Sample viewer

vx.netlux.org/Virus.DOS.Sirius.Annihilator.607

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:08:38.714197374Z	53	PC: 15308 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:38.716382411Z	37	PC: 15319 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:38.720021631Z	26	PC: 15195 \| Set disk transfer address
2018-12-17T23:08:38.721716677Z	25	PC: 151a3 \| Get default drive
2018-12-17T23:08:38.723437632Z	14	PC: 151ae \| Set default drive (Drive = 'C')
2018-12-17T23:08:38.72830979Z	78	PC: 151de \| Find first file
2018-12-17T23:08:38.735025802Z	61	PC: 151e9 \| Open file (Filename = 'COMMAND.COM')
2018-12-17T23:08:38.742194557Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.74550585Z	62	PC: 15210 \| Close file
2018-12-17T23:08:38.754532126Z	79	PC: 151de \| Find next file
2018-12-17T23:08:38.757682688Z	14	PC: 151ba \| Set default drive (Drive = 'A')
2018-12-17T23:08:38.760358697Z	78	PC: 151de \| Find first file
2018-12-17T23:08:38.76751624Z	61	PC: 151e9 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:08:38.775230139Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.777706303Z	62	PC: 15210 \| Close file
2018-12-17T23:08:38.780601634Z	79	PC: 151de \| Find next file
2018-12-17T23:08:38.783637791Z	61	PC: 151e9 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:08:38.791589778Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.80275326Z	62	PC: 15210 \| Close file
2018-12-17T23:08:38.804870489Z	79	PC: 151de \| Find next file
2018-12-17T23:08:38.808027393Z	61	PC: 151e9 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:08:38.841274422Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.843158704Z	62	PC: 15210 \| Close file
2018-12-17T23:08:38.84530579Z	79	PC: 151de \| Find next file
2018-12-17T23:08:38.848991908Z	61	PC: 151e9 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:08:38.870531773Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.872169561Z	62	PC: 15210 \| Close file
2018-12-17T23:08:38.875181583Z	79	PC: 151de \| Find next file
2018-12-17T23:08:38.878001072Z	61	PC: 151e9 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:08:38.884402935Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.887008863Z	62	PC: 15210 \| Close file
2018-12-17T23:08:38.902286929Z	79	PC: 151de \| Find next file
2018-12-17T23:08:38.905607671Z	61	PC: 151e9 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:08:38.912947746Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.917007537Z	62	PC: 15210 \| Close file
2018-12-17T23:08:38.918978021Z	79	PC: 151de \| Find next file
2018-12-17T23:08:38.935033738Z	61	PC: 151e9 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:08:38.941442454Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.94319096Z	62	PC: 15210 \| Close file
2018-12-17T23:08:38.94541518Z	79	PC: 151de \| Find next file
2018-12-17T23:08:38.948765988Z	61	PC: 151e9 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:08:38.955127265Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.956759733Z	87	PC: 15200 \| Get or set file date and time
2018-12-17T23:08:38.959133415Z	44	PC: 15220 \| Get time 0x15220: cmp dx, 0x100 0x15224: jbe 0x1521c 0x15226: mov word ptr ds:[bp + 0x11e], dx 0x1522b: and dx, 7 0x1522e: add dx, dx 0x15230: mov word ptr [0xf4], dx 0x15234: mov ax, 0x4200 0x15237: call 0x152dd 0x1523a: mov ah, 0x3f 0x1523c: lea dx, word ptr [bp + 0x35b] 0x15240: mov cx, 3 0x15243: int 0x21 0x15245: cmp byte ptr ds:[bp + 0x35b], 0x4d 0x1524b: je 0x1520c 0x1524d: cmp byte ptr ds:[bp + 0x35b], 0x5a 0x15253: je 0x1520c 0x15255: mov ax, 0x4202 0x15258: call 0x152dd 0x1525b: sub ax, 3 0x1525e: mov word ptr ds:[bp + 0x359], ax
2018-12-17T23:08:38.962103667Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.963742598Z	63	PC: 15245 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:08:38.967283694Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.969028503Z	64	PC: 1529d \| Write file or device (Write 607 bytes on handle 5)
2018-12-17T23:08:38.983238923Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:38.985627402Z	64	PC: 152b0 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:08:38.988966718Z	87	PC: 152b7 \| Get or set file date and time
2018-12-17T23:08:38.990688043Z	62	PC: 152bb \| Close file
2018-12-17T23:08:39.013685719Z	42	PC: 152bf \| Get date 0x152bf: test dh, 1 0x152c2: jne 0x152dc 0x152c4: cmp dh, dl 0x152c6: jne 0x152dc 0x152c8: cmp cx, 0x7ca 0x152cc: jbe 0x152dc 0x152ce: cmp al, 4 0x152d0: jbe 0x152dc 0x152d2: mov ah, 9 0x152d4: lea dx, word ptr [bp + 0x2e6] 0x152d8: int 0x21 0x152da: cli 0x152db: hlt 0x152dc: ret 0x152dd: xor cx, cx 0x152df: xor dx, dx 0x152e1: int 0x21 0x152e3: ret 0x152e4: pop word ptr cs:[0xf6] 0x152e9: pop es
2018-12-17T23:08:39.017166752Z	78	PC: 151de \| Find first file
2018-12-17T23:08:39.02649265Z	61	PC: 151e9 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:08:39.036670319Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:39.039715352Z	62	PC: 15210 \| Close file
2018-12-17T23:08:39.042102159Z	79	PC: 151de \| Find next file
2018-12-17T23:08:39.046421387Z	61	PC: 151e9 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:08:39.057021761Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:39.059218329Z	62	PC: 15210 \| Close file
2018-12-17T23:08:39.062285455Z	79	PC: 151de \| Find next file
2018-12-17T23:08:39.066113309Z	61	PC: 151e9 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:08:39.075939999Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:39.077953003Z	62	PC: 15210 \| Close file
