Sample viewer

vx.netlux.org/Virus.DOS.Mosquito.356

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:12:52.279426668Z 26 PC: 12a61 | Set disk transfer address
2018-12-17T23:12:52.281087731Z 78 PC: 12a6c | Find first file
2018-12-17T23:12:52.288939525Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:12:52.294136917Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:12:52.299626168Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:12:52.31559778Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:12:52.317737193Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:12:52.325277851Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:52.328502233Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-17T23:12:54.304615571Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.307418371Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:12:54.314892645Z 87 PC: 12b25 | Get or set file date and time
2018-12-17T23:12:54.317453189Z 62 PC: 12b29 | Close file
2018-12-17T23:12:54.412471628Z 67 PC: 12b32 | Get or set file attributes
2018-12-17T23:12:54.419832067Z 79 PC: 12a6c | Find next file
2018-12-17T23:12:54.424003822Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:12:54.430365463Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:12:54.436339996Z 61 PC: 12a87 | Open file (Filename = 'PRINT.COM')
2018-12-17T23:12:54.45138236Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:12:54.453330874Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:12:54.461272466Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.463561751Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-17T23:12:54.466839123Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.468578543Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:12:54.472447357Z 87 PC: 12b25 | Get or set file date and time
2018-12-17T23:12:54.474450895Z 62 PC: 12b29 | Close file
2018-12-17T23:12:54.542174432Z 67 PC: 12b32 | Get or set file attributes
2018-12-17T23:12:54.546965691Z 79 PC: 12a6c | Find next file
2018-12-17T23:12:54.553951306Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:12:54.55917596Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:12:54.564334849Z 61 PC: 12a87 | Open file (Filename = 'HELLO.COM')
2018-12-17T23:12:54.577709938Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:12:54.579321128Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:12:54.587388997Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.589930576Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-17T23:12:54.593100487Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.59489474Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:12:54.598902606Z 87 PC: 12b25 | Get or set file date and time
2018-12-17T23:12:54.60091008Z 62 PC: 12b29 | Close file
2018-12-17T23:12:54.616728052Z 67 PC: 12b32 | Get or set file attributes
2018-12-17T23:12:54.622037906Z 79 PC: 12a6c | Find next file
2018-12-17T23:12:54.625043347Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:12:54.629304569Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:12:54.633519544Z 61 PC: 12a87 | Open file (Filename = 'PHANG.COM')
2018-12-17T23:12:54.652650305Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:12:54.65429114Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:12:54.662057352Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.664330297Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-17T23:12:54.667785213Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.669333544Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:12:54.673202869Z 87 PC: 12b25 | Get or set file date and time
2018-12-17T23:12:54.675506611Z 62 PC: 12b29 | Close file
2018-12-17T23:12:54.697631862Z 67 PC: 12b32 | Get or set file attributes
2018-12-17T23:12:54.703251979Z 79 PC: 12a6c | Find next file
2018-12-17T23:12:54.706598131Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:12:54.71106005Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:12:54.71609134Z 61 PC: 12a87 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:12:54.729846233Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:12:54.731935882Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:12:54.739085536Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.741594603Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-17T23:12:54.745590126Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.747236732Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:12:54.752218809Z 87 PC: 12b25 | Get or set file date and time
2018-12-17T23:12:54.75386294Z 62 PC: 12b29 | Close file
2018-12-17T23:12:54.798178465Z 67 PC: 12b32 | Get or set file attributes
2018-12-17T23:12:54.803986015Z 79 PC: 12a6c | Find next file
2018-12-17T23:12:54.807126099Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:12:54.812062731Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:12:54.820753342Z 61 PC: 12a87 | Open file (Filename = 'MANDEL.COM')
2018-12-17T23:12:54.832688052Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:12:54.835189365Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:12:54.842835151Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.845514609Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-17T23:12:54.871751852Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:54.873737295Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:12:54.883006714Z 87 PC: 12b25 | Get or set file date and time
2018-12-17T23:12:54.885062179Z 62 PC: 12b29 | Close file
2018-12-17T23:12:55.052202414Z 67 PC: 12b32 | Get or set file attributes
2018-12-17T23:12:55.05843828Z 79 PC: 12a6c | Find next file
2018-12-17T23:12:55.061627697Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:12:55.066621286Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:12:55.072445797Z 61 PC: 12a87 | Open file (Filename = 'PAH.COM')
2018-12-17T23:12:55.085151036Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:12:55.086867954Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:12:55.095510535Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:55.097199952Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-17T23:12:55.099864682Z 66 PC: 12b5b | Move file pointer
2018-12-17T23:12:55.101796103Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:12:55.106087973Z 87 PC: 12b25 | Get or set file date and time
2018-12-17T23:12:55.108069679Z 62 PC: 12b29 | Close file
2018-12-17T23:12:55.230046626Z 67 PC: 12b32 | Get or set file attributes
2018-12-17T23:12:55.235605278Z 79 PC: 12a6c | Find next file
2018-12-17T23:12:55.238284986Z 67 PC: 12a73 | Get or set file attributes
2018-12-17T23:12:55.242652008Z 67 PC: 12a7e | Get or set file attributes
2018-12-17T23:12:55.248603057Z 61 PC: 12a87 | Open file (Filename = 'TEST.COM')
2018-12-17T23:12:55.256822952Z 87 PC: 12a8e | Get or set file date and time
2018-12-17T23:12:55.258765174Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:12:55.267702699Z 87 PC: 12b25 | Get or set file date and time
2018-12-17T23:12:55.272381757Z 62 PC: 12b29 | Close file
2018-12-17T23:12:55.287853678Z 67 PC: 12b32 | Get or set file attributes
2018-12-17T23:12:55.293107466Z 79 PC: 12a6c | Find next file
2018-12-17T23:12:55.296603449Z 42 PC: 12b3b | Get date 0x12b3b: cmp dh, 1
0x12b3e: jne 0x12b48
0x12b40: cmp dl, 9
0x12b43: jne 0x12b48
0x12b45: call 0x12b5c
0x12b48: cmp word ptr [0x22f], 0x2e2a
0x12b4e: je 0x12ba4
0x12b50: mov ax, 0x100
0x12b53: jmp ax
0x12b55: xor cx, cx
0x12b57: xor dx, dx
0x12b59: int 0x21
0x12b5b: ret
0x12b5c: mov ah, 9
0x12b5e: lea dx, word ptr [bp + 0x164]
0x12b62: int 0x21
0x12b64: ret
0x12b65: call 0x12b68
0x12b68: nop
0x12b69: jmp 0x12b86
2018-12-17T23:12:55.298987602Z 76 PC: 12ba9 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17663,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:56:15.760531829Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:56:15.76320417Z 78 PC: 12a6c | Find first file
2018-12-25T12:56:15.769401452Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:56:15.774429693Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:56:15.793339465Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:56:15.805178298Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:56:15.806836996Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:56:15.813822032Z 66 PC: 12b5b | Move file pointer
2018-12-25T12:56:15.815229989Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-25T12:56:15.830962442Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:15.832604732Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:56:15.836641207Z 87 PC: 12b25 | Get or set file date and time
