Sample viewer

vx.netlux.org/Virus.DOS.Wit.Remor.958

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:30:20.925608603Z 26 PC: 12ac8 | Set disk transfer address
2018-12-17T22:30:20.927236356Z 71 PC: 12ada | Get current directory
2018-12-17T22:30:20.930524934Z 42 PC: 12ae0 | Get date 0x12ae0: cmp dh, 4
0x12ae3: jne 0x12afe
0x12ae5: cmp dl, 0xf
0x12ae8: jne 0x12afe
0x12aea: mov ax, 0x1010
0x12aed: out 0x70, ax
0x12aef: mov dx, 0x425
0x12af2: mov ah, 9
0x12af4: int 0x21
0x12af6: mov ah, 8
0x12af8: int 0x21
0x12afa: mov al, 0xfe
0x12afc: out 0x64, al
0x12afe: mov dx, 0x413
0x12b01: mov ah, byte ptr [0x480]
0x12b05: mov cl, 7
0x12b07: int 0x21
0x12b09: jae 0x12b0e
0x12b0b: jmp 0x12cbd
0x12b0e: mov dx, word ptr [0x448]
2018-12-17T22:30:20.932434974Z 78 PC: 12b09 | Find first file
2018-12-17T22:30:20.938732461Z 67 PC: 12b25 | Get or set file attributes
2018-12-17T22:30:20.961564596Z 61 PC: 12b47 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:30:20.967858502Z 63 PC: 12b64 | Read file or device (Read 955 bytes on handle 5)
2018-12-17T22:30:20.980648485Z 66 PC: 12b8c | Move file pointer
2018-12-17T22:30:20.98206619Z 66 PC: 12bae | Move file pointer
2018-12-17T22:30:20.983518635Z 64 PC: 12bc9 | Write file or device (Write 407 bytes on handle 5)
2018-12-17T22:30:20.991143959Z 64 PC: 12bd9 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:30:20.994618486Z 66 PC: 12c09 | Move file pointer
2018-12-17T22:30:20.995533523Z 64 PC: 12c1b | Write file or device (Write 955 bytes on handle 5)
2018-12-17T22:30:21.000761905Z 87 PC: 12c2c | Get or set file date and time
2018-12-17T22:30:21.002711044Z 67 PC: 12c3e | Get or set file attributes
2018-12-17T22:30:21.00953393Z 62 PC: 12c44 | Close file
2018-12-17T22:30:21.016581455Z 79 PC: 12b09 | Find next file
2018-12-17T22:30:21.020015257Z 67 PC: 12b25 | Get or set file attributes
2018-12-17T22:30:21.02995474Z 61 PC: 12b47 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:30:21.036346715Z 63 PC: 12b64 | Read file or device (Read 955 bytes on handle 5)
2018-12-17T22:30:21.043558373Z 66 PC: 12b8c | Move file pointer
2018-12-17T22:30:21.044811128Z 66 PC: 12bae | Move file pointer
2018-12-17T22:30:21.046035583Z 64 PC: 12bc9 | Write file or device (Write 27 bytes on handle 5)
2018-12-17T22:30:21.05034176Z 64 PC: 12bd9 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:30:21.053001515Z 66 PC: 12c09 | Move file pointer
2018-12-17T22:30:21.054161109Z 64 PC: 12c1b | Write file or device (Write 955 bytes on handle 5)
2018-12-17T22:30:21.088014797Z 87 PC: 12c2c | Get or set file date and time
2018-12-17T22:30:21.090181426Z 67 PC: 12c3e | Get or set file attributes
2018-12-17T22:30:21.10878315Z 62 PC: 12c44 | Close file
2018-12-17T22:30:21.115611594Z 79 PC: 12b09 | Find next file
2018-12-17T22:30:21.118445125Z 67 PC: 12b25 | Get or set file attributes
2018-12-17T22:30:21.128073552Z 61 PC: 12b47 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:30:21.134840248Z 63 PC: 12b64 | Read file or device (Read 955 bytes on handle 5)
2018-12-17T22:30:21.142008259Z 66 PC: 12b8c | Move file pointer
2018-12-17T22:30:21.143810835Z 66 PC: 12bae | Move file pointer
