Sample viewer

vx.netlux.org/Virus.DOS.Mosquito.357

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:03:00.030840199Z 26 PC: 12a61 | Set disk transfer address
2018-12-17T23:03:00.032510102Z 78 PC: 12a6c | Find first file
2018-12-17T23:03:00.039965325Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:03:00.05300897Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:03:00.05868008Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:03:00.066429037Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:03:00.068084939Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:03:00.075201753Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.077298663Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-17T23:03:00.093410035Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.095633101Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:03:00.103442012Z 87 PC: 12b26 | Get or set file date and time
2018-12-17T23:03:00.105621574Z 62 PC: 12b2a | Close file
2018-12-17T23:03:00.114529547Z 67 PC: 12b33 | Get or set file attributes
2018-12-17T23:03:00.120440711Z 79 PC: 12a6c | Find next file
2018-12-17T23:03:00.123347876Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:03:00.12780123Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:03:00.132218446Z 61 PC: 12a87 | Open file (Filename = 'PRINT.COM')
2018-12-17T23:03:00.146027979Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:03:00.147620717Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:03:00.155142439Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.157887612Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-17T23:03:00.161481667Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.163591035Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:03:00.167296606Z 87 PC: 12b26 | Get or set file date and time
2018-12-17T23:03:00.169112194Z 62 PC: 12b2a | Close file
2018-12-17T23:03:00.17771054Z 67 PC: 12b33 | Get or set file attributes
2018-12-17T23:03:00.183037072Z 79 PC: 12a6c | Find next file
2018-12-17T23:03:00.186240413Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:03:00.191315902Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:03:00.206726997Z 61 PC: 12a87 | Open file (Filename = 'HELLO.COM')
2018-12-17T23:03:00.228994972Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:03:00.230843301Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:03:00.241083877Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.243650193Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-17T23:03:00.246860805Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.248701025Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:03:00.252341257Z 87 PC: 12b26 | Get or set file date and time
2018-12-17T23:03:00.254272387Z 62 PC: 12b2a | Close file
2018-12-17T23:03:00.262531486Z 67 PC: 12b33 | Get or set file attributes
2018-12-17T23:03:00.268079209Z 79 PC: 12a6c | Find next file
2018-12-17T23:03:00.271024609Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:03:00.275405827Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:03:00.2802461Z 61 PC: 12a87 | Open file (Filename = 'PHANG.COM')
2018-12-17T23:03:00.293285808Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:03:00.295211161Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:03:00.30306455Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.304898187Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-17T23:03:00.307903445Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.310192432Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:03:00.313445916Z 87 PC: 12b26 | Get or set file date and time
2018-12-17T23:03:00.315511687Z 62 PC: 12b2a | Close file
2018-12-17T23:03:00.32386862Z 67 PC: 12b33 | Get or set file attributes
2018-12-17T23:03:00.32966675Z 79 PC: 12a6c | Find next file
2018-12-17T23:03:00.332925259Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:03:00.337682829Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:03:00.34278356Z 61 PC: 12a87 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:03:00.355673923Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:03:00.357233808Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:03:00.364927105Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.366764536Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-17T23:03:00.369988586Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.372320453Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:03:00.375515297Z 87 PC: 12b26 | Get or set file date and time
2018-12-17T23:03:00.377511946Z 62 PC: 12b2a | Close file
2018-12-17T23:03:00.386305579Z 67 PC: 12b33 | Get or set file attributes
2018-12-17T23:03:00.389800971Z 79 PC: 12a6c | Find next file
2018-12-17T23:03:00.391906612Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:03:00.394919922Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:03:00.399007212Z 61 PC: 12a87 | Open file (Filename = 'MANDEL.COM')
2018-12-17T23:03:00.412185711Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:03:00.414107688Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:03:00.423183926Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.425418883Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-17T23:03:00.434693862Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.437647196Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:03:00.445749854Z 87 PC: 12b26 | Get or set file date and time
2018-12-17T23:03:00.448141521Z 62 PC: 12b2a | Close file
2018-12-17T23:03:00.457771912Z 67 PC: 12b33 | Get or set file attributes
2018-12-17T23:03:00.466623605Z 79 PC: 12a6c | Find next file
2018-12-17T23:03:00.469883742Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:03:00.474962196Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:03:00.480729471Z 61 PC: 12a87 | Open file (Filename = 'PAH.COM')
2018-12-17T23:03:00.493676121Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:03:00.495417977Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:03:00.503486151Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.505548726Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-17T23:03:00.510540546Z 66 PC: 12b5c | Move file pointer
2018-12-17T23:03:00.513066135Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:03:00.515967483Z 87 PC: 12b26 | Get or set file date and time
2018-12-17T23:03:00.517636717Z 62 PC: 12b2a | Close file
2018-12-17T23:03:00.526469929Z 67 PC: 12b33 | Get or set file attributes
2018-12-17T23:03:00.531419772Z 79 PC: 12a6c | Find next file
2018-12-17T23:03:00.534625622Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:03:00.539929255Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:03:00.545059397Z 61 PC: 12a87 | Open file (Filename = 'TEST.COM')
2018-12-17T23:03:00.558433552Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:03:00.560341308Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:03:00.568783889Z 87 PC: 12b26 | Get or set file date and time
2018-12-17T23:03:00.570677075Z 62 PC: 12b2a | Close file
2018-12-17T23:03:00.578908087Z 67 PC: 12b33 | Get or set file attributes
2018-12-17T23:03:00.584398868Z 79 PC: 12a6c | Find next file
2018-12-17T23:03:00.587425964Z 42 PC: 12b3c | Get date 0x12b3c: cmp dh, 1
0x12b3f: jne 0x12b49
0x12b41: cmp dl, 9
0x12b44: jne 0x12b49
0x12b46: call 0x12b5d
0x12b49: cmp word ptr [0x230], 0x2e2a
0x12b4f: je 0x12ba5
0x12b51: mov ax, 0x100
0x12b54: jmp ax
0x12b56: xor cx, cx
0x12b58: xor dx, dx
0x12b5a: int 0x21
0x12b5c: ret
0x12b5d: mov ah, 9
0x12b5f: lea dx, word ptr [bp + 0x164]
0x12b63: int 0x21
0x12b65: ret
0x12b66: call 0x12b69
0x12b69: nop
0x12b6a: jmp 0x12b87
2018-12-17T23:03:00.590181506Z 76 PC: 12baa | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14399,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:40:28.969661218Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:40:28.974167818Z 78 PC: 12a6c | Find first file
2018-12-25T12:40:28.980799998Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:40:28.985388536Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:40:28.990870037Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:40:28.997314373Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:40:28.998960622Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:29.006199168Z 66 PC: 12b5c | Move file pointer
2018-12-25T12:40:29.007615609Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-25T12:40:29.031443002Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.032975591Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:40:29.039552597Z 87 PC: 12b26 | Get or set file date and time