2018-12-25T12:56:15.837702813Z 62 PC: 12b29 | Close file
2018-12-25T12:56:15.845654218Z 67 PC: 12b32 | Get or set file attributes
2018-12-25T12:56:15.850292874Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:15.853128635Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:15.857418716Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:15.861195991Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:15.872496874Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:15.874321056Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:15.880393414Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:15.881579307Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:15.888309444Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:15.889510312Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:15.891883149Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:15.893374546Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:15.90042636Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:15.904424751Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:15.907260985Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:15.911647748Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:15.915897303Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:15.927159687Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:15.928950676Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:15.935091945Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:15.937447125Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:15.940097323Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:15.941680412Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:15.945191678Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:15.947124936Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:15.954271326Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:15.958274398Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:15.960871381Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:15.964596621Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:15.968692022Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:15.975278583Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:15.976483781Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:15.982785705Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:15.98433287Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:15.986868526Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:15.988224641Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:15.99084216Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:15.992175446Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:15.999293802Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.007704712Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.014229871Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.018208101Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.021909202Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.028354069Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.030345516Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.035173765Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.036473125Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.038221939Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.03947649Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.041306217Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.042473106Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.047275374Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.052907753Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.056793844Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.063168867Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.069252062Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.080488355Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.083233573Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.090036064Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.09148971Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.100334994Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.102436372Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.10895466Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.111385383Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.118902811Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.123110234Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.126504646Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.131324818Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.135777609Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.148563416Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.150210045Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.156617353Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.158552706Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.161429371Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.162829717Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.166016978Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.16751359Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.175277325Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.179774491Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.182329604Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.186460695Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.191005826Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.202531614Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.203905115Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.211572824Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.213583863Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.220771142Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.227051741Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.230477338Z 42 PC: 12b3b | Get date 0x12b3b: cmp dh, 1
0x12b3e: jne 0x12b48
0x12b40: cmp dl, 9
0x12b43: jne 0x12b48
0x12b45: call 0x12b5c
0x12b48: cmp word ptr [0x22f], 0x2e2a
0x12b4e: je 0x12ba4
0x12b50: mov ax, 0x100
0x12b53: jmp ax
0x12b55: xor cx, cx
0x12b57: xor dx, dx
0x12b59: int 0x21
0x12b5b: ret
0x12b5c: mov ah, 9
0x12b5e: lea dx, word ptr [bp + 0x164]
0x12b62: int 0x21
0x12b64: ret
0x12b65: call 0x12b68
0x12b68: nop
0x12b69: jmp 0x12b86
2018-12-25T12:56:16.232965466Z 76 PC: 12ba9 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":9,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17663,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:56:16.120169033Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:56:16.121784788Z 78 PC: 12a6c | Find first file
2018-12-25T12:56:16.127405463Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:56:16.131723266Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:56:16.141069369Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:56:16.15183163Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:56:16.153224647Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:56:16.159781731Z 66 PC: 12b5b | Move file pointer
2018-12-25T12:56:16.161077464Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-25T12:56:16.175399932Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.176592729Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:56:16.182730606Z 87 PC: 12b25 | Get or set file date and time
2018-12-25T12:56:16.184000396Z 62 PC: 12b29 | Close file
2018-12-25T12:56:16.192103216Z 67 PC: 12b32 | Get or set file attributes