2018-12-17T23:08:39.081134272Z	79	PC: 151de \| Find next file
2018-12-17T23:08:39.087805771Z	61	PC: 151e9 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:08:39.09570032Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:39.098970947Z	62	PC: 15210 \| Close file
2018-12-17T23:08:39.102903989Z	79	PC: 151de \| Find next file
2018-12-17T23:08:39.10686314Z	61	PC: 151e9 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:08:39.116265312Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:39.119120579Z	62	PC: 15210 \| Close file
2018-12-17T23:08:39.123269517Z	79	PC: 151de \| Find next file
2018-12-17T23:08:39.127088114Z	61	PC: 151e9 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:08:39.135654665Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:39.137888564Z	62	PC: 15210 \| Close file
2018-12-17T23:08:39.140344881Z	79	PC: 151de \| Find next file
2018-12-17T23:08:39.144585271Z	61	PC: 151e9 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:08:39.152119822Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:39.15414013Z	62	PC: 15210 \| Close file
2018-12-17T23:08:39.157378527Z	79	PC: 151de \| Find next file
2018-12-17T23:08:39.160750945Z	61	PC: 151e9 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:08:39.168315152Z	66	PC: 152e3 \| Move file pointer
2018-12-17T23:08:39.171188884Z	87	PC: 15200 \| Get or set file date and time
2018-12-17T23:08:39.172986503Z	62	PC: 15210 \| Close file
2018-12-17T23:08:39.175245148Z	79	PC: 151de \| Find next file
2018-12-17T23:08:39.179168762Z	26	PC: 151c7 \| Set disk transfer address
2018-12-17T23:08:39.180799447Z	37	PC: 15329 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:39.185460748Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T23:08:39.189422786Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T23:08:39.201301892Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":16275,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:29.124357739Z	53	PC: 15308 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:52:29.125477353Z	37	PC: 15319 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:52:29.126680603Z	26	PC: 15195 \| Set disk transfer address
2018-12-25T12:52:29.127473261Z	25	PC: 151a3 \| Get default drive
2018-12-25T12:52:29.133553147Z	14	PC: 151ae \| Set default drive (Drive = 'C')
2018-12-25T12:52:29.134627352Z	78	PC: 151de \| Find first file
2018-12-25T12:52:29.139758732Z	61	PC: 151e9 \| Open file (Filename = 'COMMAND.COM')
2018-12-25T12:52:29.146935788Z	66	PC: 152e3 \| Move file pointer
2018-12-25T12:52:29.148184813Z	62	PC: 15210 \| Close file
2018-12-25T12:52:29.149732199Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.15230154Z	14	PC: 151ba \| Set default drive (Drive = 'A')
2018-12-25T12:52:29.153381418Z	78	PC: 151de \| Find first file (See above)
2018-12-25T12:52:29.158986833Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.165525213Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.166513879Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.167598453Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.169504029Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.173345333Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.174186664Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.175652163Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.177398023Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.181191413Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.182913409Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.183994211Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.187222984Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.194417415Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.195404976Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.19647621Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.198570456Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.202428906Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.203349343Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.204944907Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.206552941Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.210414714Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.211759249Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.2128973Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.214841186Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.219256098Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.220271691Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.221448005Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.223477724Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.227815509Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.228985806Z	87	PC: 15200 \| Get or set file date and time
2018-12-25T12:52:29.230582815Z	44	PC: 15220 \| Get time 0x15220: cmp dx, 0x100 0x15224: jbe 0x1521c 0x15226: mov word ptr ds:[bp + 0x11e], dx 0x1522b: and dx, 7 0x1522e: add dx, dx 0x15230: mov word ptr [0xf4], dx 0x15234: mov ax, 0x4200 0x15237: call 0x152dd 0x1523a: mov ah, 0x3f 0x1523c: lea dx, word ptr [bp + 0x35b] 0x15240: mov cx, 3 0x15243: int 0x21 0x15245: cmp byte ptr ds:[bp + 0x35b], 0x4d 0x1524b: je 0x1520c 0x1524d: cmp byte ptr ds:[bp + 0x35b], 0x5a 0x15253: je 0x1520c 0x15255: mov ax, 0x4202 0x15258: call 0x152dd 0x1525b: sub ax, 3 0x1525e: mov word ptr ds:[bp + 0x359], ax
