Sample viewer

vx.netlux.org/Virus.DOS.HLLC.10000

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:08:57.010187083Z 53 PC: 1374a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:08:57.020627506Z 53 PC: 1374a | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T23:08:57.02248648Z 53 PC: 1374a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T23:08:57.024307322Z 53 PC: 1374a | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:08:57.026475747Z 53 PC: 1374a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:08:57.028183978Z 53 PC: 1374a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:57.030027413Z 53 PC: 1374a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T23:08:57.031599928Z 53 PC: 1374a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T23:08:57.034533572Z 53 PC: 1374a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T23:08:57.037276898Z 53 PC: 1374a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T23:08:57.039184083Z 53 PC: 1374a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T23:08:57.041429813Z 53 PC: 1374a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T23:08:57.042940743Z 53 PC: 1374a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T23:08:57.04438106Z 53 PC: 1374a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T23:08:57.046598718Z 53 PC: 1374a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T23:08:57.048546219Z 53 PC: 1374a | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T23:08:57.050469864Z 53 PC: 1374a | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T23:08:57.053003095Z 53 PC: 1374a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T23:08:57.054471876Z 53 PC: 1374a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T23:08:57.055861528Z 37 PC: 1375f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:08:57.057861316Z 37 PC: 13767 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:08:57.059877646Z 37 PC: 1376f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:57.061812933Z 37 PC: 13777 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T23:08:57.064201963Z 68 PC: 1462a | I/O control for devices (Set for = '')
2018-12-17T23:08:57.067542772Z 48 PC: 1415a | Get DOS version
2018-12-17T23:08:57.077952077Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:57.086377372Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.088703053Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.090689497Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.093510068Z 63 PC: 140df | Read file or device (Read 10000 bytes on handle 5)
2018-12-17T23:08:57.104775902Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.108050997Z 25 PC: 141e7 | Get default drive
2018-12-17T23:08:57.109028625Z 71 PC: 141fa | Get current directory
2018-12-17T23:08:57.11384647Z 59 PC: 142ae | Change current directory
2018-12-17T23:08:57.117550222Z 25 PC: 141e7 | Get default drive
2018-12-17T23:08:57.11869335Z 71 PC: 141fa | Get current directory
2018-12-17T23:08:57.122014272Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:08:57.123023148Z 78 PC: 135c5 | Find first file
2018-12-17T23:08:57.127752517Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.131165231Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.132432944Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.134777791Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.137995128Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.146627412Z 61 PC: 1400c | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:08:57.158150921Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.159744005Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.161432659Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.162991078Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:57.164669612Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:57.174029404Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.190655132Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.192395693Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.196871896Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.200776495Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.202621212Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.206852906Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.210306937Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.217670457Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.221307413Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.223908902Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.233616908Z 61 PC: 1400c | Open file (Filename = 'PRINT.COM')
2018-12-17T23:08:57.242370582Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.244124709Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.245760703Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.247523917Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:57.249991154Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:57.257890281Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.266746606Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.269577367Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.272844938Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.276018152Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.278124942Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.281859541Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.284251697Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.288044676Z 61 PC: 1400c | Open file (Filename = 'HELLO.COM')
2018-12-17T23:08:57.29328252Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.294822074Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.296593483Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.299101507Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:57.302184341Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:57.309723421Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.316682851Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.317908174Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.320116965Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.323021554Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.324160585Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.326306048Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.329560474Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.332393449Z 61 PC: 1400c | Open file (Filename = 'PHANG.COM')
2018-12-17T23:08:57.337633888Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.339015485Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.340531915Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.34189641Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:57.343349Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:57.349500561Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.35696969Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.358235509Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.362575526Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.365995224Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.367751435Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.372043662Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.375100948Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.376531497Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.381029771Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.384101374Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.388065605Z 61 PC: 1400c | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:08:57.395795333Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.398417Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.400489506Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.402649435Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:57.405842907Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:57.41409142Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.423069805Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.4250302Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.428201861Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.431072476Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.435546295Z 61 PC: 1400c | Open file (Filename = 'MANDEL.COM')
2018-12-17T23:08:57.443063693Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.44479124Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.447248789Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.449305014Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:57.451050114Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:57.458400369Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.46843053Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.470152737Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.473557426Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.477581549Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.489502406Z 61 PC: 1400c | Open file (Filename = 'PAH.COM')
2018-12-17T23:08:57.500015926Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.502620591Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.504741668Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.506906356Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:57.509647588Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:57.517176008Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.526419461Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.529019237Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.532293401Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.535146173Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.540442327Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:57.547986676Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.549942011Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.553235101Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.555141464Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.557668563Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.559426728Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.562227632Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.569570753Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.572566754Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.577056112Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.580186245Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.583493611Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.587521582Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.590332505Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.593239969Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.597284511Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.600053485Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.602801741Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.606613024Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.609327626Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.61213858Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.616310251Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.61930545Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.622091807Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.626559304Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.629959775Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.632936029Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.638577071Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.64149212Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.644319454Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.648181673Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.650997375Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.653849986Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.657897664Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.660804477Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.663644655Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.667219995Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.670630645Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.673989218Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.677769423Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.681191945Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.684405074Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.688128432Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.691479971Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.694498064Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.697617437Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.702038466Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.704999902Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.707969183Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.711049252Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.714960924Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.717936316Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.72224816Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.725430611Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.728748608Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.732519064Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.735634239Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.738720931Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.745325535Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.748248699Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.751488959Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.755150821Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.758254635Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.761303595Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.765341785Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.768334079Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.771188334Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.774885963Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.777800241Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.780959348Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.784802241Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.788362592Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.792346921Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.796887114Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.799977973Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.803016114Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.806891878Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.810435248Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.813802016Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.817973706Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.821655717Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.824915293Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.829333958Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.832888038Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.83575718Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.839602157Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.842337888Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.845236947Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.848116519Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.851044362Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.85379372Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.856509814Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.86035925Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.863187165Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.865962311Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.870209093Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.873870435Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.876702447Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.880746017Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.883652871Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.886491736Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.89082454Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.893758233Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.896624671Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.900270974Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.903175553Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:57.906028676Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.908929097Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:08:57.91380955Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:57.921826257Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.923869718Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:57.926491455Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:57.928329179Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:57.930252424Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:57.939137934Z 62 PC: 1405c | Close file
2018-12-17T23:08:57.949423786Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.950889862Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.95529456Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:57.958030112Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:08:57.959662831Z 25 PC: 14244 | Get default drive
2018-12-17T23:08:57.962579001Z 59 PC: 142ae | Change current directory
2018-12-17T23:08:57.967343586Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:08:57.968600068Z 78 PC: 135c5 | Find first file
2018-12-17T23:08:57.976611566Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:57.978533858Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:57.981921045Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:57.98829203Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:57.996025916Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:57.997925065Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:58.00086457Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:58.002830354Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:58.004707963Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:58.007592284Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:58.009333026Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.012378751Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.016984918Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.019781234Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.022685332Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.026942213Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.030517322Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.03416632Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.03866761Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.041530882Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.060723644Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.06425953Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.067443414Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.070376216Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.073257291Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.076151671Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.07899745Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.081866472Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.084725476Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.087525829Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.090368662Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.093229799Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.096061552Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.09891798Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.102553112Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.105311457Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.108219102Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.111104425Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.113880703Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.116743153Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.119494434Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.122253229Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.125976827Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.128727547Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.13175094Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.135057554Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.138259873Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.142980666Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.145969964Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.148924898Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.153114302Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.156191816Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.159329163Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.16315843Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.166696029Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.169939716Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.174146983Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.176982713Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.180705139Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.183890316Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.187846311Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.19064443Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.19491688Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.197799568Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.20086496Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.208011882Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.211909107Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.21492215Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.21832189Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.221400336Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.224490013Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.228001262Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.230856218Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.233643777Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.237019001Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.240096325Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.243162027Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.246291759Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.249347001Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.252417472Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.25552883Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.25858264Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.262481628Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.265622791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.268664879Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.271767851Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.275268831Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.278375901Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.281485024Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.28576024Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.288511591Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.291696166Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.29544386Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.298486358Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.30118996Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.304663077Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.307365136Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.310230972Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.313497952Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.316110783Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.320015552Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.322985013Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.325998327Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.329830229Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.343360479Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.346337805Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.35104394Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.354164034Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.357696804Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.361699897Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.364671644Z 62 PC: 1405c | Close file
2018-12-17T23:08:58.367058019Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:08:58.372925166Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:58.380726439Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:58.382552851Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:58.38526544Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:58.388109966Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:58.390069238Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:58.394729227Z 62 PC: 1405c | Close file
2018-12-17T23:08:58.590589986Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:58.592459169Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:58.596603789Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:58.600151547Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:08:58.601821496Z 25 PC: 14244 | Get default drive
2018-12-17T23:08:58.604419909Z 59 PC: 142ae | Change current directory
2018-12-17T23:08:58.609107019Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:08:58.610599704Z 78 PC: 135c5 | Find first file
2018-12-17T23:08:58.616867324Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:58.617947204Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:58.62041908Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:58.62373943Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:58.629442239Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:58.630782748Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:58.632340566Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:58.633688459Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:58.63496576Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:58.636714677Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:58.638485886Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.640973311Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.643829219Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.645926891Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.649052516Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.651276035Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.653359451Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.656298905Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.658624787Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.661043904Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.664674648Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.667765898Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.671091117Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.674089042Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.677199268Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.679630878Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.682252335Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.684913566Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.688704542Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.691817182Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.694985987Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.699455528Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.702725143Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.706151723Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.710497892Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.713516706Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.718419831Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.721922114Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.724887728Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.727933602Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.731904956Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.734607466Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.737572709Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.741480393Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.744458891Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.747327954Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.751244375Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.754425024Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.758356252Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.764666242Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.767756259Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.771990217Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.775033798Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.777869297Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.781718121Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.784679527Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.787554921Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.791103931Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.794467212Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.797334341Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.801300666Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.804079419Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.80688943Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.810632605Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.813806761Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.818036591Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.820428567Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.822886296Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.826684565Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.832419053Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.835234224Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.839958363Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.842850889Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.845656152Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.848988615Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.851784029Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.854986288Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.859207702Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.862343565Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.865441849Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.86917754Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.872321248Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.876302501Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.878970906Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.881778012Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.885242885Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.8879807Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.89067809Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.894303063Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.900270579Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.902947911Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.905855536Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.908932739Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.912733854Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.916799896Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.919541098Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.923611658Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.932558013Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.935283576Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.939181301Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.941911994Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.944630433Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.948421188Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.951185274Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.953956743Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.957556077Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.96089335Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.96350076Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.967326491Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.970385841Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:58.973244734Z 62 PC: 1405c | Close file
