Sample viewer

vx.netlux.org/Virus.DOS.Pixel.Self.550.b

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:05:19.737200559Z	26	PC: 12aab \| Set disk transfer address
2018-12-17T22:05:19.738415443Z	78	PC: 12ab5 \| Find first file
2018-12-17T22:05:19.742592132Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-17T22:05:20.103624433Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-17T22:05:20.115845345Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-17T22:05:20.123326365Z	66	PC: 12af6 \| Move file pointer
2018-12-17T22:05:20.125042691Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-17T22:05:20.129093321Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-17T22:05:20.132704769Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-17T22:05:20.135163937Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-17T22:05:20.137630347Z	64	PC: 12b69 \| Write file or device (Write 957 bytes on handle 5)
2018-12-17T22:05:20.147349507Z	62	PC: 12b6d \| Close file
2018-12-17T22:05:20.155402781Z	79	PC: 12b73 \| Find next file
2018-12-17T22:05:20.15837617Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-17T22:05:20.169310203Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-17T22:05:20.176697732Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-17T22:05:20.183392407Z	66	PC: 12af6 \| Move file pointer
2018-12-17T22:05:20.185828205Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-17T22:05:20.188090005Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-17T22:05:20.190270473Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-17T22:05:20.192872665Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-17T22:05:20.19550175Z	64	PC: 12b69 \| Write file or device (Write 577 bytes on handle 5)
2018-12-17T22:05:20.204402302Z	62	PC: 12b6d \| Close file
2018-12-17T22:05:20.213087429Z	79	PC: 12b73 \| Find next file
2018-12-17T22:05:20.216604429Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-17T22:05:20.226720805Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-17T22:05:20.233873415Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-17T22:05:20.240812676Z	66	PC: 12af6 \| Move file pointer
2018-12-17T22:05:20.242478765Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-17T22:05:20.244904202Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-17T22:05:20.247281205Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-17T22:05:20.24943213Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-17T22:05:20.251578702Z	64	PC: 12b69 \| Write file or device (Write 642 bytes on handle 5)
2018-12-17T22:05:20.259753321Z	62	PC: 12b6d \| Close file
2018-12-17T22:05:20.268123705Z	79	PC: 12b73 \| Find next file
2018-12-17T22:05:20.270718231Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-17T22:05:20.281261788Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-17T22:05:20.287861623Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-17T22:05:20.294066044Z	66	PC: 12af6 \| Move file pointer
2018-12-17T22:05:20.297462218Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-17T22:05:20.299598935Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-17T22:05:20.301744996Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-17T22:05:20.30426803Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-17T22:05:20.306639216Z	64	PC: 12b69 \| Write file or device (Write 579 bytes on handle 5)
2018-12-17T22:05:20.314532154Z	62	PC: 12b6d \| Close file
2018-12-17T22:05:20.322965457Z	79	PC: 12b73 \| Find next file
2018-12-17T22:05:20.325961774Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-17T22:05:20.336006926Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-17T22:05:20.343177Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-17T22:05:20.349418106Z	66	PC: 12af6 \| Move file pointer
2018-12-17T22:05:20.350772319Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-17T22:05:20.353882337Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-17T22:05:20.355951871Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-17T22:05:20.358006358Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-17T22:05:20.361937863Z	64	PC: 12b69 \| Write file or device (Write 579 bytes on handle 5)
2018-12-17T22:05:20.369787299Z	62	PC: 12b6d \| Close file
2018-12-17T22:05:20.377564388Z	79	PC: 12b73 \| Find next file
2018-12-17T22:05:20.380518824Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-17T22:05:20.389920247Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-17T22:05:20.396256249Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-17T22:05:20.403424399Z	66	PC: 12af6 \| Move file pointer
2018-12-17T22:05:20.404610093Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-17T22:05:20.406554604Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-17T22:05:20.409141026Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-17T22:05:20.411135344Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-17T22:05:20.413143333Z	64	PC: 12b69 \| Write file or device (Write 1051 bytes on handle 5)
2018-12-17T22:05:20.428559977Z	62	PC: 12b6d \| Close file
2018-12-17T22:05:20.436409435Z	79	PC: 12b73 \| Find next file
2018-12-17T22:05:20.438882062Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-17T22:05:20.455323233Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-17T22:05:20.459704318Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-17T22:05:20.466183525Z	66	PC: 12af6 \| Move file pointer
