Sample viewer

vx.netlux.org/Virus.DOS.HLLP.10932

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:21:40.937498766Z 48 PC: 12a4c | Get DOS version
2018-12-17T22:21:40.938922107Z 53 PC: 12bf2 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:21:40.940321278Z 53 PC: 12bff | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:21:40.941737585Z 53 PC: 12c0c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T22:21:40.943510039Z 53 PC: 12c19 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T22:21:40.944773603Z 37 PC: 12c2d | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:21:40.946156339Z 74 PC: 12af7 | Reallocate memory
2018-12-17T22:21:40.948714901Z 68 PC: 13762 | I/O control for devices (Set for = 'pyright 1991 Borland Intl.')
2018-12-17T22:21:40.951121118Z 68 PC: 13762 | I/O control for devices (Set for = '')
2018-12-17T22:21:40.953754722Z 81 PC: 12d57 | Get current PSP
2018-12-17T22:21:40.995460777Z 47 PC: 146e4 | Get disk transfer address
2018-12-17T22:21:40.996923765Z 26 PC: 146ed | Set disk transfer address
2018-12-17T22:21:40.998060391Z 78 PC: 146f7 | Find first file
2018-12-17T22:21:41.004286391Z 26 PC: 14700 | Set disk transfer address
2018-12-17T22:21:41.018503549Z 86 PC: 14aa8 | Rename file
2018-12-17T22:21:41.03353817Z 61 PC: 14a74 | Open file (Filename = 'Eek!')
2018-12-17T22:21:41.041001359Z 25 PC: 135d6 | Get default drive
2018-12-17T22:21:41.04273856Z 71 PC: 136ce | Get current directory
2018-12-17T22:21:41.046239582Z 60 PC: 145fe | Create or truncate file
2018-12-17T22:21:41.058263032Z 66 PC: 13820 | Move file pointer
2018-12-17T22:21:41.060483811Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:21:41.063202728Z 87 PC: 13608 | Get or set file date and time
2018-12-17T22:21:41.066375746Z 87 PC: 1362b | Get or set file date and time
2018-12-17T22:21:41.069146549Z 62 PC: 145db | Close file
2018-12-17T22:21:41.078377524Z 47 PC: 13573 | Get disk transfer address
2018-12-17T22:21:41.079645529Z 26 PC: 1357c | Set disk transfer address
2018-12-17T22:21:41.081193621Z 78 PC: 13586 | Find first file
2018-12-17T22:21:41.088393967Z 26 PC: 1358f | Set disk transfer address
2018-12-17T22:21:41.090987358Z 41 PC: 144ac | Parse filename
2018-12-17T22:21:41.092565534Z 41 PC: 144cb | Parse filename
2018-12-17T22:21:41.094352126Z 75 PC: 1450b | Execute program
2018-12-17T22:21:41.104273059Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:41.110652967Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:41.122073128Z 65 PC: 13862 | Delete file (Filename = '')
2018-12-17T22:21:41.137777695Z 42 PC: 12d08 | Get date 0x12d08: cmp dh, 1
0x12d0b: je 0x12d11
0x12d0d: dec dh
0x12d0f: jmp 0x12d14
0x12d11: mov dh, 0xc
0x12d13: dec cx
0x12d14: sub cx, 0x7bc
0x12d18: mov ax, cx
0x12d1a: mov cl, 9
0x12d1c: shl ax, cl
0x12d1e: push dx
0x12d1f: and dx, 0xf00
0x12d23: mov cl, 3
0x12d25: shr dx, cl
0x12d27: add ax, dx
0x12d29: pop dx
0x12d2a: and dx, 0x1f
0x12d2e: add ax, dx
0x12d30: pop dx
0x12d31: pop cx
2018-12-17T22:21:41.141067822Z 47 PC: 146e4 | Get disk transfer address
2018-12-17T22:21:41.143289735Z 26 PC: 146ed | Set disk transfer address
2018-12-17T22:21:41.144916819Z 78 PC: 146f7 | Find first file
2018-12-17T22:21:41.155285853Z 26 PC: 14700 | Set disk transfer address
2018-12-17T22:21:41.158178833Z 47 PC: 14717 | Get disk transfer address
2018-12-17T22:21:41.159871173Z 26 PC: 14720 | Set disk transfer address
2018-12-17T22:21:41.161466405Z 79 PC: 14724 | Find next file