2018-12-25T12:40:29.042746297Z 62 PC: 12b2a | Close file
2018-12-25T12:40:29.052209827Z 67 PC: 12b33 | Get or set file attributes
2018-12-25T12:40:29.056615992Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.059092259Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.062898352Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.069003061Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.075831312Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.077579494Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.084953403Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.086659899Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.089618189Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.092184259Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.094909406Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.096636819Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.105364526Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.114866514Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.122037994Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.127421372Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.132375276Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.138970961Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.141248777Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.147989188Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.149604934Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.152466974Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.154510354Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.157224393Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.158899292Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.166502159Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.175332941Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.181820704Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.185230071Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.187747265Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.191852202Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.193176629Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.197062252Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.198056471Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.201023022Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.202226349Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.204584777Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.206202993Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.21322985Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.216851599Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.219873645Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.223831207Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.228181912Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.239566219Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.241007474Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.247533495Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.249351357Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.252265429Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.253865235Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.25693682Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.258006549Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.262611878Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.267505092Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.269959624Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.274068955Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.278781415Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.28992313Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.291491028Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.297867274Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.299601748Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.307575627Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.309174838Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.31634152Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.317947423Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.326473171Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.330987772Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.33336392Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.338159636Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.342783195Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.354219839Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.356767525Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.363209558Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.364820784Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.36786274Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.370211604Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.372974484Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.374649279Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.382470152Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.38701618Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.38982308Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.394382081Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.398473439Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.404771265Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.406655092Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.413203981Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.414786828Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.42405534Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.434193677Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.436385502Z 42 PC: 12b3c | Get date 0x12b3c: cmp dh, 1
0x12b3f: jne 0x12b49
0x12b41: cmp dl, 9
0x12b44: jne 0x12b49
0x12b46: call 0x12b5d
0x12b49: cmp word ptr [0x230], 0x2e2a
0x12b4f: je 0x12ba5
0x12b51: mov ax, 0x100
0x12b54: jmp ax
0x12b56: xor cx, cx
0x12b58: xor dx, dx
0x12b5a: int 0x21
0x12b5c: ret
0x12b5d: mov ah, 9
0x12b5f: lea dx, word ptr [bp + 0x164]
0x12b63: int 0x21
0x12b65: ret
0x12b66: call 0x12b69
0x12b69: nop
0x12b6a: jmp 0x12b87
2018-12-25T12:40:29.439587179Z 76 PC: 12baa | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":9,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14399,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:40:29.505627923Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:40:29.506842005Z 78 PC: 12a6c | Find first file
2018-12-25T12:40:29.513821491Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:40:29.519052545Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:40:29.524372837Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:40:29.533535611Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:40:29.53542327Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:29.542698694Z 66 PC: 12b5c | Move file pointer
2018-12-25T12:40:29.544864358Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-25T12:40:29.565685316Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.567485604Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:40:29.576867973Z 87 PC: 12b26 | Get or set file date and time
2018-12-25T12:40:29.578590788Z 62 PC: 12b2a | Close file
2018-12-25T12:40:29.586969007Z 67 PC: 12b33 | Get or set file attributes