2018-12-17T22:30:21.14558454Z 64 PC: 12bc9 | Write file or device (Write 92 bytes on handle 5)
2018-12-17T22:30:21.154264975Z 64 PC: 12bd9 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:30:21.15715178Z 66 PC: 12c09 | Move file pointer
2018-12-17T22:30:21.158793396Z 64 PC: 12c1b | Write file or device (Write 955 bytes on handle 5)
2018-12-17T22:30:21.168601711Z 87 PC: 12c2c | Get or set file date and time
2018-12-17T22:30:21.170409495Z 67 PC: 12c3e | Get or set file attributes
2018-12-17T22:30:21.181240715Z 62 PC: 12c44 | Close file
2018-12-17T22:30:21.189357061Z 79 PC: 12b09 | Find next file
2018-12-17T22:30:21.192105204Z 67 PC: 12b25 | Get or set file attributes
2018-12-17T22:30:21.201910008Z 61 PC: 12b47 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:30:21.210170187Z 63 PC: 12b64 | Read file or device (Read 955 bytes on handle 5)
2018-12-17T22:30:21.216678973Z 66 PC: 12b8c | Move file pointer
2018-12-17T22:30:21.218087264Z 66 PC: 12bae | Move file pointer
2018-12-17T22:30:21.220005171Z 64 PC: 12bc9 | Write file or device (Write 29 bytes on handle 5)
2018-12-17T22:30:21.224008217Z 64 PC: 12bd9 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:30:21.227287741Z 66 PC: 12c09 | Move file pointer
2018-12-17T22:30:21.229752963Z 64 PC: 12c1b | Write file or device (Write 955 bytes on handle 5)
2018-12-17T22:30:21.237704503Z 87 PC: 12c2c | Get or set file date and time
2018-12-17T22:30:21.240095792Z 67 PC: 12c3e | Get or set file attributes
2018-12-17T22:30:21.252227623Z 62 PC: 12c44 | Close file
2018-12-17T22:30:21.2593641Z 79 PC: 12b09 | Find next file
2018-12-17T22:30:21.262143379Z 67 PC: 12b25 | Get or set file attributes
2018-12-17T22:30:21.273442296Z 61 PC: 12b47 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:30:21.280286224Z 63 PC: 12b64 | Read file or device (Read 955 bytes on handle 5)
2018-12-17T22:30:21.287022984Z 66 PC: 12b8c | Move file pointer
2018-12-17T22:30:21.290613254Z 66 PC: 12bae | Move file pointer
2018-12-17T22:30:21.292710714Z 64 PC: 12bc9 | Write file or device (Write 29 bytes on handle 5)
2018-12-17T22:30:21.296716438Z 64 PC: 12bd9 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:30:21.300643641Z 66 PC: 12c09 | Move file pointer
2018-12-17T22:30:21.302404844Z 64 PC: 12c1b | Write file or device (Write 955 bytes on handle 5)
2018-12-17T22:30:21.310534234Z 87 PC: 12c2c | Get or set file date and time
2018-12-17T22:30:21.312608042Z 67 PC: 12c3e | Get or set file attributes
2018-12-17T22:30:21.324076044Z 62 PC: 12c44 | Close file
2018-12-17T22:30:21.331740447Z 78 PC: 12b09 | Find first file
2018-12-17T22:30:21.338140245Z 59 PC: 12cdf | Change current directory
2018-12-17T22:30:21.343808955Z 26 PC: 12cfc | Set disk transfer address
2018-12-17T22:30:21.345313624Z 59 PC: 12d07 | Change current directory

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5423,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T13:06:56.449956002Z 26 PC: 12ac8 | Set disk transfer address
2018-12-25T13:06:56.451336223Z 71 PC: 12ada | Get current directory
2018-12-25T13:06:56.453988625Z 42 PC: 12ae0 | Get date 0x12ae0: cmp dh, 4
0x12ae3: jne 0x12afe
0x12ae5: cmp dl, 0xf
0x12ae8: jne 0x12afe
0x12aea: mov ax, 0x1010