2018-12-17T22:21:41.165759655Z 26 PC: 1472d | Set disk transfer address
2018-12-17T22:21:41.167222541Z 47 PC: 14717 | Get disk transfer address
2018-12-17T22:21:41.168514819Z 26 PC: 14720 | Set disk transfer address
2018-12-17T22:21:41.170110568Z 79 PC: 14724 | Find next file
2018-12-17T22:21:41.173501879Z 26 PC: 1472d | Set disk transfer address
2018-12-17T22:21:41.17478124Z 47 PC: 14717 | Get disk transfer address
2018-12-17T22:21:41.176107853Z 26 PC: 14720 | Set disk transfer address
2018-12-17T22:21:41.177309847Z 79 PC: 14724 | Find next file
2018-12-17T22:21:41.18067117Z 26 PC: 1472d | Set disk transfer address
2018-12-17T22:21:41.181929294Z 47 PC: 14717 | Get disk transfer address
2018-12-17T22:21:41.18666603Z 26 PC: 14720 | Set disk transfer address
2018-12-17T22:21:41.187936685Z 79 PC: 14724 | Find next file
2018-12-17T22:21:41.191298206Z 26 PC: 1472d | Set disk transfer address
2018-12-17T22:21:41.193256139Z 59 PC: 133c9 | Change current directory
2018-12-17T22:21:41.199711273Z 14 PC: 135ee | Set default drive (Drive = 'C')
2018-12-17T22:21:41.201239585Z 61 PC: 14a74 | Open file (Filename = '')
2018-12-17T22:21:41.210360812Z 47 PC: 146e4 | Get disk transfer address
2018-12-17T22:21:41.21175614Z 26 PC: 146ed | Set disk transfer address
2018-12-17T22:21:41.213094432Z 78 PC: 146f7 | Find first file
2018-12-17T22:21:41.223336482Z 26 PC: 14700 | Set disk transfer address
2018-12-17T22:21:41.224815739Z 60 PC: 145fe | Create or truncate file
2018-12-17T22:21:42.16477382Z 87 PC: 13608 | Get or set file date and time
2018-12-17T22:21:42.168026436Z 66 PC: 13820 | Move file pointer
2018-12-17T22:21:42.170045812Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:21:42.178501873Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-17T22:21:42.18600004Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:21:42.191358832Z 64 PC: 14f5f | Write file or device (Write 2740 bytes on handle 7)
2018-12-17T22:21:42.199817401Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:21:42.202682933Z 66 PC: 13820 | Move file pointer
2018-12-17T22:21:42.204154892Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.210057128Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-17T22:21:42.219599479Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.225049803Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-17T22:21:42.231540599Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.238001756Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-17T22:21:42.245356074Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.250389009Z 64 PC: 14f5f | Write file or device (Write 4760 bytes on handle 7)
2018-12-17T22:21:42.258012652Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.260893736Z 62 PC: 145db | Close file
2018-12-17T22:21:42.262425684Z 87 PC: 1362b | Get or set file date and time
2018-12-17T22:21:42.263719463Z 62 PC: 145db | Close file
2018-12-17T22:21:42.269420946Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.273565667Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.282803083Z 65 PC: 13862 | Delete file (Filename = 'TUVWXYZ[\]^��`abcdefghijklmn��pqrstuvwxyz{|}~����������������������������������������������������������������������������������������')
2018-12-17T22:21:42.293220568Z 86 PC: 14aa8 | Rename file
2018-12-17T22:21:42.303432375Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.309428981Z 65 PC: 13862 | Delete file (Filename = 'Eek!')