2018-12-25T12:40:29.592115728Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.598437089Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.60283063Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.607265453Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.620487954Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.622292475Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.62947741Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.631560594Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.634591146Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.637224979Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.641332672Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.643782074Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.652067182Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.657382608Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.660840286Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.665636319Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.670243674Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.678563167Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.680201061Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.688650266Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.691831653Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.695479335Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.697618134Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.702890629Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.70485965Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.713876151Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.719262558Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.722482011Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.727679888Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.732998995Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.740537985Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.74257814Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.750321137Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.752811267Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.756237549Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.758188609Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.762012777Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.764183281Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.77321977Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.779874315Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.783361464Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.788342785Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.793897059Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.802047894Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.803750886Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.811933036Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.81376287Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.816834926Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.819401806Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.822232117Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.823793888Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.831831056Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.836958572Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.840165797Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.846411621Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.851947413Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.85984212Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.861845778Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.869963858Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.871615496Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.880702576Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.882682234Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.890080679Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.891727494Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.901185219Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.905954905Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.908758469Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.915281051Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.920047133Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.927359127Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.93017213Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.937277812Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.939520484Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.942545025Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.945140135Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.947854921Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.949264655Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.959134864Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.964166814Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.967299172Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.972885686Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.978689725Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.986302177Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.988522509Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.996667968Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.998393534Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.007076209Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.013767119Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.016473213Z 42 PC: 12b3c | Get date 0x12b3c: cmp dh, 1
0x12b3f: jne 0x12b49
0x12b41: cmp dl, 9
0x12b44: jne 0x12b49
0x12b46: call 0x12b5d
0x12b49: cmp word ptr [0x230], 0x2e2a
0x12b4f: je 0x12ba5
0x12b51: mov ax, 0x100
0x12b54: jmp ax
0x12b56: xor cx, cx
0x12b58: xor dx, dx
0x12b5a: int 0x21
0x12b5c: ret
0x12b5d: mov ah, 9
0x12b5f: lea dx, word ptr [bp + 0x164]
0x12b63: int 0x21
0x12b65: ret
0x12b66: call 0x12b69
0x12b69: nop
0x12b6a: jmp 0x12b87
2018-12-25T12:40:30.019988242Z 9 PC: 12b65 | Display string (String= 'Virus Mosquito v1.0b - VirusBrasil 2000. ')
2018-12-25T12:40:30.026409853Z 76 PC: 12baa | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14399,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:40:29.741304862Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:40:29.74290108Z 78 PC: 12a6c | Find first file
2018-12-25T12:40:29.748905367Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:40:29.753531595Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:40:29.759358189Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:40:29.766308446Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:40:29.767564908Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:29.774017659Z 66 PC: 12b5c | Move file pointer
2018-12-25T12:40:29.775639984Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-25T12:40:29.789199966Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.790447847Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:40:29.800365744Z 87 PC: 12b26 | Get or set file date and time
2018-12-25T12:40:29.801828365Z 62 PC: 12b2a | Close file
2018-12-25T12:40:29.810041196Z 67 PC: 12b33 | Get or set file attributes
2018-12-25T12:40:29.814716766Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.817254368Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.821184947Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.826099752Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.837796003Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.839303999Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.856941737Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.858428203Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.86106314Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.863519341Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.866116355Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.867619159Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.876051918Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.880360255Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.882919532Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.889075181Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.893349433Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.905021298Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.906608221Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.914456045Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.915960566Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.91864132Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.920478728Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.923130316Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.924834452Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.933106526Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.937893094Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:29.940782831Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:29.946084064Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:29.950553061Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:29.962798292Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:29.965149575Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:29.971694094Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.973162549Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:29.976827241Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:29.978315034Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:29.980977005Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