0x12aed: out 0x70, ax
0x12aef: mov dx, 0x425
0x12af2: mov ah, 9
0x12af4: int 0x21
0x12af6: mov ah, 8
0x12af8: int 0x21
0x12afa: mov al, 0xfe
0x12afc: out 0x64, al
0x12afe: mov dx, 0x413
0x12b01: mov ah, byte ptr [0x480]
0x12b05: mov cl, 7
0x12b07: int 0x21
0x12b09: jae 0x12b0e
0x12b0b: jmp 0x12cbd
0x12b0e: mov dx, word ptr [0x448]
2018-12-25T13:06:56.455919925Z 78 PC: 12b09 | Find first file
2018-12-25T13:06:56.462001089Z 67 PC: 12b25 | Get or set file attributes
2018-12-25T13:06:57.095981623Z 61 PC: 12b47 | Open file (Filename = 'SLEEP.COM')
2018-12-25T13:06:57.102393048Z 63 PC: 12b64 | Read file or device (Read 955 bytes on handle 5)
2018-12-25T13:06:57.10908799Z 66 PC: 12b8c | Move file pointer
2018-12-25T13:06:57.110354314Z 66 PC: 12bae | Move file pointer
2018-12-25T13:06:57.111690645Z 64 PC: 12bc9 | Write file or device (Write 407 bytes on handle 5)
2018-12-25T13:06:57.29022772Z 64 PC: 12bd9 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T13:06:57.292951391Z 66 PC: 12c09 | Move file pointer
2018-12-25T13:06:57.294126076Z 64 PC: 12c1b | Write file or device (Write 955 bytes on handle 5)
2018-12-25T13:06:57.407918763Z 87 PC: 12c2c | Get or set file date and time
2018-12-25T13:06:57.409940714Z 67 PC: 12c3e | Get or set file attributes
2018-12-25T13:06:57.541647814Z 62 PC: 12c44 | Close file
2018-12-25T13:06:57.726729919Z 79 PC: 12b09 | Find next file (See above)
2018-12-25T13:06:57.729526002Z 67 PC: 12b25 | Get or set file attributes (See above)
2018-12-25T13:06:57.914725777Z 61 PC: 12b47 | Open file (See above)
2018-12-25T13:06:57.921461823Z 63 PC: 12b64 | Read file or device (See above)
2018-12-25T13:06:57.928647384Z 66 PC: 12b8c | Move file pointer (See above)
2018-12-25T13:06:57.930013062Z 66 PC: 12bae | Move file pointer (See above)
2018-12-25T13:06:57.931378659Z 64 PC: 12bc9 | Write file or device (See above)
2018-12-25T13:06:57.935894362Z 64 PC: 12bd9 | Write file or device (See above)
2018-12-25T13:06:57.93854935Z 66 PC: 12c09 | Move file pointer (See above)
2018-12-25T13:06:57.939754161Z 64 PC: 12c1b | Write file or device (See above)
2018-12-25T13:06:58.135541344Z 87 PC: 12c2c | Get or set file date and time (See above)
2018-12-25T13:06:58.137072996Z 67 PC: 12c3e | Get or set file attributes (See above)
2018-12-25T13:06:58.296820107Z 62 PC: 12c44 | Close file (See above)
2018-12-25T13:06:58.307360449Z 79 PC: 12b09 | Find next file (See above)
2018-12-25T13:06:58.309855444Z 67 PC: 12b25 | Get or set file attributes (See above)
2018-12-25T13:06:58.326212003Z 61 PC: 12b47 | Open file (See above)
2018-12-25T13:06:58.333661337Z 63 PC: 12b64 | Read file or device (See above)
2018-12-25T13:06:58.339769488Z 66 PC: 12b8c | Move file pointer (See above)
2018-12-25T13:06:58.341042499Z 66 PC: 12bae | Move file pointer (See above)
2018-12-25T13:06:58.342474537Z 64 PC: 12bc9 | Write file or device (See above)
2018-12-25T13:06:58.355390949Z 64 PC: 12bd9 | Write file or device (See above)
2018-12-25T13:06:58.357986068Z 66 PC: 12c09 | Move file pointer (See above)
2018-12-25T13:06:58.359336423Z 64 PC: 12c1b | Write file or device (See above)
2018-12-25T13:06:58.375142745Z 87 PC: 12c2c | Get or set file date and time (See above)