2018-12-17T22:21:42.316642131Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.321258035Z 65 PC: 13862 | Delete file (Filename = 'ANTI-VIR.DAT')
2018-12-17T22:21:42.326120648Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.333610904Z 65 PC: 13862 | Delete file (Filename = 'CHKLIST.MS')
2018-12-17T22:21:42.339937676Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.346678646Z 65 PC: 13862 | Delete file (Filename = 'ivb.ntz')
2018-12-17T22:21:42.354015834Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.360700169Z 65 PC: 13862 | Delete file (Filename = 'chklist.ms')
2018-12-17T22:21:42.367282322Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.37435538Z 65 PC: 13862 | Delete file (Filename = 'chklist.cps')
2018-12-17T22:21:42.381039806Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.388546022Z 65 PC: 13862 | Delete file (Filename = 'smartchk.cps')
2018-12-17T22:21:42.398269996Z 47 PC: 14717 | Get disk transfer address
2018-12-17T22:21:42.399354745Z 26 PC: 14720 | Set disk transfer address
2018-12-17T22:21:42.400443614Z 79 PC: 14724 | Find next file
2018-12-17T22:21:42.402848848Z 26 PC: 1472d | Set disk transfer address
2018-12-17T22:21:42.404317341Z 59 PC: 133c9 | Change current directory
2018-12-17T22:21:42.40815644Z 14 PC: 135ee | Set default drive (Drive = 'C')
2018-12-17T22:21:42.409611958Z 61 PC: 14a74 | Open file (Filename = '')
2018-12-17T22:21:42.414024613Z 47 PC: 146e4 | Get disk transfer address
2018-12-17T22:21:42.415060114Z 26 PC: 146ed | Set disk transfer address
2018-12-17T22:21:42.416226632Z 78 PC: 146f7 | Find first file
2018-12-17T22:21:42.420233667Z 26 PC: 14700 | Set disk transfer address
2018-12-17T22:21:42.42133543Z 60 PC: 145fe | Create or truncate file
2018-12-17T22:21:42.428318516Z 87 PC: 13608 | Get or set file date and time
2018-12-17T22:21:42.429907407Z 66 PC: 13820 | Move file pointer
2018-12-17T22:21:42.431406172Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:21:42.438765431Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-17T22:21:42.444415615Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:21:42.452792932Z 64 PC: 14f5f | Write file or device (Write 2740 bytes on handle 7)
2018-12-17T22:21:42.461329143Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:21:42.464121638Z 66 PC: 13820 | Move file pointer
2018-12-17T22:21:42.465550293Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.473689927Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-17T22:21:42.483834899Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.492239571Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-17T22:21:42.502484839Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.511032056Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-17T22:21:42.521069227Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.529576377Z 64 PC: 14f5f | Write file or device (Write 7926 bytes on handle 7)
2018-12-17T22:21:42.539579605Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 6)
2018-12-17T22:21:42.541132562Z 62 PC: 145db | Close file
2018-12-17T22:21:42.54262362Z 87 PC: 1362b | Get or set file date and time
2018-12-17T22:21:42.544348249Z 62 PC: 145db | Close file
2018-12-17T22:21:42.552132243Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.558721043Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.565289158Z 65 PC: 13862 | Delete file (Filename = 'TUVWXYZ[\]^��`abcdefghijklmn��pqrstuvwxyz{|}~����������������������������������������������������������������������������������������')
2018-12-17T22:21:42.572349223Z 86 PC: 14aa8 | Rename file
2018-12-17T22:21:42.580477412Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.584997023Z 65 PC: 13862 | Delete file (Filename = 'Eek!')