2018-12-17T23:08:58.975648141Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:08:58.980490623Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:58.988015826Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:58.990228104Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:58.992115742Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:58.99482293Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:58.997241826Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:59.000767293Z 62 PC: 1405c | Close file
2018-12-17T23:08:59.011466502Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:59.01275858Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:59.015362915Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:59.018867782Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:08:59.020245993Z 25 PC: 14244 | Get default drive
2018-12-17T23:08:59.021456818Z 59 PC: 142ae | Change current directory
2018-12-17T23:08:59.026690485Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:08:59.027876865Z 78 PC: 135c5 | Find first file
2018-12-17T23:08:59.034373886Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:59.036279457Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:59.03920189Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:59.043448972Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:59.051249644Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:59.053075275Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:59.057043403Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:59.05870159Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:59.060200046Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:59.062540384Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:59.064126025Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.066881594Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.070387573Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.074070976Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.077299975Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.080986033Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.084030064Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.0870978Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.090017037Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.092745895Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.095680952Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.098878902Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.101648919Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.105133798Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.108090415Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.110772296Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.113856443Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.116698354Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.119407796Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.123130423Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.125939613Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.128760034Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.131880078Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.134788544Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.138283192Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.140948552Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.143637856Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.147788277Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.150542003Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.154439949Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.157243208Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.160185598Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.164010276Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.166811772Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.16959899Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.173242328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.175946831Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.178656484Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.181332022Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.184167832Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.187245837Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.190522927Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.193222019Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.197044524Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.19971352Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.205924113Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.208661137Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.21114203Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.214852143Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.217429367Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.219899489Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.224024202Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.230112124Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.23289257Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.235583157Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.238399029Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.243119712Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.245976872Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.248782785Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.25217981Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.254806547Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.258542439Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.26222517Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.264903644Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.269492008Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.272756273Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.276007604Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.2797721Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.282812324Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.287572701Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.290795478Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.293937964Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.297693693Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.30133132Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.304710982Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.308004873Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.310977229Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.314738919Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.317437581Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.320154398Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.323197007Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.326017779Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.329763329Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.358190828Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.361122167Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.365120312Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.368607907Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.371693456Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.374554543Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.377337083Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.380930076Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.383752641Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.386846676Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.390372974Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.3936752Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.397602552Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.400472235Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.403307184Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.407001838Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.409765542Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.413591473Z 62 PC: 1405c | Close file
2018-12-17T23:08:59.418346199Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:08:59.423829034Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:59.433240142Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:59.434937132Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:59.436902987Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:59.440435055Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:59.442274091Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:59.447897941Z 62 PC: 1405c | Close file
2018-12-17T23:08:59.45682002Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:59.458104464Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:59.463486049Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:59.467517576Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:08:59.480854914Z 25 PC: 14244 | Get default drive
2018-12-17T23:08:59.485171006Z 59 PC: 142ae | Change current directory
2018-12-17T23:08:59.489903561Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:08:59.492760981Z 78 PC: 135c5 | Find first file
2018-12-17T23:08:59.499535694Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:59.501802414Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:59.505094752Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:59.508767405Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:59.516938763Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:59.518567234Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:59.520155429Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:59.522560439Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:59.524266435Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:59.526896589Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:59.529349228Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.532276711Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.53632538Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.539155559Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.542144257Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.5458545Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.548627432Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.552498768Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.555306054Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.558125313Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.562035442Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.564980337Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.568874656Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.571655533Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.574408206Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.578213739Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.580948268Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.584041392Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.587428237Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.590190419Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.593842834Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.596641904Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.599414415Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.603117736Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.606377272Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.611126979Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.614033812Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.617042687Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.620806421Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.624063423Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.627153501Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.630683796Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.633818908Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.637018592Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.639335667Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.641668932Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.644830635Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.647476578Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.651232216Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.65413915Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.656954531Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.660288077Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.66316827Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.666984322Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.670320362Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.673063899Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.677799499Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.68048691Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.683241998Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.686042702Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.688759559Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.692694013Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.696228817Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.699313645Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.70336516Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.706110419Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.709815693Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.712747824Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.715466514Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.719947055Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.722973503Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.725576726Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.728438886Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.731141044Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.734318075Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.736953188Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.741456682Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.745081305Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.747592955Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.751010218Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.754016739Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.756803797Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.760683379Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.763379847Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.767232518Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.771177783Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.774063407Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.777434323Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.780315618Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.783777355Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.787392279Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.790241704Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.794060792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.797090537Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.800166478Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.80447179Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.807278876Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.810835029Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.813951086Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.816872417Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.821060648Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.824038926Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.827132731Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.830298901Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.833255128Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.837450142Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.840904074Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.84399348Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.848371348Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.852277901Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.856524442Z 62 PC: 1405c | Close file
2018-12-17T23:08:59.858929072Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:08:59.864108136Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:59.872443091Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:59.874212276Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:59.875980249Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:59.87886461Z 66 PC: 1413e | Move file pointer
2018-12-17T23:08:59.880724175Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:08:59.88564811Z 62 PC: 1405c | Close file
2018-12-17T23:08:59.895394989Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:59.898542946Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:59.905435069Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:08:59.908343025Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:08:59.911244668Z 25 PC: 14244 | Get default drive
2018-12-17T23:08:59.912624462Z 59 PC: 142ae | Change current directory
2018-12-17T23:08:59.917889397Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:08:59.921948927Z 78 PC: 135c5 | Find first file
2018-12-17T23:08:59.92856427Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:08:59.929981484Z 79 PC: 135e2 | Find next file
2018-12-17T23:08:59.935531565Z 54 PC: 1356a | Get free disk space
2018-12-17T23:08:59.93934371Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:08:59.947924007Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:59.949774344Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:59.951557215Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:59.954520435Z 66 PC: 147cb | Move file pointer
2018-12-17T23:08:59.956081038Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:08:59.957997259Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:08:59.960418811Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.963453604Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.967012944Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.969911472Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.972730791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.976689631Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.979509792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.983205328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.986176943Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.98869718Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.993151091Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.996402572Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:08:59.999864518Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.004107623Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.008981493Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.014209449Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.018490866Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.02163252Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.025904159Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.029648176Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.032942978Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.0365193Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.03994047Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.044210686Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.047694524Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.050983375Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.054991959Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.057893603Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.062154792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.066842843Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.070415768Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.073874679Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.077092056Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.081010831Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.084160441Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.087241382Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.09112453Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.094168621Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.098026181Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.102056927Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.105064079Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.109271637Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.112634067Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.11656778Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.119631338Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.122638771Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.126561483Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.129572372Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.13254027Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.136478993Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.139483089Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.143682702Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.14669795Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.149689923Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.152522447Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.155704527Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.159380546Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.162260119Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.16493183Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.16789516Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.170676026Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.174355602Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.177133283Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.181080561Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.184582654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.187472926Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.192979235Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.196362524Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.199702261Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.20268687Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.205506049Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.209532046Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.212473544Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.216814072Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.219656825Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.222490341Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.226979618Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.22993361Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.23420079Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.237698865Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.240825421Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.24505966Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.248102238Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.252788536Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.255618555Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.258733469Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.262720483Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.266530323Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.270422008Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.273209647Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.277464755Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.280545475Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.283565Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.287150679Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.290343039Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.295182755Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.298683275Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.302007102Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.305426008Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.309509112Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.312953225Z 62 PC: 1405c | Close file
2018-12-17T23:09:00.315546058Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:00.320211897Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:00.328286744Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:00.330419362Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:00.332039517Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:00.334230185Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:00.335794365Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:00.348788267Z 62 PC: 1405c | Close file
2018-12-17T23:09:00.358216687Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:00.359689285Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:00.363396462Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:00.366417611Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:00.369243652Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:00.37054082Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:00.376257715Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:00.37759606Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:00.384165648Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:00.386466212Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:00.390246487Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:00.3943505Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:00.40166638Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:00.403192859Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:00.405121604Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:00.406750005Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:00.409448707Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:00.411048955Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:00.412703104Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.415798111Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.418662044Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.422239698Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.426024491Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.428967833Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.433202562Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.43606894Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.440239679Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.443082391Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.44622591Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.449493311Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.452755803Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.456560964Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.459509777Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.462728977Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.465823623Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.468479144Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.471827999Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.474614215Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.477910921Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.480655299Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.483663173Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.486367235Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.489038155Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.492209836Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.494884373Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.498820781Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.501595977Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.504292996Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.507267346Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.510089411Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.51338232Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.51556928Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.518795443Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.52094823Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.523196064Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.528479164Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.530559534Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.533578558Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.535797398Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.537940436Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.540268692Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.542263431Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.544972333Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.547048314Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.548998129Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.551419771Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.553631057Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.556440978Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.558610185Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.560872717Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.563339904Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.565405747Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.568153451Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.570213854Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.573009328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.575252624Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.577932351Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.580494236Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.583509954Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.586549296Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.588602014Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.590785829Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.593276289Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.595273764Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.597881826Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.600383297Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.602640449Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.609098036Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.611218772Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.613614255Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.616067976Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.618346689Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.621084896Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.623173621Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.626180082Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.628345812Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.631533814Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.634446008Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.638376545Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.641496649Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.644482351Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.648869276Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.651762564Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.655792678Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.659026647Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.661761056Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.664768619Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.666999241Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.669876509Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.672004669Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.674297578Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.676765056Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.678893416Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.68157183Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.68359885Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.687609318Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.690512404Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.693318017Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.696935867Z 62 PC: 1405c | Close file