2018-12-25T13:06:58.376433918Z 67 PC: 12c3e | Get or set file attributes (See above)
2018-12-25T13:06:58.395453479Z 62 PC: 12c44 | Close file (See above)
2018-12-25T13:06:58.404431117Z 79 PC: 12b09 | Find next file (See above)
2018-12-25T13:06:58.406874803Z 67 PC: 12b25 | Get or set file attributes (See above)
2018-12-25T13:06:58.424482832Z 61 PC: 12b47 | Open file (See above)
2018-12-25T13:06:58.430845187Z 63 PC: 12b64 | Read file or device (See above)
2018-12-25T13:06:58.436837552Z 66 PC: 12b8c | Move file pointer (See above)
2018-12-25T13:06:58.438022072Z 66 PC: 12bae | Move file pointer (See above)
2018-12-25T13:06:58.43947898Z 64 PC: 12bc9 | Write file or device (See above)
2018-12-25T13:06:58.443085235Z 64 PC: 12bd9 | Write file or device (See above)
2018-12-25T13:06:58.445775119Z 66 PC: 12c09 | Move file pointer (See above)
2018-12-25T13:06:58.447706786Z 64 PC: 12c1b | Write file or device (See above)
2018-12-25T13:06:58.458317393Z 87 PC: 12c2c | Get or set file date and time (See above)
2018-12-25T13:06:58.459569249Z 67 PC: 12c3e | Get or set file attributes (See above)
2018-12-25T13:06:58.480395593Z 62 PC: 12c44 | Close file (See above)
2018-12-25T13:06:58.503913941Z 79 PC: 12b09 | Find next file (See above)
2018-12-25T13:06:58.506320735Z 67 PC: 12b25 | Get or set file attributes (See above)
2018-12-25T13:06:58.523643527Z 61 PC: 12b47 | Open file (See above)
2018-12-25T13:06:58.53019488Z 63 PC: 12b64 | Read file or device (See above)
2018-12-25T13:06:58.536526353Z 66 PC: 12b8c | Move file pointer (See above)
2018-12-25T13:06:58.539124666Z 66 PC: 12bae | Move file pointer (See above)
2018-12-25T13:06:58.540700249Z 64 PC: 12bc9 | Write file or device (See above)
2018-12-25T13:06:58.544482696Z 64 PC: 12bd9 | Write file or device (See above)
2018-12-25T13:06:58.547680464Z 66 PC: 12c09 | Move file pointer (See above)
2018-12-25T13:06:58.549563553Z 64 PC: 12c1b | Write file or device (See above)
2018-12-25T13:06:58.566290909Z 87 PC: 12c2c | Get or set file date and time (See above)
2018-12-25T13:06:58.567569338Z 67 PC: 12c3e | Get or set file attributes (See above)
2018-12-25T13:06:58.609795869Z 62 PC: 12c44 | Close file (See above)
2018-12-25T13:06:58.63424768Z 78 PC: 12b09 | Find first file (See above)
2018-12-25T13:06:58.640208922Z 59 PC: 12cdf | Change current directory
2018-12-25T13:06:58.644990033Z 26 PC: 12cfc | Set disk transfer address
2018-12-25T13:06:58.645874322Z 59 PC: 12d07 | Change current directory

{"DateBased":true,"Day":1,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5423,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:54:31.540006518Z 26 PC: 12ac8 | Set disk transfer address
2018-12-25T11:54:31.54125342Z 71 PC: 12ada | Get current directory
2018-12-25T11:54:31.543092696Z 42 PC: 12ae0 | Get date 0x12ae0: cmp dh, 4
0x12ae3: jne 0x12afe
0x12ae5: cmp dl, 0xf
0x12ae8: jne 0x12afe
0x12aea: mov ax, 0x1010
0x12aed: out 0x70, ax
0x12aef: mov dx, 0x425
0x12af2: mov ah, 9
0x12af4: int 0x21
0x12af6: mov ah, 8
0x12af8: int 0x21
0x12afa: mov al, 0xfe
0x12afc: out 0x64, al
0x12afe: mov dx, 0x413
0x12b01: mov ah, byte ptr [0x480]
0x12b05: mov cl, 7
0x12b07: int 0x21