2018-12-17T22:21:42.59148704Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.59809034Z 65 PC: 13862 | Delete file (Filename = 'ANTI-VIR.DAT')
2018-12-17T22:21:42.605087411Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.611642875Z 65 PC: 13862 | Delete file (Filename = 'CHKLIST.MS')
2018-12-17T22:21:42.61804035Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.625022196Z 65 PC: 13862 | Delete file (Filename = 'ivb.ntz')
2018-12-17T22:21:42.631573814Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.639213435Z 65 PC: 13862 | Delete file (Filename = 'chklist.ms')
2018-12-17T22:21:42.646676084Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.653514511Z 65 PC: 13862 | Delete file (Filename = 'chklist.cps')
2018-12-17T22:21:42.660209202Z 67 PC: 145c6 | Get or set file attributes
2018-12-17T22:21:42.667356444Z 65 PC: 13862 | Delete file (Filename = 'smartchk.cps')
2018-12-17T22:21:42.673898521Z 62 PC: 145db | Close file
2018-12-17T22:21:42.675909289Z 14 PC: 135ee | Set default drive (Drive = 'A')
2018-12-17T22:21:42.677865413Z 59 PC: 133c9 | Change current directory
2018-12-17T22:21:42.682231926Z 86 PC: 14aa8 | Rename file
2018-12-17T22:21:42.69554228Z 65 PC: 13862 | Delete file (Filename = 'Eek!')
2018-12-17T22:21:42.703270542Z 47 PC: 146e4 | Get disk transfer address
2018-12-17T22:21:42.704960217Z 26 PC: 146ed | Set disk transfer address
2018-12-17T22:21:42.706348225Z 78 PC: 146f7 | Find first file
2018-12-17T22:21:42.722690342Z 26 PC: 14700 | Set disk transfer address
2018-12-17T22:21:42.724580829Z 86 PC: 14aa8 | Rename file
2018-12-17T22:21:42.730332506Z 64 PC: 14f5f | Write file or device (Write 15 bytes on handle 2)
2018-12-17T22:21:42.736186961Z 37 PC: 12c39 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:21:42.737348557Z 37 PC: 12c44 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:21:42.738401719Z 37 PC: 12c4f | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T22:21:42.740099398Z 37 PC: 12c5a | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T22:21:42.74160685Z 76 PC: 12be3 | Terminate with return code (Return code = '15')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3776,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:50:03.161428771Z 48 PC: 12a4c | Get DOS version
2018-12-25T11:50:03.163110448Z 53 PC: 12bf2 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T11:50:03.164139916Z 53 PC: 12bff | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T11:50:03.165153023Z 53 PC: 12c0c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T11:50:03.167128638Z 53 PC: 12c19 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T11:50:03.1681608Z 37 PC: 12c2d | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T11:50:03.169259316Z 74 PC: 12af7 | Reallocate memory
2018-12-25T11:50:03.171947905Z 68 PC: 13762 | I/O control for devices (Set for = 'pyright 1991 Borland Intl.')
2018-12-25T11:50:03.173635361Z 68 PC: 13762 | I/O control for devices (See above)
2018-12-25T11:50:03.176123002Z 81 PC: 12d57 | Get current PSP
2018-12-25T11:50:03.210802535Z 47 PC: 146e4 | Get disk transfer address
2018-12-25T11:50:03.212242856Z 26 PC: 146ed | Set disk transfer address
2018-12-25T11:50:03.213624394Z 78 PC: 146f7 | Find first file
2018-12-25T11:50:03.22808078Z 26 PC: 14700 | Set disk transfer address
2018-12-25T11:50:03.229289501Z 86 PC: 14aa8 | Rename file
2018-12-25T11:50:04.358553107Z 61 PC: 14a74 | Open file (Filename = 'Eek!')