2018-12-17T23:09:00.699106046Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:00.707768617Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:00.715510327Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:00.71804969Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:00.719905618Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:00.721633836Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:00.724468504Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:00.728096373Z 62 PC: 1405c | Close file
2018-12-17T23:09:00.738368288Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:00.740059206Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:00.74378588Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:00.746883762Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:00.748352623Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:00.750912685Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:00.75547507Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:00.758099542Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:00.770883349Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:00.771980041Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:00.774720832Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:00.77720972Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:00.784022695Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:00.785608185Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:00.787344548Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:00.788886526Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:00.79043172Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:00.79277766Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:00.794306593Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.797197517Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.799355322Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.80231751Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.80449911Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.806561456Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.809391635Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.811901152Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.814452497Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.81643303Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.819405917Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.821746917Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.8238396Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.830673715Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.833572223Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.836788518Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.839509431Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.842112474Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.844283003Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.84648926Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.849818698Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.851877217Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.854745818Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.856947807Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.859751196Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.861887611Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.8642601Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.866763185Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.868771109Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.871391303Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.873452838Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.876055089Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.87847136Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.881268868Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.88360557Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.885588156Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.888072626Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.890718508Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.903545677Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.907110998Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.911528921Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.915194551Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.918377513Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.925919528Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.929038711Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.933345906Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.936965219Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.940457072Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.944827836Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.947951668Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.95247534Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.954914875Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.957990395Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.960616792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.963008507Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.96707005Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.969760878Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.973150729Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.975339753Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.978647831Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.98130744Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.98454262Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.987183103Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.989924676Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.993412922Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:00.996318984Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.000511844Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.010373078Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.015017898Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.017821317Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.021677344Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.026471685Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.030062214Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.034302513Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.037419792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.04192513Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.044802818Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.048808066Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.051729647Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.055396569Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.058326977Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.061117111Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.064661192Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.06761817Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.07185893Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.075034018Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.079091183Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.082111269Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.08508564Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.08934736Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.092390359Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.096374226Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.099445238Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.102482116Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.106288911Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.109323915Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.113309727Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.116389755Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.120445278Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.124405411Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.127530124Z 62 PC: 1405c | Close file
2018-12-17T23:09:01.131025143Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:01.136091064Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:01.144586491Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:01.146406401Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:01.149382455Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:01.151193769Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:01.15289128Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:01.157531651Z 62 PC: 1405c | Close file
2018-12-17T23:09:01.166461705Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:01.168614612Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:01.171156018Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:01.174185743Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:01.175680682Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:01.17810041Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:01.18260715Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:01.183933063Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:01.191278679Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:01.192506967Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:01.196191001Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:01.201990451Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:01.210042104Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:01.212198197Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:01.213870189Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:01.216676614Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:01.218328208Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:01.221210645Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:01.223007753Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.227498022Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.230675024Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.233784969Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.236842194Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.239556014Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.243605596Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.246344353Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.250276984Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.253093969Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.257679177Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.26059641Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.264654908Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.27520189Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.278258125Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.287894476Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.290976268Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.296472739Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.299658106Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.304066401Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.311995193Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.315962199Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.31896359Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.321911421Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.325849733Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.328739815Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.332711139Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.336378932Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.340135122Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.351783154Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.362391473Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.36547608Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.368615921Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.372069242Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.374919549Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.379010358Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.381887265Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.386232001Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.392961649Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.411024468Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.416786507Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.420184033Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.424971411Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.427821167Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.432693805Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.43550571Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.439497863Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.442387104Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.446223213Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.448975366Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.451952161Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.455427914Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.458556654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.461868388Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.464533578Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.468410134Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.471287161Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.475478849Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.479066462Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.483313615Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.486214457Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.489415283Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.492841572Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.495781628Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.501802845Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.508141128Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.518551252Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.521478935Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.525271663Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.528261823Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.532141024Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.535083565Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.538138286Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.542140759Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.545664662Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.550390053Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.553391194Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.557432359Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.560331989Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.563357866Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.56726506Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.570221596Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.57442124Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.578303015Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.58389224Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.586964224Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.591915089Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.594968137Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.599705972Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.60275919Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.6048927Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.609080702Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.612028973Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.621613888Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.624972851Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.62915952Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.631474Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.63517179Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.638151009Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.641031643Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.644715196Z 62 PC: 1405c | Close file
2018-12-17T23:09:01.647136617Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:01.654220051Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:01.66159379Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:01.664011263Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:01.665671023Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:01.6827859Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:01.685014889Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:01.688753736Z 62 PC: 1405c | Close file
2018-12-17T23:09:01.698608639Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:01.699937436Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:01.703893582Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:01.707018395Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:01.709305052Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:01.711174787Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:01.716618217Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:01.718201223Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:01.726007595Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:01.728732476Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:01.731924596Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:01.73680049Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:01.744986856Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:01.750512411Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:01.752861186Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:01.754513972Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:01.757450211Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:01.759192085Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:01.762335022Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.765986014Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.774397994Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.777440763Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.782715657Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.785492476Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.78979894Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.792740307Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.795877794Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.799639264Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.804365216Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.808672371Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.8118163Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.816027656Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.819269739Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.823892598Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.827301385Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.832067362Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.835773548Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.84068563Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.84468127Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.847859854Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.852019682Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.855667709Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.85983972Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.87839276Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.882667965Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.885803348Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.889957266Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.893166908Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.897313942Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.900478069Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.903599386Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.907069869Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.909844323Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.914171546Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.916914051Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.920921242Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.923903056Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.927919806Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.930957114Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.933947545Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.938498478Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.941598315Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.945626355Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.948626504Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.951840304Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.95496665Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.95791413Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.961829549Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.96488931Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.968467495Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.97157724Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.975973342Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.978895274Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.982659879Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.985605205Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.98863005Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.992055508Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.995890797Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:01.999264377Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.001999167Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.004951977Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.007631032Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.012762988Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.015531191Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.018644652Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.022237505Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.025201676Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.027921899Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.030799497Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.034095312Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.036812258Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.039571825Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.042210414Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.045983334Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.048938539Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.051942394Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.055896726Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.058941539Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.061973958Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.065797034Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.068486559Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.072180201Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.075417225Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.078786347Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.081742343Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.085470149Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.088437266Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.092576806Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.095523675Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.099460885Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.102610214Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.10648136Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.109185202Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.113224033Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.11636739Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.120330028Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.123082251Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.127379698Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.130118946Z 62 PC: 1405c | Close file
2018-12-17T23:09:02.133375828Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:02.138023262Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:02.149666095Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:02.151180572Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:02.152753077Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:02.154964704Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:02.157528031Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:02.161681568Z 62 PC: 1405c | Close file