2018-12-25T12:52:29.232504968Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.23364384Z	63	PC: 15245 \| Read file or device (Read 3 bytes on handle 5)
2018-12-25T12:52:29.236477049Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.23782366Z	64	PC: 1529d \| Write file or device (Write 607 bytes on handle 5)
2018-12-25T12:52:29.857045714Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.859359218Z	64	PC: 152b0 \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:52:29.861238514Z	87	PC: 152b7 \| Get or set file date and time
2018-12-25T12:52:29.862279725Z	62	PC: 152bb \| Close file
2018-12-25T12:52:29.966711831Z	42	PC: 152bf \| Get date 0x152bf: test dh, 1 0x152c2: jne 0x152dc 0x152c4: cmp dh, dl 0x152c6: jne 0x152dc 0x152c8: cmp cx, 0x7ca 0x152cc: jbe 0x152dc 0x152ce: cmp al, 4 0x152d0: jbe 0x152dc 0x152d2: mov ah, 9 0x152d4: lea dx, word ptr [bp + 0x2e6] 0x152d8: int 0x21 0x152da: cli 0x152db: hlt 0x152dc: ret 0x152dd: xor cx, cx 0x152df: xor dx, dx 0x152e1: int 0x21 0x152e3: ret 0x152e4: pop word ptr cs:[0xf6] 0x152e9: pop es
2018-12-25T12:52:29.968746322Z	78	PC: 151de \| Find first file (See above)
2018-12-25T12:52:29.974484152Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.981070548Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.982322621Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.983892806Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.986654854Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.993475346Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.994611952Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.996528093Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.998819239Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.004816705Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.006279094Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.007801035Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.010054779Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.016572373Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.017764051Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.019276531Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.021896615Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.028042588Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.029102725Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.030904555Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.033099784Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.039025064Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.040535633Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.042042058Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.044173713Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.05065131Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.051811265Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.053188163Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.056397806Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.062548044Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.063716816Z	87	PC: 15200 \| Get or set file date and time (See above)
2018-12-25T12:52:30.06542738Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.066979659Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.0689652Z	26	PC: 151c7 \| Set disk transfer address
2018-12-25T12:52:30.07015746Z	37	PC: 15329 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:52:30.073084714Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-25T12:52:30.074861266Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-25T12:52:30.085516992Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":1,"TimeBased":true,"OriginalID":16275,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:52:29.261381906Z	53	PC: 15308 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:52:29.263098694Z	37	PC: 15319 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:52:29.264570461Z	26	PC: 15195 \| Set disk transfer address
2018-12-25T12:52:29.265605649Z	25	PC: 151a3 \| Get default drive
2018-12-25T12:52:29.267018143Z	14	PC: 151ae \| Set default drive (Drive = 'C')
2018-12-25T12:52:29.268293882Z	78	PC: 151de \| Find first file
2018-12-25T12:52:29.274821113Z	61	PC: 151e9 \| Open file (Filename = 'COMMAND.COM')
2018-12-25T12:52:29.282086884Z	66	PC: 152e3 \| Move file pointer
2018-12-25T12:52:29.283606333Z	62	PC: 15210 \| Close file
2018-12-25T12:52:29.285423022Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.289735444Z	14	PC: 151ba \| Set default drive (Drive = 'A')
2018-12-25T12:52:29.291090377Z	78	PC: 151de \| Find first file (See above)
2018-12-25T12:52:29.297654453Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.305118606Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.306592299Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.309265352Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.312144294Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.331333971Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.33280341Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.334617766Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.338234549Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.34347636Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.344638665Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.347222747Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.349937466Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