2018-12-25T11:50:04.365776042Z 25 PC: 135d6 | Get default drive
2018-12-25T11:50:04.366940311Z 71 PC: 136ce | Get current directory
2018-12-25T11:50:04.370022224Z 60 PC: 145fe | Create or truncate file
2018-12-25T11:50:04.503266751Z 66 PC: 13820 | Move file pointer
2018-12-25T11:50:04.504864599Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-25T11:50:04.506673406Z 87 PC: 13608 | Get or set file date and time
2018-12-25T11:50:04.508497149Z 87 PC: 1362b | Get or set file date and time
2018-12-25T11:50:04.510070257Z 62 PC: 145db | Close file
2018-12-25T11:50:04.663917237Z 47 PC: 13573 | Get disk transfer address
2018-12-25T11:50:04.665627747Z 26 PC: 1357c | Set disk transfer address
2018-12-25T11:50:04.667177669Z 78 PC: 13586 | Find first file
2018-12-25T11:50:04.679023998Z 26 PC: 1358f | Set disk transfer address
2018-12-25T11:50:04.68189418Z 41 PC: 144ac | Parse filename
2018-12-25T11:50:04.683909275Z 41 PC: 144cb | Parse filename
2018-12-25T11:50:04.685571784Z 75 PC: 1450b | Execute program
2018-12-25T11:50:04.694592744Z 67 PC: 145c6 | Get or set file attributes
2018-12-25T11:50:04.700571181Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:04.910227597Z 65 PC: 13862 | Delete file (Filename = '')
2018-12-25T11:50:05.153585261Z 42 PC: 12d08 | Get date 0x12d08: cmp dh, 1
0x12d0b: je 0x12d11
0x12d0d: dec dh
0x12d0f: jmp 0x12d14
0x12d11: mov dh, 0xc
0x12d13: dec cx
0x12d14: sub cx, 0x7bc
0x12d18: mov ax, cx
0x12d1a: mov cl, 9
0x12d1c: shl ax, cl
0x12d1e: push dx
0x12d1f: and dx, 0xf00
0x12d23: mov cl, 3
0x12d25: shr dx, cl
0x12d27: add ax, dx
0x12d29: pop dx
0x12d2a: and dx, 0x1f
0x12d2e: add ax, dx
0x12d30: pop dx
0x12d31: pop cx
2018-12-25T11:50:05.156780311Z 47 PC: 146e4 | Get disk transfer address (See above)
2018-12-25T11:50:05.157960478Z 26 PC: 146ed | Set disk transfer address (See above)
2018-12-25T11:50:05.15917118Z 78 PC: 146f7 | Find first file (See above)
2018-12-25T11:50:05.169233414Z 26 PC: 14700 | Set disk transfer address (See above)
2018-12-25T11:50:05.170867292Z 47 PC: 14717 | Get disk transfer address
2018-12-25T11:50:05.173143222Z 26 PC: 14720 | Set disk transfer address
2018-12-25T11:50:05.175688529Z 79 PC: 14724 | Find next file
2018-12-25T11:50:05.178868138Z 26 PC: 1472d | Set disk transfer address
2018-12-25T11:50:05.180185025Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:05.182249452Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:05.183403612Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:05.186523144Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:05.188694823Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:05.189870759Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:05.19090875Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:05.194488256Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:05.195675803Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:05.196746645Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:05.198775935Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:05.202226624Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:05.203428606Z 59 PC: 133c9 | Change current directory
2018-12-25T11:50:05.209684821Z 14 PC: 135ee | Set default drive (Drive = 'C')
2018-12-25T11:50:05.211454716Z 61 PC: 14a74 | Open file (See above)
2018-12-25T11:50:05.217977576Z 47 PC: 146e4 | Get disk transfer address (See above)
2018-12-25T11:50:05.220180185Z 26 PC: 146ed | Set disk transfer address (See above)
2018-12-25T11:50:05.221293002Z 78 PC: 146f7 | Find first file (See above)
2018-12-25T11:50:05.230485759Z 26 PC: 14700 | Set disk transfer address (See above)
2018-12-25T11:50:05.232882415Z 60 PC: 145fe | Create or truncate file (See above)
2018-12-25T11:50:06.516227563Z 87 PC: 13608 | Get or set file date and time (See above)
2018-12-25T11:50:06.518171441Z 66 PC: 13820 | Move file pointer (See above)
2018-12-25T11:50:06.520932944Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:06.529602683Z 64 PC: 14f5f | Write file or device (Write 8192 bytes on handle 7)
2018-12-25T11:50:06.576000818Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:06.583600178Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:06.647849595Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:06.649683669Z 66 PC: 13820 | Move file pointer (See above)
2018-12-25T11:50:06.651017321Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:06.658700516Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:06.702778757Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:06.711233449Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:06.761272859Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:06.768446582Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:06.860916575Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:06.868525959Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:06.970032165Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:06.971873765Z 62 PC: 145db | Close file (See above)
2018-12-25T11:50:06.97432491Z 87 PC: 1362b | Get or set file date and time (See above)
2018-12-25T11:50:06.975882553Z 62 PC: 145db | Close file (See above)
2018-12-25T11:50:07.107073736Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.113847795Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.238220284Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:07.392800105Z 86 PC: 14aa8 | Rename file (See above)