2018-12-17T23:09:02.170418229Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:02.17207367Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:02.174608815Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:02.177178114Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:02.17847465Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:02.181072433Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:02.185471962Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:02.187473343Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:02.193832235Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:02.196021509Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:02.198858691Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:02.203464858Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:02.210631909Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:02.21314893Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:02.21457521Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:02.217164427Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:02.218601017Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:02.220897964Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:02.222458096Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.22605672Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.228822017Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.231381978Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.235033672Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.237798268Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.241150588Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.243872554Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.246727821Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.249853786Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.25364446Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.25668765Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.260697436Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.26394471Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.267315245Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.270237767Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.274167854Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.277148196Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.280623177Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.283330525Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.286041901Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.28871756Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.291491965Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.294122228Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.301297314Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.305955709Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.310593566Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.313722156Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.321717804Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.325240174Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.328389904Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.331547158Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.335468017Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.338391983Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.34207785Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.34499328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.348719092Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.351510408Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.355275344Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.357993763Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.361281102Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.364122853Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.367254158Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.370041978Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.373445995Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.376205652Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.379099792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.381834872Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.384657938Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.3875371Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.391700605Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.394423382Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.410318387Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.41327301Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.416982973Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.419819514Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.426167014Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.429018964Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.432756779Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.43550271Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.439218634Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.441997227Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.445012744Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.447879843Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.451493104Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.454322883Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.457114059Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.461214145Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.465074811Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.476671467Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.479612544Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.48368067Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.486637788Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.490669726Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.493569537Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.497401809Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.503025068Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.506817967Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.51659916Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.521143Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.524102582Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.527504476Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.530525093Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.535313343Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.538075204Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.541979051Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.546949763Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.550291915Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.553216812Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.55631209Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.560567898Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.563476906Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.567769203Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.570689752Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.575216801Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.578001665Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.582751773Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.585505017Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.589274662Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.592068013Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.595757447Z 62 PC: 1405c | Close file
2018-12-17T23:09:02.597926233Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:02.603883349Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:02.611930794Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:02.614377243Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:02.615870519Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:02.618118083Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:02.61969107Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:02.6232504Z 62 PC: 1405c | Close file
2018-12-17T23:09:02.634921185Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:02.636861632Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:02.639775158Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:02.642567626Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:02.644459322Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:02.64607577Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:02.650593451Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:02.65180078Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:02.659192783Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:02.660455906Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:02.663506209Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:02.667228966Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:02.675030369Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:02.676508236Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:02.678547048Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:02.680200606Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:02.682003014Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:02.684877466Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:02.689147752Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.692081977Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.695045557Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.697898018Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.708431355Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.711296661Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.714736536Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.716930249Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.720220012Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.722461034Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.724784822Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.726870061Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.729161097Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.731219435Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.734137049Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.736292129Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.738589157Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.740746471Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.743268772Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.745404867Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.748437557Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.751561248Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.754702502Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.757835099Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.762640321Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.765654776Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.769140748Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.772208554Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.776880234Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.780068577Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.783679093Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.786801752Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.790611532Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.793638542Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.797015128Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.799753174Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.80266682Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.805517428Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.808396759Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.811108486Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.815775006Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.81865042Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.821844183Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.824763069Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.827739733Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.830647959Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.833562587Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.836402986Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.840311151Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.843211082Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.846186053Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.849085703Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.852068539Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.854974341Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.858041014Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.860902973Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.863947616Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.866747598Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.869905033Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.881440654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.88446626Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.887259791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.890252666Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.893959924Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.902722002Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.907459847Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.911274897Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.915509576Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.918385662Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.92498249Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.931413608Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.935071042Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.938346458Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.941600884Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.945935111Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.948859257Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.958513121Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.962204759Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.97033493Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.973237755Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.9782953Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.981230587Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.985055997Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.988110147Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:02.991751661Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.001418821Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.006154511Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.008982757Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.012394469Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.015216614Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.018311841Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.021097487Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.024342796Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.031144851Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.035451755Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.038284099Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.042391609Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.045230154Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.049418746Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.052133018Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.056152232Z 62 PC: 1405c | Close file
2018-12-17T23:09:03.058632103Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:03.064126569Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:03.080054476Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:03.081746606Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:03.084595501Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:03.086118854Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:03.088812195Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:03.099684409Z 62 PC: 1405c | Close file
2018-12-17T23:09:03.111588393Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:03.113200623Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:03.115897291Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:03.120417316Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:03.122151716Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:03.125244349Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:03.129821111Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:03.132208348Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:03.138863546Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:03.141045707Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:03.144047359Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:03.149017791Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:03.15612055Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:03.158437074Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:03.160045076Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:03.161855629Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:03.163841552Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:03.165391846Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:03.167259716Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.170667451Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.174370581Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.177675142Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.180786159Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.184976635Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.198538253Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.207976412Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.213661327Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.220064491Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.226160379Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.229054408Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.232068393Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.235098778Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.239320262Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.24241021Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.247537306Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.250451473Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.254732059Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.257587395Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.265821762Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.268705762Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.272800208Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.27601498Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.279041889Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.291378285Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.294531501Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.303000228Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.306166508Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.313981226Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.318458852Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.323448359Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.33140277Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.334574862Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.33812271Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.340856718Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.345068995Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.348627964Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.351673428Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.354455808Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.358316484Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.363777939Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.367503791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.370536491Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.373699306Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.376453733Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.379412714Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.382199642Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.385060609Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.387736328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.391767425Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.394699245Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.398835429Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.401722224Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.410441983Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.414449975Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.417583234Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.420205212Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.423186225Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.425754241Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.428630016Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.431221988Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.434227317Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.436870815Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.439868659Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.442513751Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.445369268Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.447983151Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.450959144Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.453704454Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.456632266Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.45949111Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.463381522Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.466316969Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.470144613Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.472935288Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.47681498Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.479748443Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.48340214Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.487126931Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.490590511Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.493556425Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.497779993Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.500684482Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.504675323Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.50818513Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.511097413Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.515812996Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.518679914Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.522800518Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.526280589Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.529233689Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.542438848Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.547088016Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.552411632Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.558368939Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.561906237Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.564874586Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.568357682Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.571051295Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.57487431Z 62 PC: 1405c | Close file
2018-12-17T23:09:03.5769543Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:03.582980135Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:03.590214983Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:03.591933002Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:03.596644157Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:03.598325968Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:03.601370069Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:03.604921454Z 62 PC: 1405c | Close file
2018-12-17T23:09:03.615573664Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:03.61700241Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:03.620760603Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:03.623508177Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:03.624987888Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:03.627284614Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:03.631869752Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:03.634339193Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:03.642239782Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:03.643704084Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:03.648074468Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:03.652076961Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:03.662320694Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:03.672204711Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:03.675467794Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:03.677267607Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:03.679112254Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:03.681122261Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:03.687453862Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.691867487Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.694817972Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.698802Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.701881588Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.70474492Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.708949012Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.7124383Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.716803734Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.720635727Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.725345609Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.728462938Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.731511257Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.735751926Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.738862944Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.741930699Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.746156171Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.755044727Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.762412134Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.7668742Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.774300037Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.778835552Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.781772772Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.792754713Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.798361951Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.802399239Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.810701654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.814888874Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.818268596Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.822183193Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.833220257Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.840189345Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.844552946Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.851959076Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.855804483Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.858838536Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.864029783Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.868121012Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.870967853Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.875269978Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.878190007Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.882287888Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.885215711Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.889533567Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.892149533Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.895783103Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.898178916Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.9003626Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.903250117Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.906296282Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.910885217Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.91422283Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.919338274Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.922571331Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.925103961Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.929183979Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.931625668Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.935705206Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.938153738Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.941753423Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.945610062Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.948682065Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.952338697Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.955099386Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.958079878Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.961593221Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.965115431Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.96932852Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.972038984Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.975870816Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.979310531Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.98202367Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.985784348Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.988473182Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.992213672Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.994934426Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:03.999104874Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.00185893Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.022478965Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.025461561Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.028428938Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.031469483Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.034427753Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.038118139Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.040917731Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.043715268Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.047971768Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.050711708Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.053388138Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.057297185Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.060149726Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.063593679Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.067285077Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.070029515Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.073903787Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.076655328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.08125827Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.084040519Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.088091332Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.090863212Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.093815401Z 62 PC: 1405c | Close file
2018-12-17T23:09:04.096765245Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:04.102350262Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:04.110741323Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:04.112250369Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:04.115068766Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:04.116827341Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:04.118738994Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:04.124454275Z 62 PC: 1405c | Close file