.357036207Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.359098398Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.361429099Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.364542781Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.373211112Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.374730341Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.376709307Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.380047288Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.387230645Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.38868761Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.391124551Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.394031915Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.401088928Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.402502529Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:29.405693983Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:29.408289816Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:29.415320754Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.416982566Z	87	PC: 15200 \| Get or set file date and time
2018-12-25T12:52:29.418241307Z	44	PC: 15220 \| Get time 0x15220: cmp dx, 0x100 0x15224: jbe 0x1521c 0x15226: mov word ptr ds:[bp + 0x11e], dx 0x1522b: and dx, 7 0x1522e: add dx, dx 0x15230: mov word ptr [0xf4], dx 0x15234: mov ax, 0x4200 0x15237: call 0x152dd 0x1523a: mov ah, 0x3f 0x1523c: lea dx, word ptr [bp + 0x35b] 0x15240: mov cx, 3 0x15243: int 0x21 0x15245: cmp byte ptr ds:[bp + 0x35b], 0x4d 0x1524b: je 0x1520c 0x1524d: cmp byte ptr ds:[bp + 0x35b], 0x5a 0x15253: je 0x1520c 0x15255: mov ax, 0x4202 0x15258: call 0x152dd 0x1525b: sub ax, 3 0x1525e: mov word ptr ds:[bp + 0x359], ax
2018-12-25T12:52:29.420510359Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.425599308Z	63	PC: 15245 \| Read file or device (Read 3 bytes on handle 5)
2018-12-25T12:52:29.42848209Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:29.430190796Z	64	PC: 1529d \| Write file or device (Write 607 bytes on handle 5)
2018-12-25T12:52:30.593502378Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.59597693Z	64	PC: 152b0 \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:52:30.599559066Z	87	PC: 152b7 \| Get or set file date and time
2018-12-25T12:52:30.602863199Z	62	PC: 152bb \| Close file
2018-12-25T12:52:30.612937103Z	42	PC: 152bf \| Get date 0x152bf: test dh, 1 0x152c2: jne 0x152dc 0x152c4: cmp dh, dl 0x152c6: jne 0x152dc 0x152c8: cmp cx, 0x7ca 0x152cc: jbe 0x152dc 0x152ce: cmp al, 4 0x152d0: jbe 0x152dc 0x152d2: mov ah, 9 0x152d4: lea dx, word ptr [bp + 0x2e6] 0x152d8: int 0x21 0x152da: cli 0x152db: hlt 0x152dc: ret 0x152dd: xor cx, cx 0x152df: xor dx, dx 0x152e1: int 0x21 0x152e3: ret 0x152e4: pop word ptr cs:[0xf6] 0x152e9: pop es
2018-12-25T12:52:30.615862946Z	78	PC: 151de \| Find first file (See above)
2018-12-25T12:52:30.624717058Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.636684487Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.638848782Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.641587765Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.646775371Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.654568468Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.656341133Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.659004629Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.662972953Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.674538266Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.677375123Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.67980413Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.684527848Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.69327199Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.696106307Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.698502983Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.703387613Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.718646091Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.720331422Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.72252425Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.725762056Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.733342484Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.735247671Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.739985382Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.743254843Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.751390709Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.754581913Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.756694514Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.759928588Z	61	PC: 151e9 \| Open file (See above)
2018-12-25T12:52:30.768869082Z	66	PC: 152e3 \| Move file pointer (See above)
2018-12-25T12:52:30.771400338Z	87	PC: 15200 \| Get or set file date and time (See above)
2018-12-25T12:52:30.773078912Z	62	PC: 15210 \| Close file (See above)
2018-12-25T12:52:30.776139174Z	79	PC: 151de \| Find next file (See above)
2018-12-25T12:52:30.779150104Z	26	PC: 151c7 \| Set disk transfer address
2018-12-25T12:52:30.781076033Z	37	PC: 15329 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:52:30.785232579Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-25T12:52:30.788358196Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-25T12:52:30.800728285Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')