2018-12-25T11:50:07.551844263Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.557772436Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:07.56354939Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.570080093Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:07.575912808Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.582451293Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:07.58862871Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.594471943Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:07.600182904Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.606656519Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:07.612871542Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.618839774Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:07.625362594Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:07.631870565Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:07.637522937Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:07.639683627Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:07.642335203Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:07.644665725Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:07.646023849Z 59 PC: 133c9 | Change current directory (See above)
2018-12-25T11:50:07.651741367Z 14 PC: 135ee | Set default drive (See above)
2018-12-25T11:50:07.652962946Z 61 PC: 14a74 | Open file (See above)
2018-12-25T11:50:07.659823072Z 47 PC: 146e4 | Get disk transfer address (See above)
2018-12-25T11:50:07.660839636Z 26 PC: 146ed | Set disk transfer address (See above)
2018-12-25T11:50:07.661817334Z 78 PC: 146f7 | Find first file (See above)
2018-12-25T11:50:07.668079813Z 26 PC: 14700 | Set disk transfer address (See above)
2018-12-25T11:50:07.669432828Z 60 PC: 145fe | Create or truncate file (See above)
2018-12-25T11:50:07.80740037Z 87 PC: 13608 | Get or set file date and time (See above)
2018-12-25T11:50:07.809383693Z 66 PC: 13820 | Move file pointer (See above)
2018-12-25T11:50:07.810630885Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:07.815403354Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:07.991043831Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:07.995623219Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:08.036781477Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:08.040314254Z 66 PC: 13820 | Move file pointer (See above)
2018-12-25T11:50:08.041697971Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:08.048802856Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:08.165311382Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:08.173176146Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:08.24983254Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:08.257744136Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:08.470879415Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:08.478667607Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:08.631876432Z 63 PC: 1384e | Read file or device (See above)
2018-12-25T11:50:08.633963499Z 62 PC: 145db | Close file (See above)
2018-12-25T11:50:08.635881247Z 87 PC: 1362b | Get or set file date and time (See above)
2018-12-25T11:50:08.638090558Z 62 PC: 145db | Close file (See above)
2018-12-25T11:50:08.665090055Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.67080586Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.688870622Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.713842177Z 86 PC: 14aa8 | Rename file (See above)
2018-12-25T11:50:08.733166282Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.740302147Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.746159989Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.75217112Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.758590467Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.764542728Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.770354648Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.777137586Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.784484614Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.790324777Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.796530403Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.804191901Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.810014574Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:08.816548793Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.822700773Z 62 PC: 145db | Close file (See above)
2018-12-25T11:50:08.824761876Z 14 PC: 135ee | Set default drive (See above)
2018-12-25T11:50:08.827538944Z 59 PC: 133c9 | Change current directory (See above)
2018-12-25T11:50:08.831750794Z 86 PC: 14aa8 | Rename file (See above)
2018-12-25T11:50:08.861143224Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:08.868694574Z 47 PC: 146e4 | Get disk transfer address (See above)
2018-12-25T11:50:08.870062405Z 26 PC: 146ed | Set disk transfer address (See above)
2018-12-25T11:50:08.871390204Z 78 PC: 146f7 | Find first file (See above)
2018-12-25T11:50:08.878385505Z 26 PC: 14700 | Set disk transfer address (See above)
2018-12-25T11:50:08.87986125Z 86 PC: 14aa8 | Rename file (See above)
2018-12-25T11:50:08.88650778Z 64 PC: 14f5f | Write file or device (See above)
2018-12-25T11:50:08.892209231Z 37 PC: 12c39 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T11:50:08.893312014Z 37 PC: 12c44 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T11:50:08.894391387Z 37 PC: 12c4f | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T11:50:08.896508851Z 37 PC: 12c5a | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T11:50:08.897704362Z 76 PC: 12be3 | Terminate with return code (Return code = '15')

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3776,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:50:03.134959249Z 48 PC: 12a4c | Get DOS version
2018-12-25T11:50:03.137102044Z 53 PC: 12bf2 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T11:50:03.138543916Z 53 PC: 12bff | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T11:50:03.139935329Z 53 PC: 12c0c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T11:50:03.141822399Z 53 PC: 12c19 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T11:50:03.143167972Z 37 PC: 12c2d | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T11:50:03.14459245Z 74 PC: 12af7 | Reallocate memory
2018-12-25T11:50:03.146845178Z 68 PC: 13762 | I/O control for devices (Set for = 'pyright 1991 Borland Intl.')