2018-12-17T23:09:04.253499994Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:04.255697044Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:04.258329712Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:04.260916323Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:04.263626046Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:04.265086962Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:04.270264032Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:04.272032727Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:04.278703594Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:04.280202902Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:04.285595668Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:04.289173071Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:04.297558822Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:04.299552018Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:04.301044222Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:04.303448491Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:04.304804901Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:04.306977875Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:04.308583833Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.311664563Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.314928237Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.317606291Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.321131326Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.323860856Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.32745441Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.330228634Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.332975767Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.336940489Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.340457359Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.356078599Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.359178936Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.363140031Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.367382174Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.370866703Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.375264077Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.378130685Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.382247582Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.385088913Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.390103377Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.392953735Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.402612288Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.405651109Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.413143361Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.419982906Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.425126513Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.42814184Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.433234472Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.436094457Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.44032577Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.44330544Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.446404855Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.450531341Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.453504077Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.457722506Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.461685053Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.464470559Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.468426223Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.471247897Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.474049733Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.47820919Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.480995427Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.484885078Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.4877171Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.490512955Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.494504036Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.503339974Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.508001395Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.510953713Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.514971835Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.518034582Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.520935885Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.524546942Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.5275041Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.532000861Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.535220362Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.539231029Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.542976619Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.545973883Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.55007995Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.552980722Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.555865313Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.560035481Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.562942415Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.565843708Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.569956528Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.572878149Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.575821431Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.57982729Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.582798574Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.58567489Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.599628466Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.602571437Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.605654682Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.609411653Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.612273372Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.616871393Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.621043424Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.625605479Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.62876155Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.63323051Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.636201594Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.639159253Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.66218537Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.665203062Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.669308548Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.672517639Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.67556658Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.679818872Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.68322841Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.686951889Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.69017673Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.694057734Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.699406316Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.702543572Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.70707016Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.710196165Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.713845704Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.716884325Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.719795878Z 62 PC: 1405c | Close file
2018-12-17T23:09:04.723399591Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:04.730188931Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:04.739027924Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:04.740721537Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:04.74240994Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:04.74560198Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:04.762221556Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:04.772434281Z 62 PC: 1405c | Close file
2018-12-17T23:09:04.782603313Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:04.783877548Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:04.787192718Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:04.791111734Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:04.793247919Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:04.796086174Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:04.80141029Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:04.804727635Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:04.81134903Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:04.812528447Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:04.816506764Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:04.820318027Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:04.828669614Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:04.831628725Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:04.83323242Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:04.835161104Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:04.836747175Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:04.839418386Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:04.841204172Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.845424334Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.849276264Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.852132843Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.856338397Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.859262773Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.862271899Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.866815538Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.890555507Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.893839619Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.898608282Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.901725Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.905020574Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.919870634Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.927325415Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.932279567Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.935343395Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.939580639Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.942602839Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.94549804Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.949609888Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.95263298Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.958715362Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.961835075Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.964746808Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.968663319Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.971618323Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.974720553Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.979206875Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.982334614Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.985453005Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.989657427Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.992906233Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:04.997344695Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.00119919Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.005868405Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.008910483Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.011931381Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.016276016Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.019414786Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.027312448Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.034359413Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.045349449Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.05185715Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.054691206Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.057462886Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.061605311Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.064456069Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.068380105Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.071228107Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.074076291Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.078455191Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.082241838Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.087262684Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.091739327Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.096007699Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.100155645Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.103361741Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.106168677Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.111774092Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.114597709Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.117647241Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.121113165Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.123755992Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.12738363Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.130718618Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.136120742Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.14003609Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.142832596Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.146043772Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.148762902Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.151488455Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.155358919Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.158059735Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.160682274Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.170480309Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.173241769Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.176999542Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.181139924Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.183980663Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.186619112Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.190264583Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.200787621Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.204176391Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.207055141Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.209735419Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.213702505Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.216322219Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.219008387Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.222644641Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.225759535Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.233570966Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.237298763Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.240343535Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.24407057Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.246840587Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.250814315Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.25400399Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.256888251Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.260977086Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.263970552Z 62 PC: 1405c | Close file
2018-12-17T23:09:05.266612488Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:05.273580143Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:05.284787397Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:05.289262016Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:05.292577528Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:05.295149151Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:05.300449132Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:05.306144156Z 62 PC: 1405c | Close file
2018-12-17T23:09:05.514445253Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:05.516455171Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:05.519294678Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:05.523969474Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:05.525516562Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:05.526898399Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:05.532745599Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:05.533982804Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:05.541599239Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:05.543027764Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:05.546228049Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:05.552202377Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:05.560223532Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:05.563472398Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:05.56529806Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:05.567174176Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:05.570309629Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:05.572351406Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:05.574660887Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.581076485Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.583971456Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.59163519Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.595643955Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.599842315Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.603406083Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.60692133Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.610994586Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.613781263Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.617625208Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.620789716Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.624008264Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.627522349Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.630973776Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.635093689Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.637990423Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.642862861Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.645809169Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.648681167Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.652696784Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.655556539Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.658475335Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.662522712Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.666009064Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.668918683Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.67854736Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.682337824Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.685643858Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.689739775Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.692899494Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.697003497Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.701939113Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.705429003Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.708675605Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.713062099Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.716284756Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.719385343Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.723726453Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.728103148Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.730996476Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.741838233Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.7459331Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.751005082Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.754226226Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.759067795Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.765554206Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.768572489Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.771867883Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.774805815Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.779222987Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.782175676Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.785113488Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.788496647Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.791856511Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.796152676Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.799474289Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.822404936Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.827016624Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.830220756Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.834303599Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.838995127Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.842833401Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.850164039Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.853424677Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.856654027Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.862417499Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.865758529Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.873681169Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.877003824Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.880588852Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.885554315Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.888976305Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.893929324Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.899991087Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.903426404Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.908089959Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.911535876Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.91594915Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.920321568Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.923341544Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.927039465Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.93084098Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.934634099Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.937822712Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.940799066Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.945021241Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.948274506Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.951406803Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.955855934Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.958860561Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.962032142Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.966935728Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.97425791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.979652049Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.983964704Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.988571813Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.996450681Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:05.999539857Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.002609527Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.007192791Z 62 PC: 1405c | Close file
2018-12-17T23:09:06.010491341Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:06.019404302Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:06.027814068Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:06.02947Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:06.031033388Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:06.034126883Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:06.035786181Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:06.040525218Z 62 PC: 1405c | Close file
2018-12-17T23:09:06.049701946Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:06.051002079Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:06.055988762Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:06.058618554Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:06.059975304Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:06.063625164Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:06.068185245Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:06.069487152Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:06.077366019Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:06.078480083Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:06.082458921Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:06.101161462Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:06.108531404Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:06.111293455Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:06.113029669Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:06.114790117Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:06.117493518Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:06.11926625Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:06.120953291Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.125476993Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.12852406Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.13135484Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.135678666Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.148932837Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.151898842Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.155486355Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.158243667Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.162315179Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.165047044Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.173737548Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.178711206Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.181470211Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.184238915Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.188534337Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.191264428Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.193995381Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.197114744Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.200216263Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.203341116Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.207366803Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.210934809Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.214728759Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.218947909Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.221899497Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.224956622Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.229080834Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.231919209Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.235385904Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.240289551Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.243276975Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.254904348Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.257516097Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.260473405Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.264985576Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.267990293Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.271015078Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.27522501Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.277928932Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.280310368Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.28298726Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.285846894Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.288299434Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.290827094Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.292960554Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.29512913Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.298644597Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.300751967Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.303888622Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.306040096Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.308213922Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.311175208Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.313306634Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.315762089Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.318214748Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.320313413Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.322549566Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.32550465Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.328820402Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.332811112Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.33628955Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.339406328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.343707842Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.347112662Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.350161732Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.354381784Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.357872594Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.360839781Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.365077105Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.37268312Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.375651179Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.379311949Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.382894062Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.385972738Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.390533009Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.39368883Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.39684388Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.400363385Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.403326654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.406149219Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.409173694Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.413169002Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.416132873Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.420225134Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.423316294Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.426593173Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.430450382Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.433565197Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.441842303Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.44485747Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.447706555Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.451319646Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.454454518Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.457559213Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.461788101Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.465624422Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.468553326Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.472901347Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.475946791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.479099687Z 62 PC: 1405c | Close file