2018-12-17T22:05:20.468827026Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-17T22:05:20.471040915Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-17T22:05:20.473142202Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-17T22:05:20.476274732Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-17T22:05:20.478714689Z	64	PC: 12b69 \| Write file or device (Write 579 bytes on handle 5)
2018-12-17T22:05:20.486937734Z	62	PC: 12b6d \| Close file
2018-12-17T22:05:20.497109947Z	79	PC: 12b73 \| Find next file
2018-12-17T22:05:20.499610217Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-17T22:05:20.509206723Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-17T22:05:20.516382288Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-17T22:05:20.524031512Z	62	PC: 12b6d \| Close file
2018-12-17T22:05:20.52574608Z	79	PC: 12b73 \| Find next file
2018-12-17T22:05:20.528658528Z	26	PC: 12b7f \| Set disk transfer address
2018-12-17T22:05:20.53020567Z	44	PC: 12b83 \| Get time 0x12b83: cmp ch, 5 0x12b86: je 0x12b8b 0x12b88: jmp 0x12c24 0x12b8b: mov ah, 0x2a 0x12b8d: int 0x21 0x12b8f: cmp al, 6 0x12b91: je 0x12bda 0x12b93: cmp al, 0 0x12b95: je 0x12b9a 0x12b97: jmp 0x12c24 0x12b9a: mov ah, 0xf 0x12b9c: int 0x10 0x12b9e: push ax 0x12b9f: xor ah, ah 0x12ba1: mov al, 5 0x12ba3: int 0x10 0x12ba5: mov cx, 0x51 0x12ba8: mov ax, 0x17f 0x12bab: sub ax, 0x40f 0x12bae: mov si, ax
2018-12-17T22:05:20.53371355Z	76	PC: 12c34 \| Terminate with return code (Return code = '0')

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":1714,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:44:07.87016441Z	26	PC: 12aab \| Set disk transfer address
2018-12-25T11:44:07.872653616Z	78	PC: 12ab5 \| Find first file
2018-12-25T11:44:07.878822824Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-25T11:44:07.894394857Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-25T11:44:07.906728774Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-25T11:44:07.913229818Z	66	PC: 12af6 \| Move file pointer
2018-12-25T11:44:07.914692154Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-25T11:44:07.91726602Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-25T11:44:07.921859583Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-25T11:44:07.924214295Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-25T11:44:07.927641459Z	64	PC: 12b69 \| Write file or device (Write 957 bytes on handle 5)
2018-12-25T11:44:07.937064627Z	62	PC: 12b6d \| Close file
2018-12-25T11:44:07.946530175Z	79	PC: 12b73 \| Find next file
2018-12-25T11:44:07.949450616Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:07.964212563Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:07.971041525Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:07.990354855Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:07.993088153Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:07.995195445Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:07.997010202Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.009462547Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.013630178Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.038178931Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.048184623Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.051422253Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.061484246Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.068727237Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.075526248Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.077210101Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.080241327Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.082593888Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.084736453Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.087300053Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.096106634Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.104536172Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.107478393Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.120274835Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.127402712Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.133922557Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.136150395Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.138472164Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.14083903Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.144242674Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.146323186Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.154506577Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.16299236Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.165836234Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.175646285Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.183902543Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.190809332Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.192431767Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.195032144Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.198267984Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.200665587Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.203063723Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.219093569Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.227011868Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.229716915Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.24011202Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.24684347Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.253287745Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.255988553Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.259029712Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.261422861Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.264643492Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.267416882Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.276174408Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.285038861Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.288260755Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.298122017Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.303235584Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.309978996Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.311649223Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.314306842Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.316914969Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.31905396Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.321793388Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.330615779Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.338632831Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.341961064Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.35153258Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.366915857Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.378595966Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.380540309Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.382833659Z	26	PC: 12b7f \| Set disk transfer address
2018-12-25T11:44:08.383926691Z	44	PC: 12b83 \| Get time 0x12b83: cmp ch, 5 0x12b86: je 0x12b8b 0x12b88: jmp 0x12c24 0x12b8b: mov ah, 0x2a 0x12b8d: int 0x21 0x12b8f: cmp al, 6 0x12b91: je 0x12bda 0x12b93: cmp al, 0 0x12b95: je 0x12b9a 0x12b97: jmp 0x12c24 0x12b9a: mov ah, 0xf 0x12b9c: int 0x10 0x12b9e: push ax 0x12b9f: xor ah, ah 0x12ba1: mov al, 5 0x12ba3: int 0x10 0x12ba5: mov cx, 0x51 0x12ba8: mov ax, 0x17f 0x12bab: sub ax, 0x40f 0x12bae: mov si, ax
2018-12-25T11:44:08.388078326Z	76	PC: 12c34 \| Terminate with return code (Return code = '0')

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":5,"Min":0,"Second":0,"TimeBased":true,"OriginalID":1714,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:44:07.916877529Z	26	PC: 12aab \| Set disk transfer address
2018-12-25T11:44:07.918610416Z	78	PC: 12ab5 \| Find first file
2018-12-25T11:44:07.926829532Z	67	PC: 12ac6 \| Get or set file attributes
2018-12-25T11:44:07.944732966Z	61	PC: 12acb \| Open file (Filename = 'ÿº€')
2018-12-25T11:44:07.952510268Z	63	PC: 12ada \| Read file or device (Read 65535 bytes on handle 5)
2018-12-25T11:44:07.961042363Z	66	PC: 12af6 \| Move file pointer
2018-12-25T11:44:07.962950838Z	44	PC: 12afa \| Get time 0x12afa: mov al, dl 0x12afc: cwde 0x12afd: inc ax 0x12afe: cdq 0x12aff: mov cx, word ptr cs:[0x117] 0x12b04: idiv cx 0x12b06: inc dx 0x12b07: rol dx, 1 0x12b09: mov di, dx 0x12b0b: mov word ptr [di + 0x43], 0x706 0x12b10: mov ah, 0x2c 0x12b12: int 0x21 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1
2018-12-25T11:44:07.965495442Z	44	PC: 12b14 \| Get time 0x12b14: mov al, dl 0x12b16: cwde 0x12b17: inc ax 0x12b18: cdq 0x12b19: mov cx, word ptr cs:[0x117] 0x12b1e: idiv cx 0x12b20: inc dx 0x12b21: rol dx, 1 0x12b23: mov di, dx 0x12b25: mov word ptr [di + 0x43], 0x1f1e 0x12b2a: mov ah, 0x2c 0x12b2c: int 0x21 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1
2018-12-25T11:44:07.970149242Z	44	PC: 12b2e \| Get time 0x12b2e: mov al, dl 0x12b30: cwde 0x12b31: inc ax 0x12b32: cdq 0x12b33: mov cx, word ptr cs:[0x117] 0x12b38: idiv cx 0x12b3a: inc dx 0x12b3b: rol dx, 1 0x12b3d: mov di, dx 0x12b3f: mov word ptr [di + 0x43], 0x5a52 0x12b44: mov ah, 0x2c 0x12b46: int 0x21 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1
2018-12-25T11:44:07.973186947Z	44	PC: 12b48 \| Get time 0x12b48: mov al, dl 0x12b4a: cwde 0x12b4b: inc ax 0x12b4c: cdq 0x12b4d: mov cx, word ptr cs:[0x117] 0x12b52: idiv cx 0x12b54: inc dx 0x12b55: rol dx, 1 0x12b57: mov di, dx 0x12b59: mov word ptr [di + 0x43], 0x5951 0x12b5e: xor dx, dx 0x12b60: mov cx, word ptr cs:[0x115] 0x12b65: mov ah, 0x40 0x12b67: int 0x21 0x12b69: mov ah, 0x3e 0x12b6b: int 0x21 0x12b6d: push cs 0x12b6e: pop ds 0x12b6f: mov ah, 0x4f 0x12b71: int 0x21
2018-12-25T11:44:07.976148742Z	64	PC: 12b69 \| Write file or device (Write 957 bytes on handle 5)
2018-12-25T11:44:07.988877015Z	62	PC: 12b6d \| Close file
2018-12-25T11:44:08.027798095Z	79	PC: 12b73 \| Find next file