2018-12-25T12:56:16.196191035Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.198542358Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.202148982Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.206002409Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.216667392Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.217814332Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.224711976Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.225932826Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.228312388Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.230341897Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.232719272Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.233976102Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.241710925Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.246631346Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.249589713Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.254489546Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.259864609Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.270913996Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.272209947Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.278411493Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.279646881Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.282081216Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.283610935Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.285960468Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.287240193Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.295126408Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.298906505Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.301165613Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.305138952Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.308816791Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.314791734Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.316089975Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.322101508Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.323209287Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.32587116Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.327088113Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.329419658Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.331191228Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.335934707Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.344276702Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.35092047Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.355395191Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.359547198Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.366535668Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.367765565Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.374321973Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.376236909Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.37866878Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.379768781Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.3824551Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.38370463Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.390599647Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.39491089Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.397178396Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.401201526Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.40540518Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.416630178Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.417700208Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.423885867Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.425052176Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.432727097Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.434251405Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.440664709Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.441942266Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.450785517Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.455272138Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.458036216Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.46348746Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.467644956Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.478883606Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.481509816Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.488154905Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.489480642Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.492549541Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.49376067Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.496180426Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.498037729Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.504817024Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.508947217Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.512772311Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.516904109Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.520969628Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.532574541Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.534179257Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.540610446Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.543037326Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.552709414Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.558427035Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.561255196Z 42 PC: 12b3b | Get date 0x12b3b: cmp dh, 1
0x12b3e: jne 0x12b48
0x12b40: cmp dl, 9
0x12b43: jne 0x12b48
0x12b45: call 0x12b5c
0x12b48: cmp word ptr [0x22f], 0x2e2a
0x12b4e: je 0x12ba4
0x12b50: mov ax, 0x100
0x12b53: jmp ax
0x12b55: xor cx, cx
0x12b57: xor dx, dx
0x12b59: int 0x21
0x12b5b: ret
0x12b5c: mov ah, 9
0x12b5e: lea dx, word ptr [bp + 0x164]
0x12b62: int 0x21
0x12b64: ret
0x12b65: call 0x12b68
0x12b68: nop
0x12b69: jmp 0x12b86
2018-12-25T12:56:16.563472973Z 9 PC: 12b64 | Display string (String= 'Virus Mosquito v1.0b - VirusBrasil 2000. ')
2018-12-25T12:56:16.568940379Z 76 PC: 12ba9 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17663,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:56:16.216809262Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:56:16.218077568Z 78 PC: 12a6c | Find first file
2018-12-25T12:56:16.225721446Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:56:16.230985572Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:56:16.236148725Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:56:16.245396364Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:56:16.246910999Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:56:16.253950969Z 66 PC: 12b5b | Move file pointer
2018-12-25T12:56:16.256681893Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-25T12:56:16.270901943Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.273014283Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:56:16.281663679Z 87 PC: 12b25 | Get or set file date and time
2018-12-25T12:56:16.288104266Z 62 PC: 12b29 | Close file
2018-12-25T12:56:16.296632486Z 67 PC: 12b32 | Get or set file attributes
2018-12-25T12:56:16.300948621Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.304432305Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.308866265Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.313168613Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.32126167Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.322733957Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.329772413Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.336235642Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.340780434Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.342054243Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.345586554Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.347143457Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.356141488Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.361934998Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.365044582Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.370725586Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.376853786Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.384238956Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.386255595Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.394644348Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.396923121Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.400394601Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.402358827Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.407800596Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.410063483Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.418886373Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.430524338Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.437922216Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.442586555Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.447786245Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.455474413Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.457469012Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.465884982Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.467599697Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.470660605Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.472935111Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.475898896Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.477649865Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.487583008Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.498336676Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.506249439Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.511625971Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.517364009Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.525187311Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.527110492Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.535652301Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.537609991Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.540835457Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.543509285Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.546543604Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.548301554Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.557118423Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.567638573Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.574828112Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.579768866Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.585950847Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.593201091Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.594718814Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.602783313Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.604412605Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.613492706Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.61614288Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.62350392Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.625229255Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.635904442Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.641150138Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.644097267Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.650099213Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.655095253Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.66300934Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.665041865Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.67435053Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.676609044Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.68100926Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.683554973Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.686659111Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.68850141Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.698511138Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.704198386Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.707244282Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.713725907Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.719074555Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.726925069Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.729978759Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.737316556Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.739548327Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.747720148Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.755814603Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.759124441Z 42 PC: 12b3b | Get date 0x12b3b: cmp dh, 1
0x12b3e: jne 0x12b48
0x12b40: cmp dl, 9
0x12b43: jne 0x12b48
0x12b45: call 0x12b5c
0x12b48: cmp word ptr [0x22f], 0x2e2a
0x12b4e: je 0x12ba4
0x12b50: mov ax, 0x100
0x12b53: jmp ax
0x12b55: xor cx, cx
0x12b57: xor dx, dx
0x12b59: int 0x21
0x12b5b: ret
0x12b5c: mov ah, 9
0x12b5e: lea dx, word ptr [bp + 0x164]
0x12b62: int 0x21
0x12b64: ret
0x12b65: call 0x12b68
0x12b68: nop
0x12b69: jmp 0x12b86
2018-12-25T12:56:16.76245096Z 76 PC: 12ba9 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17663,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:56:16.540514737Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:56:16.544696083Z 78 PC: 12a6c | Find first file
2018-12-25T12:56:16.551772692Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:56:16.558115595Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:56:16.563602655Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:56:16.571545375Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:56:16.573195401Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:56:16.58074242Z 66 PC: 12b5b | Move file pointer
2018-12-25T12:56:16.583270139Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-25T12:56:16.59850101Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.600348193Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:56:16.608311009Z 87 PC: 12b25 | Get or set file date and time
2018-12-25T12:56:16.610251311Z 62 PC: 12b29 | Close file
2018-12-25T12:56:16.618808954Z 67 PC: 12b32 | Get or set file attributes
2018-12-25T12:56:16.623581164Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.62705065Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.632163206Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.636481637Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.644462426Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.645948513Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.652866106Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.655231452Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.658303418Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.659650366Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.664090152Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.665999551Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.674268888Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.679635092Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.682806398Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.687700993Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.692777785Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.701307926Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.702945012Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.710011855Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.712105418Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.714991828Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.716304412Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.719633833Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.721360816Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.729665681Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.735017024Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.737939693Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.742283463Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.747472884Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.762137978Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.764076582Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.771818971Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.773698579Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.776749616Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.778793391Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.781994478Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.783738153Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.792290378Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.801001621Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.804775072Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.809749969Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.815248185Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.828275181Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.830314863Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.838936035Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.840955158Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.84434387Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.846772528Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.849838962Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.851538174Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.859645075Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.865137881Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.870909949Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.875723443Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.883304077Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.89621181Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.897807264Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.905810232Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.907431226Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