2018-12-17T23:09:06.483255658Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:06.488448348Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:06.497296879Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:06.499547599Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:06.501405992Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:06.5048742Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:06.506869811Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:06.510725728Z 62 PC: 1405c | Close file
2018-12-17T23:09:06.521698611Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:06.523245208Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:06.526266806Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:06.530430462Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:06.532122151Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:06.533675912Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:06.539913626Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:06.541434444Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:06.550095693Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:06.551628854Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:06.554938986Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:06.560349505Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:06.567822119Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:06.56962098Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:06.572906876Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:06.574846922Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:06.576632338Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:06.579748023Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:06.581931036Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.586849751Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.590085562Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.593140544Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.598030775Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.600866936Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.603722112Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.609005733Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.612152477Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.616972676Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.620139047Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.623256667Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.627927486Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.631162957Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.634270798Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.638786945Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.641626382Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.644604429Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.648298201Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.651041918Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.654853091Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.657699211Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.660500716Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.664747858Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.667616179Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.670472478Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.675027659Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.677859552Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.680955591Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.693085929Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.697041553Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.701823461Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.705115558Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.708378661Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.713201446Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.716450292Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.721049446Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.724732248Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.727965815Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.732476332Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.736133456Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.739405145Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.743913218Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.74756962Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.750784411Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.755356965Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.758825555Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.762073229Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.766786076Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.769728036Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.772555951Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.776942996Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.779922997Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.782715295Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.786339146Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.790138647Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.793270975Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.796620109Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.801275739Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.80441555Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.809005216Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.812619629Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.815726839Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.820085401Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.823651493Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.826853552Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.831228404Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.834836866Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.837962721Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.842269716Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.846642615Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.849766797Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.854112004Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.857652478Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.860800494Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.865190224Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.868697757Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.871815076Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.876121129Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.879689115Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.882842041Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.886980829Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.890303043Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.893389535Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.897834008Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.900670088Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.903719259Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.907552734Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.910358417Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.913345351Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.917188043Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.920828174Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.92387464Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.927778026Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.930616722Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.934059713Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.941482824Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.944192197Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.949616792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.952409792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:06.958082073Z 62 PC: 1405c | Close file
2018-12-17T23:09:06.961348632Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:06.966085134Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:06.973253677Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:06.975890352Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:06.97974656Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:06.981336598Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:06.98408273Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:06.987954867Z 62 PC: 1405c | Close file
2018-12-17T23:09:06.997739968Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:07.000026566Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:07.00553Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:07.008012586Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:07.009777763Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:07.03083038Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:07.035358882Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:07.038028379Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:07.044714005Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:07.046159952Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:07.050946338Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:07.05490588Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:07.062959807Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:07.06600993Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:07.068897317Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:07.070803239Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:07.072856237Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:07.076131623Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:07.078119499Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.082563562Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.086080782Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.08917626Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.092454592Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.096940132Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.100008519Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.104325773Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.107888049Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.110968198Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.115279641Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.118834723Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.121900404Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.126187221Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.12949093Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.132328083Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.135720448Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.140012876Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.143219683Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.14711279Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.16453201Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.167599935Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.171697125Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.175448205Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.178588959Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.181672123Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.185574989Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.188694442Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.191860542Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.196805697Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.202765017Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.205908195Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.210107557Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.213415094Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.217951539Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.221222787Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.22448546Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.230055458Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.233318641Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.236578839Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.241486643Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.244727514Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.249312001Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.253076927Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.256364967Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.260912474Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.264622436Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.268072139Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.272663148Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.276365677Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.279652665Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.284264563Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.287982851Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.29208451Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.296603103Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.300285063Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.303554769Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.30859385Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.312275609Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.31553799Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.319573114Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.323238553Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.326351524Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.329991956Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.335720323Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.338933261Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.341911739Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.344956041Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.347729594Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.352079369Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.355057717Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.358019754Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.362072761Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.365056379Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.368223391Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.372152395Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.37579953Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.378532477Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.381473264Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.385070505Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.38785582Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.390972558Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.393908566Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.396597329Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.399612346Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.402708766Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.405587496Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.40874477Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.412494347Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.415309317Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.419429551Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.422256545Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.425032532Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.427830571Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.43170315Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.434490188Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.438818242Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.442657007Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.445626478Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.449864484Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.453670287Z 62 PC: 1405c | Close file
2018-12-17T23:09:07.456137203Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:07.462633352Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:07.470261248Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:07.471732594Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:07.473852558Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:07.475730558Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:07.477468294Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:07.481333298Z 62 PC: 1405c | Close file
2018-12-17T23:09:07.490040643Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:07.491132676Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:07.49397619Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:07.501058862Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:07.502832496Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:07.505227627Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:07.510133136Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:07.51169419Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:07.518120188Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:07.520198995Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:07.530446475Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:07.537109999Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:07.544472747Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:07.546535915Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:07.548787316Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:07.550763831Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:07.55332762Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:07.555185732Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:07.557533023Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.560802428Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.564111868Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.567425806Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.570497099Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.573518107Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.576910923Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.579719121Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.582687941Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.585726913Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.588626102Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.591441984Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.59554721Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.598384282Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.609337478Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.623974438Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.626860923Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.629937185Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.63319086Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.636151284Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.638932862Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.642827222Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.645440884Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.649964195Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.652738048Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.655403708Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.658179124Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.661634278Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.66426865Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.66729625Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.669979904Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.672683245Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.675371086Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.678968758Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.682616474Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.68537563Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.691554894Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.695003495Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.714399679Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.718137144Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.720932578Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.724002398Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.727774277Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.730627269Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.734899028Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.737685585Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.740394777Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.743215028Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.746407598Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.754334906Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.758516576Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.761387061Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.764445509Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.768567246Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.771518122Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.774502451Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.778525923Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.781458685Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.784364006Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.788790205Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.791531076Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.794511498Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.798617945Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.801572368Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.804488018Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.808492654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.811458669Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.814393485Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.818547212Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.821551438Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.824519106Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.828722346Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.83192773Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.835786954Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.838761114Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.843011542Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.845973969Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.850249605Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.853246147Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.856219886Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.859215687Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.863276439Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.866206045Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.870035142Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.87303492Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.875997678Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.878955337Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.882459784Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.885457959Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.888685275Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.892122424Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.895279718Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.898458603Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.902219481Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.905119462Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.908100014Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.911439791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.915390626Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.919640854Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.92249577Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:07.925258904Z 62 PC: 1405c | Close file
2018-12-17T23:09:07.927803706Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:07.934184299Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:07.941636053Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:07.943146943Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:07.94500207Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:07.949704959Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:07.951441262Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:07.955174929Z 62 PC: 1405c | Close file
2018-12-17T23:09:07.964470691Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:07.966083743Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:07.969331326Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:07.972223212Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:07.973920932Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:07.978090529Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:07.983015926Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:07.984721021Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:07.994397717Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:07.996085239Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:07.999122518Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:08.003869399Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:08.011399843Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:08.013203312Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:08.015869403Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:08.017339015Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:08.018768632Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:08.021852118Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:08.023833381Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.027143583Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.030861962Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.033988578Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.03708122Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.041962023Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.044612184Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.047361111Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.050055044Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.05414447Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.056700324Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.059512539Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.062286322Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.065743049Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.0684305Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.071200336Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.073887647Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.076574065Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.079455671Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.082294407Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.085058211Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.088320102Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.091621817Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.094928783Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.099085305Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.101961901Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.104680551Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.108352242Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.111068617Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.113874381Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.117923691Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.120698586Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.12353682Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.12971386Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.133120162Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.136539208Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.142492227Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.145254679Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.148090509Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.152124651Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.154940704Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.159726328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.163864656Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.174069455Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.176883093Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.179690139Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.183163758Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.185925348Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.188798488Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.193436495Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.196252197Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.199147559Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.203845498Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.206755818Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.209650088Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.215048614Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.217858696Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.220586382Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.224625173Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.227761618Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.231579864Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.234657749Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.237750041Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.240681811Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.243609414Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.248439682Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.252908721Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.255612633Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.26184667Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.265281916Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.268659514Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.272047352Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.27602617Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.278753195Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.281467076Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.284298738Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.287031063Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.289786521Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.292552981Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.308307571Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.320126836Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.324290752Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.327664142Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.330802109Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.335350447Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.338371014Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.34122047Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.345313162Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.348135958Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.35155287Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.355949884Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.358924765Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.361770854Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.364469346Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.367949026Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.370665792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.373567456Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.377793908Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.381291492Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.389817547Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.392858753Z 62 PC: 1405c | Close file