2018-12-25T11:44:08.036661202Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.04788726Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.056597533Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.064594415Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.066555816Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.070097134Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.072898971Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.075674227Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.079123685Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.088541139Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.097921439Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.102111661Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.112953002Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.1206764Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.131034478Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.132968267Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.135765711Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.138817781Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.142390328Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.145257337Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.154610863Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.164446465Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.167668302Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.178758386Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.187994271Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.1955877Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.19748065Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.201468306Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.204307247Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.207006419Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.211470502Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.220886613Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.230107817Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.234261893Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.245982503Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.253728382Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.261174017Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.264072354Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.266840397Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.270273794Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.277406402Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.279974037Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.289264973Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.29911471Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.30272302Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.313941277Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.322121563Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.329794389Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.331709951Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.335385658Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.339036759Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.341829826Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.344583269Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.355470413Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.364871471Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.368178131Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.380265407Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.3882291Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.395688698Z	66	PC: 12af6 \| Move file pointer (See above)
2018-12-25T11:44:08.39838138Z	44	PC: 12afa \| Get time (See above)
2018-12-25T11:44:08.402156268Z	44	PC: 12b14 \| Get time (See above)
2018-12-25T11:44:08.404905578Z	44	PC: 12b2e \| Get time (See above)
2018-12-25T11:44:08.407827958Z	44	PC: 12b48 \| Get time (See above)
2018-12-25T11:44:08.410663572Z	64	PC: 12b69 \| Write file or device (See above)
2018-12-25T11:44:08.419553211Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.429378171Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.433249762Z	67	PC: 12ac6 \| Get or set file attributes (See above)
2018-12-25T11:44:08.444220974Z	61	PC: 12acb \| Open file (See above)
2018-12-25T11:44:08.451376281Z	63	PC: 12ada \| Read file or device (See above)
2018-12-25T11:44:08.460296942Z	62	PC: 12b6d \| Close file (See above)
2018-12-25T11:44:08.462789315Z	79	PC: 12b73 \| Find next file (See above)
2018-12-25T11:44:08.466705077Z	26	PC: 12b7f \| Set disk transfer address
2018-12-25T11:44:08.46910235Z	44	PC: 12b83 \| Get time 0x12b83: cmp ch, 5 0x12b86: je 0x12b8b 0x12b88: jmp 0x12c24 0x12b8b: mov ah, 0x2a 0x12b8d: int 0x21 0x12b8f: cmp al, 6 0x12b91: je 0x12bda 0x12b93: cmp al, 0 0x12b95: je 0x12b9a 0x12b97: jmp 0x12c24 0x12b9a: mov ah, 0xf 0x12b9c: int 0x10 0x12b9e: push ax 0x12b9f: xor ah, ah 0x12ba1: mov al, 5 0x12ba3: int 0x10 0x12ba5: mov cx, 0x51 0x12ba8: mov ax, 0x17f 0x12bab: sub ax, 0x40f 0x12bae: mov si, ax
2018-12-25T11:44:08.472179336Z	42	PC: 12b8f \| Get date 0x12b8f: cmp al, 6 0x12b91: je 0x12bda 0x12b93: cmp al, 0 0x12b95: je 0x12b9a 0x12b97: jmp 0x12c24 0x12b9a: mov ah, 0xf 0x12b9c: int 0x10 0x12b9e: push ax 0x12b9f: xor ah, ah 0x12ba1: mov al, 5 0x12ba3: int 0x10 0x12ba5: mov cx, 0x51 0x12ba8: mov ax, 0x17f 0x12bab: sub ax, 0x40f 0x12bae: mov si, ax 0x12bb0: push cx 0x12bb1: push si 0x12bb2: pop ds 0x12bb3: push ds 0x12bb4: xor si, si
2018-12-25T11:44:08.476695315Z	76	PC: 12c34 \| Terminate with return code (Return code = '0')