018-12-25T12:38:12.450149847Z	64	PC: 12ca2 \| Write file or device (Write 48 bytes on handle 5)
2018-12-25T12:38:12.453743373Z	64	PC: 12d2d \| Write file or device (Write 1617 bytes on handle 5)
2018-12-25T12:38:12.462835375Z	87	PC: 12d39 \| Get or set file date and time
2018-12-25T12:38:12.464532894Z	62	PC: 12d3d \| Close file
2018-12-25T12:38:12.473198913Z	67	PC: 12d4c \| Get or set file attributes
2018-12-25T12:38:12.482869235Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.486164767Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.496285142Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.502788056Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.504343449Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.510853851Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.520683422Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.523343861Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.525220589Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.528191586Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.529863665Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.532764902Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.538924756Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.541428543Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:38:12.544570048Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.553727164Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.574822409Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.584763329Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.596377202Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.598981129Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.608198551Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.615591499Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.617077475Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.624597337Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.627021526Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.629765414Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.63130776Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.634053967Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.635610669Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.638289386Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.640207781Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.642551648Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:38:12.644540018Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.650428184Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.651543539Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.656583878Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.663531745Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.66533395Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.6724805Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.680018056Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.68197173Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.688443004Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.690250009Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.693682806Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.695272827Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.697332027Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.699758426Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.702735443Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.704420002Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.70743941Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:38:12.710270814Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.718715466Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.720958091Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.729140141Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.739580194Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.743532635Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.753383646Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.760136627Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.762720598Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.769161368Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.771161423Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.774626334Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.775943083Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.778064741Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.780369Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.783466724Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.785079704Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.788099363Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:38:12.791410921Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.800402755Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.802249861Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.810654774Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.820953842Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.823785124Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.837165928Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.84329737Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.844538638Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.852039178Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.853729313Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.856682793Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.859154099Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.861074439Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.862631571Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.86695316Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.868593149Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.870853831Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:38:12.879772457Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.88815193Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.889777149Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.898133944Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.908533848Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:12.911145107Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:12.921832045Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:12.928389739Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:12.930414365Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:12.937598341Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:12.951174145Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:12.953558467Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:12.955645553Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:12.957459079Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:12.958966484Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:12.961706911Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:12.963847138Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:12.966290481Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:38:12.969359114Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:12.97834688Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:12.980092065Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:12.987797759Z	67	PC: 12d4c \| Get or set file attributes (See above)
2018-12-25T12:38:12.999474863Z	79	PC: 12aa0 \| Find next file (See above)
2018-12-25T12:38:13.002375162Z	67	PC: 12b5a \| Get or set file attributes (See above)
2018-12-25T12:38:13.012207491Z	61	PC: 12b62 \| Open file (See above)
2018-12-25T12:38:13.019843914Z	87	PC: 12b68 \| Get or set file date and time (See above)
2018-12-25T12:38:13.021532293Z	63	PC: 12b7c \| Read file or device (See above)
2018-12-25T12:38:13.024371373Z	66	PC: 12b90 \| Move file pointer (See above)
2018-12-25T12:38:13.026880218Z	63	PC: 12b9b \| Read file or device (See above)
2018-12-25T12:38:13.029557121Z	66	PC: 12bad \| Move file pointer (See above)
2018-12-25T12:38:13.031158618Z	63	PC: 12bb8 \| Read file or device (See above)
2018-12-25T12:38:13.034523221Z	66	PC: 12bda \| Move file pointer (See above)
2018-12-25T12:38:13.03614905Z	64	PC: 12be5 \| Write file or device (See above)
2018-12-25T12:38:13.039014423Z	66	PC: 12bf3 \| Move file pointer (See above)
2018-12-25T12:38:13.041614527Z	42	PC: 12bf7 \| Get date (See above)
2018-12-25T12:38:13.043860067Z	64	PC: 12ca2 \| Write file or device (See above)
2018-12-25T12:38:13.047338199Z	64	PC: 12d2d \| Write file or device (See above)
2018-12-25T12:38:13.056796078Z	87	PC: 12d39 \| Get or set file date and time (See above)
2018-12-25T12:38:13.05869356Z	62	PC: 12d3d \| Close file (See above)
2018-12-25T12:38:13.066524557Z	67	PC: 12d4c \| Get or set file attributes (See above)