2018-12-25T11:50:03.149130886Z 68 PC: 13762 | I/O control for devices (See above)
2018-12-25T11:50:03.151783794Z 81 PC: 12d57 | Get current PSP
2018-12-25T11:50:03.178977227Z 47 PC: 146e4 | Get disk transfer address
2018-12-25T11:50:03.180482566Z 26 PC: 146ed | Set disk transfer address
2018-12-25T11:50:03.181491303Z 78 PC: 146f7 | Find first file
2018-12-25T11:50:03.185397352Z 26 PC: 14700 | Set disk transfer address
2018-12-25T11:50:03.187126696Z 86 PC: 14aa8 | Rename file
2018-12-25T11:50:03.201672593Z 61 PC: 14a74 | Open file (Filename = 'Eek!')
2018-12-25T11:50:03.209817462Z 25 PC: 135d6 | Get default drive
2018-12-25T11:50:03.211871151Z 71 PC: 136ce | Get current directory
2018-12-25T11:50:03.215560223Z 60 PC: 145fe | Create or truncate file
2018-12-25T11:50:03.227540459Z 66 PC: 13820 | Move file pointer
2018-12-25T11:50:03.229495141Z 63 PC: 1384e | Read file or device (Read 8192 bytes on handle 5)
2018-12-25T11:50:03.231145746Z 87 PC: 13608 | Get or set file date and time
2018-12-25T11:50:03.232848517Z 87 PC: 1362b | Get or set file date and time
2018-12-25T11:50:03.244161213Z 62 PC: 145db | Close file
2018-12-25T11:50:03.25369834Z 47 PC: 13573 | Get disk transfer address
2018-12-25T11:50:03.255484395Z 26 PC: 1357c | Set disk transfer address
2018-12-25T11:50:03.257847212Z 78 PC: 13586 | Find first file
2018-12-25T11:50:03.26206284Z 26 PC: 1358f | Set disk transfer address
2018-12-25T11:50:03.263765315Z 41 PC: 144ac | Parse filename
2018-12-25T11:50:03.264914756Z 41 PC: 144cb | Parse filename
2018-12-25T11:50:03.26670584Z 75 PC: 1450b | Execute program
2018-12-25T11:50:03.276285226Z 67 PC: 145c6 | Get or set file attributes
2018-12-25T11:50:03.283164908Z 67 PC: 145c6 | Get or set file attributes (See above)
2018-12-25T11:50:03.294703018Z 65 PC: 13862 | Delete file (Filename = '')
2018-12-25T11:50:03.307305228Z 42 PC: 12d08 | Get date 0x12d08: cmp dh, 1
0x12d0b: je 0x12d11
0x12d0d: dec dh
0x12d0f: jmp 0x12d14
0x12d11: mov dh, 0xc
0x12d13: dec cx
0x12d14: sub cx, 0x7bc
0x12d18: mov ax, cx
0x12d1a: mov cl, 9
0x12d1c: shl ax, cl
0x12d1e: push dx
0x12d1f: and dx, 0xf00
0x12d23: mov cl, 3
0x12d25: shr dx, cl
0x12d27: add ax, dx
0x12d29: pop dx
0x12d2a: and dx, 0x1f
0x12d2e: add ax, dx
0x12d30: pop dx
0x12d31: pop cx
2018-12-25T11:50:03.310499461Z 47 PC: 146e4 | Get disk transfer address (See above)
2018-12-25T11:50:03.313067581Z 26 PC: 146ed | Set disk transfer address (See above)
2018-12-25T11:50:03.314761532Z 78 PC: 146f7 | Find first file (See above)
2018-12-25T11:50:03.325466228Z 26 PC: 14700 | Set disk transfer address (See above)
2018-12-25T11:50:03.327743416Z 47 PC: 14717 | Get disk transfer address
2018-12-25T11:50:03.328996979Z 26 PC: 14720 | Set disk transfer address
2018-12-25T11:50:03.330124073Z 79 PC: 14724 | Find next file
2018-12-25T11:50:03.334418695Z 26 PC: 1472d | Set disk transfer address
2018-12-25T11:50:03.335671899Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.336821647Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.338301054Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.342166608Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.343830918Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.345080018Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.346498926Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.351431227Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.353094735Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.35479845Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.355964395Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.359096729Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.360741176Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.362072609Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.363415155Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.367327092Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.36863856Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.369877878Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.371531604Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.378253247Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.379502162Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.38149836Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