2018-12-17T23:09:08.396532968Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:08.401205871Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:08.408386657Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:08.411305443Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:08.413055572Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:08.414663083Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:08.416202196Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:08.420859218Z 62 PC: 1405c | Close file
2018-12-17T23:09:08.430478578Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:08.439038115Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:08.441955789Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:08.446182183Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:08.447777431Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:08.450108853Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:08.455552835Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:08.457062502Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:08.465178555Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:08.466407034Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:08.469324828Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:08.475078412Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:08.483032722Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:08.484604917Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:08.486496222Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:08.488289873Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:08.490370263Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:08.49215104Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:08.495658652Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.498747748Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.501578328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.506584727Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.509822422Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.512984966Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.518226718Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.521375416Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.524610797Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.529405999Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.532736849Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.544523632Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.549745005Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.560194124Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.563005508Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.567049549Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.571961791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.575119196Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.581898037Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.587002059Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.590043064Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.593093367Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.598091321Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.601102851Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.604133086Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.610832488Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.613908569Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.616640113Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.621631685Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.625924393Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.628916807Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.634303029Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.637356338Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.641412121Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.650276672Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.655366969Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.671137599Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.676117498Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.679465421Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.683259892Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.688816015Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.691913837Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.694989578Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.699300531Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.702250395Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.706077909Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.71247927Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.716883166Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.71977971Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.722880698Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.727130897Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.729942491Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.732723117Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.735723386Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.738661488Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.741433218Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.744429429Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.748092614Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.751281698Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.754194973Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.757946373Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.762077427Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.765371188Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.768635313Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.77374668Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.776984846Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.780156376Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.7849998Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.789168374Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.800577728Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.807589666Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.818378924Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.821445869Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.825710504Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.828950043Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.832597699Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.837665033Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.841901535Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.844861237Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.848327702Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.852380499Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.855314664Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.858158309Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.860999659Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.8656769Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.869363248Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.872180022Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.875745313Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.878857032Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.886364Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.891141639Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.894061076Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.896743989Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.89946339Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.902523702Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.905262139Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.907983373Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.912190771Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.914860759Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.921622137Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:08.925004725Z 62 PC: 1405c | Close file
2018-12-17T23:09:08.927343129Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:08.931872832Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:08.939896052Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:08.942727113Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:08.944217003Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:08.945831958Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:08.948618937Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:08.951878202Z 62 PC: 1405c | Close file
2018-12-17T23:09:08.96677979Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:08.96800388Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:08.971948504Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:08.974786607Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:08.976785144Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:08.979150209Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:08.984432978Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:08.985819093Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:08.994730802Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:08.997924765Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:09.009007505Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:09.012704202Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:09.020564375Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:09.022159113Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:09.023648652Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:09.027037692Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:09.028686962Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:09.030402566Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:09.03434176Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.039241459Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.04296671Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.046548532Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.0497129Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.05269837Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.055677289Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.060037855Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.06391967Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.066663517Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.06942119Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.073982654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.077132995Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.08018463Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.084646246Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.0877346Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.090370303Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.09299177Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.096494183Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.099763477Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.102422084Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.107662784Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.110776516Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.114075226Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.118800467Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.12196243Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.12585185Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.129083804Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.132185984Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.135022516Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.13872792Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.142490632Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.145294662Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.148522769Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.153775762Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.160180079Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.166631984Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.172164923Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.179429798Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.182785124Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.186498824Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.190491328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.193326947Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.196244841Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.199062728Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.201951417Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.20476286Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.207592839Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.213075634Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.21590973Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.220173364Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.224331189Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.24095944Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.243794038Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.248494302Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.251598626Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.254440898Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.258967616Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.26217795Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.265058344Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.268205008Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.272230404Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.275465995Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.27833129Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.282512939Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.286968623Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.289822497Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.293022471Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.298049349Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.307309654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.312146765Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.316880161Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.319868277Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.322840233Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.326228681Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.329976335Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.333792668Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.339611925Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.342571457Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.346811426Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.34999012Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.352943932Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.355896421Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.361484122Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.364458062Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.369269485Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.380264951Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.383172385Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.387070802Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.38995318Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.394634798Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.397782123Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.400640786Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.405699905Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.408590097Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.411433521Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.415720709Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.418888803Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.422043793Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.425046576Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.437437474Z 62 PC: 1405c | Close file
2018-12-17T23:09:09.440618653Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:09.446188081Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:09.454490716Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:09.457014118Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:09.458716798Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:09.460498247Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:09.464196187Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:09.468355944Z 62 PC: 1405c | Close file
2018-12-17T23:09:09.48920512Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:09.4922699Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:09.497858524Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:09.501154098Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:09.503078104Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:09.507591697Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:09.513500342Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:09.515340761Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:09.52639135Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:09.528014601Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:09.531532563Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:09.535642448Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:09.545218114Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:09.546979955Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:09.548860009Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:09.552547419Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:09.554314661Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:09.55617617Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:09.55812903Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.563206854Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.56629093Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.569351432Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.574041818Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.577142997Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.580467755Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.583756125Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.58871213Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.592224922Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.595635522Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.598958468Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.604512657Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.607613394Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.610481385Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.615177892Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.618042225Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.620895377Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.625602023Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.628487095Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.631421721Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.63442176Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.639138024Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.642176014Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.645244451Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.650287379Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.653486552Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.656455281Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.661370989Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.664700407Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.668026017Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.672947347Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.677007047Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.680775791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.685028954Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.689470512Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.692437438Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.695393354Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.700663068Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.703883951Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.707092922Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.712000727Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.715200571Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.718466759Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.723972016Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.726738336Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.729924855Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.740336152Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.745066733Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.74826296Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.75229066Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.757351402Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.762324058Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.766371645Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.782231883Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.785157903Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.788123847Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.791110641Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.796278444Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.799168145Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.802105025Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.804950202Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.809747559Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.826036232Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.829166937Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.83139787Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.834874784Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.837109895Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.839366557Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.841954671Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.84461952Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.846906297Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.84913716Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.852491013Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.854758114Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.856812345Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.859975139Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.862220229Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.877493795Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.880916549Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.885018378Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.887931983Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.890935568Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.895329206Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.898373568Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.901431786Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.906411134Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.909798952Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.913234198Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.917657161Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.925386738Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.928545845Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.931722045Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.936062212Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.939720528Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.943238099Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.947540816Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.951247493Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.954750166Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.958335214Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:09.963369506Z 62 PC: 1405c | Close file
2018-12-17T23:09:09.966356609Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:09.971223296Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:09.978686563Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:09.982320984Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:09.984104076Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:09.985959824Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:09.989228467Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:09.993482472Z 62 PC: 1405c | Close file
2018-12-17T23:09:10.008348221Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:10.009907933Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:10.014661247Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:10.017200199Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:10.018877491Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:10.020790897Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:10.026043469Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:10.027946316Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:10.034666596Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:10.036530028Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:10.039892828Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:10.04353844Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:10.050823051Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:10.054389505Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:10.056375708Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:10.058020128Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:10.059527271Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:10.062912273Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:10.0647567Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.067915456Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.072129987Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.075846231Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.078659809Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.083122066Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.086485878Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.089456712Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.092442774Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.097269035Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.100285996Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.10330019Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.107683649Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.111065475Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.114056937Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.117311925Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.120495077Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.122768019Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.124889036Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.127989794Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.130311958Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.132455818Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.134595369Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.137801855Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.139957657Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.142129368Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.145310427Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.147582968Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.149743068Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.152458962Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.155605647Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.157782508Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.160085526Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.163458907Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.165838158Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.168098106Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.17213344Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.175197649Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.178253582Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.181067301Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.185116391Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.18801037Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.190832504Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.195493665Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.198522437Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.201415254Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.204549776Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.208754738Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.211720302Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.214666118Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.219195521Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.222289426Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.225289976Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.22889413Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.23337442Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.236600293Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.239771764Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.244752665Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.248117379Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.251502351Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.254983664Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.260280429Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.263535978Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.271077322Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.275066228Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.277689959Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.280253337Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.284286928Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.302632558Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.306566823Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.30967249Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.314350882Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.31786167Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.320902987Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.323971123Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.328617576Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.332179431Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.335315705Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.33836671Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.342876495Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.345908884Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.348761325Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.352430702Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.35682973Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.359771429Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.362672211Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.367422859Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.370317169Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.373166374Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.376539394Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.380555381Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.383412701Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.386225598Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.388980796Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.393157717Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.396275727Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.399298729Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.402611986Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.407437926Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.411240944Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.414061534Z 62 PC: 1405c | Close file