0x12b09: jae 0x12b0e
0x12b0b: jmp 0x12cbd
0x12b0e: mov dx, word ptr [0x448]
2018-12-25T11:54:31.544368178Z 78 PC: 12b09 | Find first file
2018-12-25T11:54:31.548219874Z 67 PC: 12b25 | Get or set file attributes
2018-12-25T11:54:32.558340802Z 61 PC: 12b47 | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:54:32.564801942Z 63 PC: 12b64 | Read file or device (Read 955 bytes on handle 5)
2018-12-25T11:54:32.571974105Z 66 PC: 12b8c | Move file pointer
2018-12-25T11:54:32.573316732Z 66 PC: 12bae | Move file pointer
2018-12-25T11:54:32.574702111Z 64 PC: 12bc9 | Write file or device (Write 407 bytes on handle 5)
2018-12-25T11:54:32.588302459Z 64 PC: 12bd9 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T11:54:32.591342452Z 66 PC: 12c09 | Move file pointer
2018-12-25T11:54:32.592889243Z 64 PC: 12c1b | Write file or device (Write 955 bytes on handle 5)
2018-12-25T11:54:32.664583322Z 87 PC: 12c2c | Get or set file date and time
2018-12-25T11:54:32.669564855Z 67 PC: 12c3e | Get or set file attributes
2018-12-25T11:54:32.712691426Z 62 PC: 12c44 | Close file
2018-12-25T11:54:32.733446528Z 79 PC: 12b09 | Find next file (See above)
2018-12-25T11:54:32.736127742Z 67 PC: 12b25 | Get or set file attributes (See above)
2018-12-25T11:54:32.756756728Z 61 PC: 12b47 | Open file (See above)
2018-12-25T11:54:32.762458607Z 63 PC: 12b64 | Read file or device (See above)
2018-12-25T11:54:32.767122643Z 66 PC: 12b8c | Move file pointer (See above)
2018-12-25T11:54:32.768377429Z 66 PC: 12bae | Move file pointer (See above)
2018-12-25T11:54:32.770282582Z 64 PC: 12bc9 | Write file or device (See above)
2018-12-25T11:54:32.77561244Z 64 PC: 12bd9 | Write file or device (See above)
2018-12-25T11:54:32.778890246Z 66 PC: 12c09 | Move file pointer (See above)
2018-12-25T11:54:32.780270737Z 64 PC: 12c1b | Write file or device (See above)
2018-12-25T11:54:32.832059207Z 87 PC: 12c2c | Get or set file date and time (See above)
2018-12-25T11:54:32.834175761Z 67 PC: 12c3e | Get or set file attributes (See above)
2018-12-25T11:54:32.887670403Z 62 PC: 12c44 | Close file (See above)
2018-12-25T11:54:32.932012336Z 79 PC: 12b09 | Find next file (See above)
2018-12-25T11:54:32.934165058Z 67 PC: 12b25 | Get or set file attributes (See above)
2018-12-25T11:54:32.974085193Z 61 PC: 12b47 | Open file (See above)
2018-12-25T11:54:32.979993746Z 63 PC: 12b64 | Read file or device (See above)
2018-12-25T11:54:32.985238877Z 66 PC: 12b8c | Move file pointer (See above)
2018-12-25T11:54:32.986433934Z 66 PC: 12bae | Move file pointer (See above)
2018-12-25T11:54:32.988177117Z 64 PC: 12bc9 | Write file or device (See above)
2018-12-25T11:54:33.0037465Z 64 PC: 12bd9 | Write file or device (See above)
2018-12-25T11:54:33.007056455Z 66 PC: 12c09 | Move file pointer (See above)
2018-12-25T11:54:33.008771778Z 64 PC: 12c1b | Write file or device (See above)
2018-12-25T11:54:33.016508141Z 87 PC: 12c2c | Get or set file date and time (See above)
2018-12-25T11:54:33.018116852Z 67 PC: 12c3e | Get or set file attributes (See above)
2018-12-25T11:54:33.029372462Z 62 PC: 12c44 | Close file (See above)
2018-12-25T11:54:33.036624101Z 79 PC: 12b09 | Find next file (See above)