.38275956Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.386117264Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.387781542Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.388945233Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.39010971Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.394001757Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.395347751Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.396592753Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.398437818Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.40191437Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.403177668Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.404318339Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.405592902Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.408761419Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.40986527Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.411335192Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.412291423Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.415399053Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.417035804Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.418169668Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.41914447Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.422940706Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.424257753Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.425455993Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.427034739Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.431164059Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.432435831Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.434133454Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.43530622Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.442312231Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.444453901Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.445636856Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.446747397Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.460263682Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.461577464Z 47 PC: 14717 | Get disk transfer address (See above)
2018-12-25T11:50:03.462567759Z 26 PC: 14720 | Set disk transfer address (See above)
2018-12-25T11:50:03.464627165Z 79 PC: 14724 | Find next file (See above)
2018-12-25T11:50:03.46788421Z 26 PC: 1472d | Set disk transfer address (See above)
2018-12-25T11:50:03.46935917Z 59 PC: 133c9 | Change current directory
2018-12-25T11:50:03.472258763Z 14 PC: 135ee | Set default drive (Drive = 'A')
2018-12-25T11:50:03.473602485Z 47 PC: 146e4 | Get disk transfer address (See above)
2018-12-25T11:50:03.474707276Z 26 PC: 146ed | Set disk transfer address (See above)
2018-12-25T11:50:03.47630107Z 78 PC: 146f7 | Find first file (See above)
2018-12-25T11:50:03.483402952Z 26 PC: 14700 | Set disk transfer address (See above)
2018-12-25T11:50:03.48496196Z 62 PC: 145db | Close file (See above)
2018-12-25T11:50:03.486979181Z 14 PC: 135ee | Set default drive (See above)
2018-12-25T11:50:03.48900968Z 59 PC: 133c9 | Change current directory (See above)
2018-12-25T11:50:03.49366703Z 86 PC: 14aa8 | Rename file (See above)
2018-12-25T11:50:03.506420526Z 65 PC: 13862 | Delete file (See above)
2018-12-25T11:50:03.513955519Z 47 PC: 146e4 | Get disk transfer address (See above)
2018-12-25T11:50:03.51568787Z 26 PC: 146ed | Set disk transfer address (See above)
2018-12-25T11:50:03.517331372Z 78 PC: 146f7 | Find first file (See above)
2018-12-25T11:50:03.524325595Z 26 PC: 14700 | Set disk transfer address (See above)
2018-12-25T11:50:03.525753169Z 86 PC: 14aa8 | Rename file (See above)
2018-12-25T11:50:03.531450662Z 64 PC: 14f5f | Write file or device (Write 15 bytes on handle 2)
2018-12-25T11:50:03.538394412Z 37 PC: 12c39 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T11:50:03.539360588Z 37 PC: 12c44 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T11:50:03.540553711Z 37 PC: 12c4f | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T11:50:03.544020398Z 37 PC: 12c5a | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T11:50:03.545728624Z 76 PC: 12be3 | Terminate with return code (Return code = '15')