:29.983745185Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:29.991638858Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:29.995777474Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.000132605Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.004721339Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.009048179Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.016645628Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.018688619Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.025164775Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.027572688Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.030767788Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.032387188Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.035945532Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.038013944Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.045372782Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.055157437Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.062175861Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.067005261Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.071476153Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.07879143Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.08044187Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.087603407Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.08997803Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.101360169Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.102773556Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.110152857Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.111556847Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.11951772Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.13618412Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.143778475Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.147919838Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.152607256Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.159086202Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.160488246Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.167249538Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.168573546Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.17109926Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.173981632Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.176855593Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.178570593Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.186471114Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.191278378Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.193938974Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.199192985Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.202354955Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.208936166Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.211305218Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.2181548Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.2199033Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.227757904Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.234015878Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.236598243Z 42 PC: 12b3c | Get date 0x12b3c: cmp dh, 1
0x12b3f: jne 0x12b49
0x12b41: cmp dl, 9
0x12b44: jne 0x12b49
0x12b46: call 0x12b5d
0x12b49: cmp word ptr [0x230], 0x2e2a
0x12b4f: je 0x12ba5
0x12b51: mov ax, 0x100
0x12b54: jmp ax
0x12b56: xor cx, cx
0x12b58: xor dx, dx
0x12b5a: int 0x21
0x12b5c: ret
0x12b5d: mov ah, 9
0x12b5f: lea dx, word ptr [bp + 0x164]
0x12b63: int 0x21
0x12b65: ret
0x12b66: call 0x12b69
0x12b69: nop
0x12b6a: jmp 0x12b87
2018-12-25T12:40:30.239560144Z 76 PC: 12baa | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":9,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14399,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:40:30.047628073Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:40:30.04937344Z 78 PC: 12a6c | Find first file
2018-12-25T12:40:30.055641494Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:40:30.060289312Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:40:30.069903689Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:40:30.079710885Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:40:30.081140203Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:30.087345285Z 66 PC: 12b5c | Move file pointer
2018-12-25T12:40:30.089745447Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-25T12:40:30.101977967Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.103173758Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:40:30.109890949Z 87 PC: 12b26 | Get or set file date and time
2018-12-25T12:40:30.111541253Z 62 PC: 12b2a | Close file
2018-12-25T12:40:30.119283904Z 67 PC: 12b33 | Get or set file attributes
2018-12-25T12:40:30.124020746Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.126608347Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.131058286Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.140711558Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.148394676Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.149940043Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.156851064Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.158197796Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.160740921Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.16292342Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.165625317Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.167307558Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.176118206Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.181097003Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.183911553Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.188365183Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.193421279Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.205312801Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.206554072Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.213650387Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.215414279Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.218291261Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.221124972Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.224939704Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.22661064Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.235086413Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.239546498Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.242371051Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.247234713Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.251638948Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.262948049Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.264727314Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.271960368Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.273638862Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.276751172Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.279163433Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.281945665Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.284044918Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.289531556Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.293354745Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.296045316Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.30046863Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.305202Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.316612398Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.317989526Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.324712719Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.325769493Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.328042649Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.329045249Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.330784423Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.332254904Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.337246744Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.339980769Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.342219318Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.344901047Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.347609214Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.352168671Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.353144931Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