2018-12-25T11:54:33.038979862Z 67 PC: 12b25 | Get or set file attributes (See above)
2018-12-25T11:54:33.04865439Z 61 PC: 12b47 | Open file (See above)
2018-12-25T11:54:33.055280818Z 63 PC: 12b64 | Read file or device (See above)
2018-12-25T11:54:33.061540717Z 66 PC: 12b8c | Move file pointer (See above)
2018-12-25T11:54:33.063091891Z 66 PC: 12bae | Move file pointer (See above)
2018-12-25T11:54:33.064586478Z 64 PC: 12bc9 | Write file or device (See above)
2018-12-25T11:54:33.068320911Z 64 PC: 12bd9 | Write file or device (See above)
2018-12-25T11:54:33.07150033Z 66 PC: 12c09 | Move file pointer (See above)
2018-12-25T11:54:33.073499758Z 64 PC: 12c1b | Write file or device (See above)
2018-12-25T11:54:33.081010975Z 87 PC: 12c2c | Get or set file date and time (See above)
2018-12-25T11:54:33.084354188Z 67 PC: 12c3e | Get or set file attributes (See above)
2018-12-25T11:54:33.095626705Z 62 PC: 12c44 | Close file (See above)
2018-12-25T11:54:33.103568078Z 79 PC: 12b09 | Find next file (See above)
2018-12-25T11:54:33.107158563Z 67 PC: 12b25 | Get or set file attributes (See above)
2018-12-25T11:54:33.11708025Z 61 PC: 12b47 | Open file (See above)
2018-12-25T11:54:33.123730217Z 63 PC: 12b64 | Read file or device (See above)
2018-12-25T11:54:33.130785717Z 66 PC: 12b8c | Move file pointer (See above)
2018-12-25T11:54:33.132788821Z 66 PC: 12bae | Move file pointer (See above)
2018-12-25T11:54:33.13437644Z 64 PC: 12bc9 | Write file or device (See above)
2018-12-25T11:54:33.137885053Z 64 PC: 12bd9 | Write file or device (See above)
2018-12-25T11:54:33.141271014Z 66 PC: 12c09 | Move file pointer (See above)
2018-12-25T11:54:33.142489134Z 64 PC: 12c1b | Write file or device (See above)
2018-12-25T11:54:33.149646887Z 87 PC: 12c2c | Get or set file date and time (See above)
2018-12-25T11:54:33.151189498Z 67 PC: 12c3e | Get or set file attributes (See above)
2018-12-25T11:54:33.161594679Z 62 PC: 12c44 | Close file (See above)
2018-12-25T11:54:33.168273335Z 78 PC: 12b09 | Find first file (See above)
2018-12-25T11:54:33.174084452Z 59 PC: 12cdf | Change current directory
2018-12-25T11:54:33.17802979Z 26 PC: 12cfc | Set disk transfer address
2018-12-25T11:54:33.179053401Z 59 PC: 12d07 | Change current directory

{"DateBased":true,"Day":15,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5423,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:54:31.694128642Z 26 PC: 12ac8 | Set disk transfer address
2018-12-25T11:54:31.695474232Z 71 PC: 12ada | Get current directory
2018-12-25T11:54:31.698140839Z 42 PC: 12ae0 | Get date 0x12ae0: cmp dh, 4
0x12ae3: jne 0x12afe
0x12ae5: cmp dl, 0xf
0x12ae8: jne 0x12afe
0x12aea: mov ax, 0x1010
0x12aed: out 0x70, ax
0x12aef: mov dx, 0x425
0x12af2: mov ah, 9
0x12af4: int 0x21
0x12af6: mov ah, 8
0x12af8: int 0x21
0x12afa: mov al, 0xfe
0x12afc: out 0x64, al
0x12afe: mov dx, 0x413
0x12b01: mov ah, byte ptr [0x480]
0x12b05: mov cl, 7
0x12b07: int 0x21
0x12b09: jae 0x12b0e
0x12b0b: jmp 0x12cbd
0x12b0e: mov dx, word ptr [0x448]
2018-12-25T11:54:31.700059713Z 9 PC: 12af6 | Display string (String= '��ࠡ���� - rulez forever ! ')
2018-12-25T11:54:31.704255009Z 8 PC: 12afa | Console input without echo