.916528572Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.919222675Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.926633897Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.928712301Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.938681292Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:16.943554104Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:16.946549594Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:16.952058445Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:16.956985174Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:16.970026844Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:16.971525656Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:16.978739465Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.980878031Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:16.983734Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.986130944Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:16.989085888Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:16.99058779Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:16.999060595Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.003805045Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.006648573Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.011988909Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.016665408Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.029758912Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.031732272Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.038709122Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.040211524Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.048542119Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.054841096Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.057258191Z 42 PC: 12b3b | Get date 0x12b3b: cmp dh, 1
0x12b3e: jne 0x12b48
0x12b40: cmp dl, 9
0x12b43: jne 0x12b48
0x12b45: call 0x12b5c
0x12b48: cmp word ptr [0x22f], 0x2e2a
0x12b4e: je 0x12ba4
0x12b50: mov ax, 0x100
0x12b53: jmp ax
0x12b55: xor cx, cx
0x12b57: xor dx, dx
0x12b59: int 0x21
0x12b5b: ret
0x12b5c: mov ah, 9
0x12b5e: lea dx, word ptr [bp + 0x164]
0x12b62: int 0x21
0x12b64: ret
0x12b65: call 0x12b68
0x12b68: nop
0x12b69: jmp 0x12b86
2018-12-25T12:56:17.060358172Z 76 PC: 12ba9 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":9,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17663,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:56:16.933425763Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:56:16.934752994Z 78 PC: 12a6c | Find first file
2018-12-25T12:56:16.939338796Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:56:16.942875693Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:56:16.952475778Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:56:16.963621365Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:56:16.965001233Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:56:16.971571962Z 66 PC: 12b5b | Move file pointer
2018-12-25T12:56:16.97285848Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-25T12:56:16.987737464Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:16.989330533Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:56:16.995532534Z 87 PC: 12b25 | Get or set file date and time
2018-12-25T12:56:16.996851934Z 62 PC: 12b29 | Close file
2018-12-25T12:56:17.01047683Z 67 PC: 12b32 | Get or set file attributes
2018-12-25T12:56:17.014440096Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.016924361Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.020747616Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.024765244Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.03586836Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.03754208Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.045198768Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.046777075Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.049523695Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.051767942Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.055035223Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.056471081Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.065140108Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.069433428Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.072008686Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.076630251Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.081477312Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.087785234Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.089482343Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.095708534Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.096928669Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.101059148Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.102376084Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.104863832Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.10660424Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.114087716Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.123004473Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.129637082Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.133499088Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.137192407Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.143909449Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.145202969Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.15123426Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.153045169Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.155817727Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.157078539Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.160520146Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.161862336Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.168930014Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.17778781Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.18464174Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.189409292Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.193704988Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.200034121Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.20170423Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.208533702Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.213287689Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.215922684Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.217657556Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.231870939Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.233532908Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.240755127Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.245471787Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.248513038Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.253027088Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.257271391Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.268656485Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.269856847Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.275974461Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.277051723Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.284589206Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.286183495Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.29221017Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.293402165Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.301120429Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.305237952Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.307624213Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.311813091Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.315700368Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.326572715Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.328596402Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.334604621Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.335800673Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.338413401Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.339564561Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.341808059Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.3434628Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.350284742Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.354368244Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.357666405Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.361724554Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.36558462Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.376842889Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.378004951Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.383909534Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.385485605Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.394793482Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.398809393Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.40153064Z 42 PC: 12b3b | Get date 0x12b3b: cmp dh, 1