.357248661Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.358532225Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.364250539Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.365722709Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.370172859Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.371440591Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.376409309Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.382485158Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.38659511Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.39258478Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.398707825Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.404726494Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.405735024Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.411775161Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.412823809Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.414700756Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.416258942Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.417993727Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.419100822Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.424286223Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.42718123Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.428896136Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.432255014Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.435029397Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.442357034Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.443962999Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.448068874Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.449170163Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.455488148Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.462080206Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.46361288Z 42 PC: 12b3c | Get date 0x12b3c: cmp dh, 1
0x12b3f: jne 0x12b49
0x12b41: cmp dl, 9
0x12b44: jne 0x12b49
0x12b46: call 0x12b5d
0x12b49: cmp word ptr [0x230], 0x2e2a
0x12b4f: je 0x12ba5
0x12b51: mov ax, 0x100
0x12b54: jmp ax
0x12b56: xor cx, cx
0x12b58: xor dx, dx
0x12b5a: int 0x21
0x12b5c: ret
0x12b5d: mov ah, 9
0x12b5f: lea dx, word ptr [bp + 0x164]
0x12b63: int 0x21
0x12b65: ret
0x12b66: call 0x12b69
0x12b69: nop
0x12b6a: jmp 0x12b87
2018-12-25T12:40:30.465291508Z 9 PC: 12b65 | Display string (String= 'Virus Mosquito v1.0b - VirusBrasil 2000. ')
2018-12-25T12:40:30.469600558Z 76 PC: 12baa | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14399,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:40:30.091297737Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:40:30.093564576Z 78 PC: 12a6c | Find first file
2018-12-25T12:40:30.099761085Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:40:30.105090238Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:40:30.115242558Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:40:30.126829108Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:40:30.128182149Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:30.134661972Z 66 PC: 12b5c | Move file pointer
2018-12-25T12:40:30.137123662Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-25T12:40:30.149779852Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.151478421Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:40:30.159112398Z 87 PC: 12b26 | Get or set file date and time
2018-12-25T12:40:30.160854876Z 62 PC: 12b2a | Close file
2018-12-25T12:40:30.168952375Z 67 PC: 12b33 | Get or set file attributes
2018-12-25T12:40:30.174461302Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.178005217Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.182426872Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.187811875Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.200397925Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.202014892Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.208878904Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.210650059Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.213187171Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.214837211Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.218003513Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.219468931Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.227092519Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.232604298Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.235456205Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.239960544Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.245366578Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.256481865Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.257874733Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.265216661Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.266897407Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.269800738Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.272182974Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.275632585Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.277434408Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.285605002Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.289651287Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.292349339Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.297282133Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.301469792Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.312846254Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.315012722Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.321281051Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.322854197Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.326637876Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.329275053Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.332045417Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.334399264Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.341808745Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.345968203Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.349260059Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.353596523Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.357831764Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.36445202Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.366604296Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.372807186Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.374181834Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.377088437Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.378317784Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.380716069Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.382604048Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.389864649Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.399365152Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.410256691Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.414452493Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.418800995Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.425885739Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.427533766Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.43396105Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.43644574Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.44446524Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.446070065Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.453880964Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.455615192Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.463967537Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.469298159Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.472251031Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.476440588Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.481711234Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.488139822Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.489430544Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.496625249Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.497965113Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.500523408Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.502972312Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.506434749Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.507796317Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.515758588Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.52556258Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.531731629Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.536570249Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.540779617Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.547215655Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.549216862Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.555837663Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.557273394Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.565329804Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.576438722Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.579027325Z 42 PC: 12b3c | Get date 0x12b3c: cmp dh, 1
