Sample viewer

vx.netlux.org/Virus.DOS.Deathrider.729

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:08:36.162490627Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-17T23:08:36.166675974Z	25	PC: 12bf6 \| Get default drive
2018-12-17T23:08:36.168707192Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-17T23:08:36.171549454Z	9	PC: 12c39 \| Display string (String= 'Packed File Corrupt ')
2018-12-17T23:08:36.176067265Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:23.875098712Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:23.877999775Z	25	PC: 12bf6 \| Get default drive
2018-12-25T12:52:23.880983185Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:23.883290455Z	9	PC: 12c4d \| Display string (String= 'Required system component not installed ')
2018-12-25T12:52:23.889317717Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:24.077587287Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:24.081094755Z	25	PC: 12b5a \| Get default drive
2018-12-25T12:52:24.082730299Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:24.085350472Z	9	PC: 12c39 \| Display string (String= 'Packed File Corrupt ')
2018-12-25T12:52:24.090905344Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":8,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:24.284101581Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:24.287174386Z	9	PC: 12bd8 \| Display string (String= '------* DeathRider Virus version 1.8 *------ ')
2018-12-25T12:52:24.29358282Z	9	PC: 12bdd \| Display string (String= '(c) 1993 DeathRider - Pretoria - South Africa ')

{"DateBased":true,"Day":10,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:24.500791642Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:24.506378878Z	25	PC: 12b5a \| Get default drive
2018-12-25T12:52:24.508285199Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:24.510865834Z	9	PC: 12c4d \| Display string (String= 'Required system component not installed ')
2018-12-25T12:52:24.517794046Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:24.678101379Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:24.680785738Z	25	PC: 12bf6 \| Get default drive
2018-12-25T12:52:24.682072089Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:24.685044618Z	9	PC: 12c39 \| Display string (String= 'Packed File Corrupt ')
2018-12-25T12:52:24.68945008Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":10,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:24.894136845Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:24.897066876Z	25	PC: 12b5a \| Get default drive
2018-12-25T12:52:24.898622948Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:24.901061821Z	9	PC: 12c4d \| Display string (String= 'Required system component not installed ')
2018-12-25T12:52:24.907890381Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":13,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:25.104021766Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:25.107508717Z	25	PC: 12bf6 \| Get default drive
2018-12-25T12:52:25.109406799Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:25.112089967Z	9	PC: 12c4d \| Display string (String= 'Required system component not installed ')
2018-12-25T12:52:25.119435718Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":15,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:25.309060004Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:25.3126542Z	25	PC: 12bf6 \| Get default drive
2018-12-25T12:52:25.31494696Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:25.318072321Z	9	PC: 12c4d \| Display string (String= 'Required system component not installed ')
2018-12-25T12:52:25.324332603Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":21,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:25.51718138Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:25.51986326Z	25	PC: 12bf6 \| Get default drive
2018-12-25T12:52:25.521557803Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:25.523856936Z	9	PC: 12c4d \| Display string (String= 'Required system component not installed ')
2018-12-25T12:52:25.529894561Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":25,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:25.746670471Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:25.749611215Z	25	PC: 12bf6 \| Get default drive
2018-12-25T12:52:25.751729903Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:25.754511488Z	9	PC: 12c4d \| Display string (String= 'Required system component not installed ')
2018-12-25T12:52:25.761086897Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16257,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:25.916310264Z	42	PC: 12b3e \| Get date 0x12b3e: cmp dl, 8 0x12b41: je 0x12b46 0x12b43: jmp 0x12b49 0x12b45: nop 0x12b46: jmp 0x12bd1 0x12b49: cmp dl, 6 0x12b4c: je 0x12b56 0x12b4e: cmp dl, 0xa 0x12b51: je 0x12b56 0x12b53: jmp 0x12bf2 0x12b56: mov ah, 0x19 0x12b58: int 0x21 0x12b5a: cmp al, 0 0x12b5c: je 0x12b61 0x12b5e: jmp 0x12b64 0x12b60: nop 0x12b61: jmp 0x12c07 0x12b64: cmp al, 1 0x12b66: je 0x12b6b 0x12b68: jmp 0x12b6e
2018-12-25T12:52:25.919585528Z	25	PC: 12bf6 \| Get default drive
2018-12-25T12:52:25.921169033Z	42	PC: 12c14 \| Get date 0x12c14: cmp dl, 0xa 0x12c17: je 0x12c46 0x12c19: cmp dl, 0xf 0x12c1c: je 0x12c46 0x12c1e: cmp dl, 1 0x12c21: je 0x12c46 0x12c23: cmp dl, 0xd 0x12c26: je 0x12c46 0x12c28: cmp dl, 0x15 0x12c2b: je 0x12c46 0x12c2d: cmp dl, 0x19 0x12c30: je 0x12c46 0x12c32: mov dx, 0x11b 0x12c35: mov ah, 9 0x12c37: int 0x21 0x12c39: jmp 0x12c4d 0x12c3b: nop 0x12c3c: mov ah, 9 0x12c3e: mov dx, 0x131 0x12c41: int 0x21
2018-12-25T12:52:25.923612611Z	9	PC: 12c4d \| Display string (String= 'Required system component not installed ')
2018-12-25T12:52:25.930855659Z	76	PC: 12c52 \| Terminate with return code (Return code = '0')