0x12b3e: jne 0x12b48
0x12b40: cmp dl, 9
0x12b43: jne 0x12b48
0x12b45: call 0x12b5c
0x12b48: cmp word ptr [0x22f], 0x2e2a
0x12b4e: je 0x12ba4
0x12b50: mov ax, 0x100
0x12b53: jmp ax
0x12b55: xor cx, cx
0x12b57: xor dx, dx
0x12b59: int 0x21
0x12b5b: ret
0x12b5c: mov ah, 9
0x12b5e: lea dx, word ptr [bp + 0x164]
0x12b62: int 0x21
0x12b64: ret
0x12b65: call 0x12b68
0x12b68: nop
0x12b69: jmp 0x12b86
2018-12-25T12:56:17.403422304Z 9 PC: 12b64 | Display string (String= 'Virus Mosquito v1.0b - VirusBrasil 2000. ')
2018-12-25T12:56:17.408375774Z 76 PC: 12ba9 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17663,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:56:16.955044675Z 26 PC: 12a61 | Set disk transfer address
2018-12-25T12:56:16.95638669Z 78 PC: 12a6c | Find first file
2018-12-25T12:56:16.962013758Z 67 PC: 12a73 | Get or set file attributes
2018-12-25T12:56:16.966425603Z 67 PC: 12a7e | Get or set file attributes
2018-12-25T12:56:16.975871446Z 61 PC: 12a87 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:56:16.986972463Z 87 PC: 12a8e | Get or set file date and time
2018-12-25T12:56:16.988038823Z 63 PC: 12aa1 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:56:16.994592425Z 66 PC: 12b5b | Move file pointer
2018-12-25T12:56:16.995768408Z 64 PC: 12b07 | Write file or device (Write 356 bytes on handle 5)
2018-12-25T12:56:17.009795624Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.011517471Z 64 PC: 12b18 | Write file or device (Write 4 bytes on handle 5)
2018-12-25T12:56:17.017666139Z 87 PC: 12b25 | Get or set file date and time
2018-12-25T12:56:17.018974838Z 62 PC: 12b29 | Close file
2018-12-25T12:56:17.026675607Z 67 PC: 12b32 | Get or set file attributes
2018-12-25T12:56:17.031683503Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.034226192Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.038516218Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.042407904Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.053764754Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.055285302Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.061992264Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.063298168Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.065794536Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.068174414Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.070597298Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.071963509Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.080115631Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.090467675Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.09341296Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.098577272Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.103038679Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.11427733Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.116166555Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.122879069Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.124337061Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.127814298Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.129105122Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.13166607Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.133390938Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.140722794Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.144579418Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.147560828Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.156122157Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.160017847Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.171540995Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.173323943Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.17999862Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.181465967Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.184267147Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.185526231Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.188204087Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.190137645Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.197704828Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.201563592Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.204739883Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.208864367Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.212701065Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.222908172Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.22470449Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.231274673Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.233988443Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.236951403Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.23866458Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.24253787Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.243996155Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.253687005Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.264276674Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.270616383Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.274702366Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.279118846Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.285909571Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.287677759Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.295544711Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.297216934Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.305111044Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.306522615Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.313094874Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.314441485Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.322027243Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.33181152Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.337877707Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.342392819Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.34722379Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.3534725Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.354829276Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.361352946Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.362677444Z 64 PC: 12b07 | Write file or device (See above)
2018-12-25T12:56:17.365204651Z 66 PC: 12b5b | Move file pointer (See above)
2018-12-25T12:56:17.367332861Z 64 PC: 12b18 | Write file or device (See above)
2018-12-25T12:56:17.369788934Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.371197416Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.378797512Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.387477867Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.393872834Z 67 PC: 12a73 | Get or set file attributes (See above)
2018-12-25T12:56:17.398879786Z 67 PC: 12a7e | Get or set file attributes (See above)
2018-12-25T12:56:17.402903026Z 61 PC: 12a87 | Open file (See above)
2018-12-25T12:56:17.409093462Z 87 PC: 12a8e | Get or set file date and time (See above)
2018-12-25T12:56:17.410775416Z 63 PC: 12aa1 | Read file or device (See above)
2018-12-25T12:56:17.417855582Z 87 PC: 12b25 | Get or set file date and time (See above)
2018-12-25T12:56:17.419945716Z 62 PC: 12b29 | Close file (See above)
2018-12-25T12:56:17.427492063Z 67 PC: 12b32 | Get or set file attributes (See above)
2018-12-25T12:56:17.437824313Z 79 PC: 12a6c | Find next file (See above)
2018-12-25T12:56:17.440048964Z 42 PC: 12b3b | Get date 0x12b3b: cmp dh, 1
0x12b3e: jne 0x12b48
0x12b40: cmp dl, 9
0x12b43: jne 0x12b48
0x12b45: call 0x12b5c
0x12b48: cmp word ptr [0x22f], 0x2e2a
0x12b4e: je 0x12ba4
0x12b50: mov ax, 0x100
0x12b53: jmp ax
0x12b55: xor cx, cx
0x12b57: xor dx, dx
0x12b59: int 0x21
0x12b5b: ret
0x12b5c: mov ah, 9
0x12b5e: lea dx, word ptr [bp + 0x164]
0x12b62: int 0x21
0x12b64: ret
0x12b65: call 0x12b68
0x12b68: nop
0x12b69: jmp 0x12b86
2018-12-25T12:56:17.442573397Z 76 PC: 12ba9 | Terminate with return code (Return code = '0')