0x12b3f: jne 0x12b49
0x12b41: cmp dl, 9
0x12b44: jne 0x12b49
0x12b46: call 0x12b5d
0x12b49: cmp word ptr [0x230], 0x2e2a
0x12b4f: je 0x12ba5
0x12b51: mov ax, 0x100
0x12b54: jmp ax
0x12b56: xor cx, cx
0x12b58: xor dx, dx
0x12b5a: int 0x21
0x12b5c: ret
0x12b5d: mov ah, 9
0x12b5f: lea dx, word ptr [bp + 0x164]
0x12b63: int 0x21
0x12b65: ret
0x12b66: call 0x12b69
0x12b69: nop
0x12b6a: jmp 0x12b87
2018-12-25T12:40:30.581646869Z 76 PC: 12baa | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14399,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:40:30.18227243Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:40:30.183902596Z 78 PC: 12a6c | Find first file
2018-12-25T12:40:30.191761296Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:40:30.197389118Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:40:30.203113403Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:40:30.212280435Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:40:30.214327987Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:30.226469304Z 66 PC: 12b5c | Move file pointer
2018-12-25T12:40:30.228633102Z 64 PC: 12b08 | Write file or device (Write 357 bytes on handle 5)
2018-12-25T12:40:30.248681147Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.251139734Z 64 PC: 12b19 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:40:30.258871603Z 87 PC: 12b26 | Get or set file date and time
2018-12-25T12:40:30.260884155Z 62 PC: 12b2a | Close file
2018-12-25T12:40:30.282525311Z 67 PC: 12b33 | Get or set file attributes
2018-12-25T12:40:30.28822606Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.291420939Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.301688981Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.305581923Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.310399292Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.311687577Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.315930161Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.317340242Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.319185813Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.320218578Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.328804396Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.340741153Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.351016001Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.357424087Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.362861262Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.3680538Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.374302795Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.384331058Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.386360959Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.393982582Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.396090458Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.399862298Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.401536618Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.404869608Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.406784721Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.415257917Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.420850787Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.424295853Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.429686485Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.434409504Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.442315862Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.443565363Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.448758867Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.450444683Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.452752099Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.454741242Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.45767377Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.459338015Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.464445725Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.467835559Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.469843348Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.47263573Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.476275276Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.493047449Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.494791679Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.502787576Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.504459472Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.507544897Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.510436807Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.513784803Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.516740456Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.525327284Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.545273578Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.549280863Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.554802161Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.560657489Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.56798491Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.569656553Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.578025886Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.580554487Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.589789751Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.593482308Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.601129893Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.603103205Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.613084356Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.618225995Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.622550684Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.628534057Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.634453918Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.64867996Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.65064397Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.65841975Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.660207578Z 64 PC: 12b08 | Write file or device (See above)
2018-12-25T12:40:30.663427389Z 66 PC: 12b5c | Move file pointer (See above)
2018-12-25T12:40:30.666157564Z 64 PC: 12b19 | Write file or device (See above)
2018-12-25T12:40:30.66926269Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.671071423Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.68170942Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.686740001Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.689682206Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:40:30.696158977Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:40:30.701160587Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:40:30.713784318Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:40:30.715409547Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:40:30.723254968Z 87 PC: 12b26 | Get or set file date and time (See above)
2018-12-25T12:40:30.724959937Z 62 PC: 12b2a | Close file (See above)
2018-12-25T12:40:30.733237456Z 67 PC: 12b33 | Get or set file attributes (See above)
2018-12-25T12:40:30.741021287Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:40:30.743528986Z 42 PC: 12b3c | Get date 0x12b3c: cmp dh, 1
0x12b3f: jne 0x12b49
0x12b41: cmp dl, 9
0x12b44: jne 0x12b49
0x12b46: call 0x12b5d
0x12b49: cmp word ptr [0x230], 0x2e2a
0x12b4f: je 0x12ba5
0x12b51: mov ax, 0x100
0x12b54: jmp ax
0x12b56: xor cx, cx
0x12b58: xor dx, dx
0x12b5a: int 0x21
0x12b5c: ret
0x12b5d: mov ah, 9
0x12b5f: lea dx, word ptr [bp + 0x164]
0x12b63: int 0x21
0x12b65: ret
0x12b66: call 0x12b69
0x12b69: nop
0x12b6a: jmp 0x12b87
2018-12-25T12:40:30.746012659Z 76 PC: 12baa | Terminate with return code (Return code = '0')