2018-12-17T23:09:10.41626735Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:10.422991188Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:10.430374625Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:10.431965555Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:10.435454222Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:10.437136744Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:10.438866796Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:10.442502519Z 62 PC: 1405c | Close file
2018-12-17T23:09:10.452808157Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:10.454154117Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:10.456892273Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:10.462964897Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:10.47042621Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:10.473040554Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:10.479154866Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:10.481920995Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:10.488563037Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:10.48993737Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:10.493019613Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:10.496935123Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:10.504360428Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:10.505791939Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:10.508488888Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:10.510019855Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:10.511474249Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:10.514456143Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:10.518553002Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.524704955Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.527832563Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.532214569Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.535923159Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.538775681Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.541619315Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.545962899Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.549062855Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.551940173Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.556515401Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.560149401Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.563243827Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.566326591Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.570636382Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.573845724Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.57711596Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.581993918Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.585156241Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.588257299Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.591370901Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.59620662Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.59926609Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.602338064Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.616992527Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.622335307Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.625996619Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.629030461Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.632871831Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.635989009Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.639228839Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.643827281Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.647236789Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.650498991Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.654417235Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.658523832Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.661514553Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.664458807Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.669289637Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.672421182Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.676018103Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.680818866Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.684122605Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.687238531Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.690328378Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.694416642Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.697898596Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.701179512Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.704948146Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.709735553Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.712817786Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.715918955Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.719017328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.72391869Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.727063691Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.730227126Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.733416791Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.738641331Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.741790419Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.744949447Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.748291298Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.751919016Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.755370593Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.758576748Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.762231908Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.770806824Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.773944351Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.776905928Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.78033891Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.784826725Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.787973399Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.791104844Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.795773107Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.799075113Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.802443715Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.80558581Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.810164275Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.813131132Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.816167508Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.81917959Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.823598725Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.828030774Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.831140429Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.834182607Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.841323528Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.844304711Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.847483956Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.850502941Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.855151988Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.860194565Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.863082312Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.868137043Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.871135328Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.874096373Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.877901705Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.88207562Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.884983275Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.887936856Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.891061118Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.89640935Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:10.899444554Z 62 PC: 1405c | Close file
2018-12-17T23:09:10.901855455Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:10.9071043Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:10.92060756Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:10.921858902Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:10.923151531Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:10.930967921Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:10.93286703Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:10.935626777Z 62 PC: 1405c | Close file
2018-12-17T23:09:10.94411475Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:10.945878074Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:10.949115509Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:10.95201037Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:10.953820622Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:10.957360486Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:10.962707405Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:10.964334452Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:10.970911183Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:10.973084207Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:10.976603993Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:10.980299378Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:10.9878506Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:10.991825712Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:10.993890562Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:10.996155789Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:11.000382493Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:11.002174261Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:11.003926574Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.00873932Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.012166812Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.015051734Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.018123347Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.023359248Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.027201068Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.029977626Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.032724619Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.041420823Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.052913584Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.062487868Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.065636646Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.06906024Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.072276215Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.075369729Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.079188126Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.083604677Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.086725372Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.089886263Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.095434269Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.098788013Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.101929667Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.105039522Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.11075786Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.114209066Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.117128293Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.119958342Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.125340517Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.128271115Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.131319043Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.135988419Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.139048932Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.142097191Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.145114261Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.149735347Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.152620219Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.155596482Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.15870796Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.161482264Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.164476752Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.16727964Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.171184118Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.174138471Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.17685695Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.179645031Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.183455382Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.187078632Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.189753448Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.192424879Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.195348244Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.199567564Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.202227493Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.204882573Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.207936002Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.210728501Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.213438544Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.216142375Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.218806693Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.222958937Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.225614708Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.228770109Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.23342625Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.236388768Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.239377856Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.242282806Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.245776492Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.248885124Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.251870405Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.254848242Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.26167882Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.265986706Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.269044984Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.272054861Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.276942157Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.281521032Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.284316806Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.28715989Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.290479449Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.293248363Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.29600282Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.298733873Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.301517555Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.304854868Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.307640934Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.310954131Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.313798506Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.316724966Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.320105891Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.323757474Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.327157284Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.331795Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.335187827Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.338453585Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.342295706Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.346846649Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.349657442Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.352572561Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.355338199Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.358594188Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.362714913Z 62 PC: 1405c | Close file
2018-12-17T23:09:11.365239819Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:11.374212222Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:11.381853283Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:11.3843209Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:11.386136242Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:11.38790672Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:11.389718746Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:11.393854749Z 62 PC: 1405c | Close file
2018-12-17T23:09:11.404370283Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:11.405742823Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:11.408490065Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:11.411679961Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:11.414287712Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:11.416919879Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:11.427396339Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:11.428965218Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:11.43667636Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:11.437803519Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:11.44439101Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:11.450449577Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:11.457821612Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:11.459780534Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:11.461221663Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:11.464464387Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:11.466190572Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:11.46769583Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:11.469299584Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.474254928Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.477132085Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.479977183Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.483007218Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.488065304Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.491221146Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.493796646Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.496734107Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.502635137Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.509605147Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.512317485Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.514673683Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.517263501Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.519392202Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.52145015Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.524734723Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.527461368Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.529616679Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.53171391Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.533845987Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.536467283Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.538639957Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.54082835Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.54316953Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.545918427Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.547945436Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.550653456Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.552926849Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.556864339Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.559920393Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.562248529Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.566333045Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.568805171Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.5720714Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.574266927Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.577914562Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.580543062Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.582910913Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.585657836Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.589205293Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.591838893Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.594207304Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.596985916Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.599962149Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.602387458Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.604669697Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.608144538Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.610697627Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.61307213Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.615300528Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.618134474Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.620779796Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.625077342Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.62862497Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.632144124Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.637666924Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.640909909Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.644159186Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.649804507Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.65329137Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.656566756Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.660516379Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.668513199Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.671774809Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.67536168Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.678581091Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.683812443Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.687279089Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.690191542Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.693422935Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.696705715Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.701557735Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.705378005Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.708798984Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.714672574Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.718794901Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.721863989Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.724872624Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.731677834Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.735455494Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.738910668Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.741887142Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.746972691Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.750066004Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.753194784Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.756303126Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.761484414Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.764717671Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.767800746Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.770957068Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.774370654Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.777666889Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.780516685Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.785824681Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.789221745Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.792224489Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.795398735Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.800510693Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.803587826Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.806690838Z 62 PC: 1405c | Close file
2018-12-17T23:09:11.80924016Z 64 PC: 13dcb | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:09:11.819790969Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:11.827089376Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:11.828695876Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:11.830372928Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:11.833562793Z 66 PC: 1413e | Move file pointer
2018-12-17T23:09:11.835748722Z 64 PC: 140df | Write file or device (Write 10 bytes on handle 5)
2018-12-17T23:09:11.8398555Z 62 PC: 1405c | Close file
2018-12-17T23:09:11.849207647Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:11.855121972Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:11.858055296Z 44 PC: 14761 | Get time 0x14761: mov word ptr [0x50], cx
0x14765: mov word ptr [0x52], dx
0x14769: retf
0x1476a: call 0x147b1
0x1476d: jb 0x1477e
0x1476f: mov cx, word ptr es:[di + 4]
0x14773: cmp cx, 1
0x14776: je 0x1477e
0x14778: xor bx, bx
0x1477a: push cs
0x1477b: call 0x242f2
0x1477e: retf 4
0x14781: call 0x147b1
0x14784: jb 0x14799
0x14786: mov ax, cx
0x14788: mov dx, bx
0x1478a: mov cx, word ptr es:[di + 4]
0x1478e: cmp cx, 1
0x14791: je 0x14799
0x14793: xor bx, bx
2018-12-17T23:09:11.861040176Z 14 PC: 14240 | Set default drive (Drive = 'A')
2018-12-17T23:09:11.862535586Z 25 PC: 14244 | Get default drive
2018-12-17T23:09:11.866031286Z 59 PC: 142ae | Change current directory
2018-12-17T23:09:11.870652091Z 26 PC: 135b9 | Set disk transfer address
2018-12-17T23:09:11.871989926Z 78 PC: 135c5 | Find first file
2018-12-17T23:09:11.878578338Z 26 PC: 135dd | Set disk transfer address
2018-12-17T23:09:11.880219342Z 79 PC: 135e2 | Find next file
2018-12-17T23:09:11.883943291Z 54 PC: 1356a | Get free disk space
2018-12-17T23:09:11.888102799Z 61 PC: 1400c | Open file (Filename = 'TEST.EXE')
2018-12-17T23:09:11.901407024Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:11.903220021Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:11.906416659Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:11.908301852Z 66 PC: 147cb | Move file pointer
2018-12-17T23:09:11.91006196Z 66 PC: 147d9 | Move file pointer
2018-12-17T23:09:11.911845241Z 66 PC: 147e7 | Move file pointer
2018-12-17T23:09:11.922973547Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.934187914Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.937817045Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.946363627Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.9497117Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.953050265Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.956376957Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.962950623Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.966724636Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.970088468Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:09:11.986484022Z 63 PC: 1409e | Read file or device (Read 1 bytes on handle 5)