Sample viewer

vx.netlux.org/Virus.DOS.Guhha.337

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:31:09.272921505Z 26 PC: 137d9 | Set disk transfer address
2018-12-17T22:31:09.275551473Z 78 PC: 137e1 | Find first file
2018-12-17T22:31:09.282181198Z 61 PC: 137ef | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:31:09.289406336Z 63 PC: 137fb | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:31:09.296854113Z 44 PC: 1380d | Get time 0x1380d: lea di, word ptr [bp + 0x110]
0x13811: add word ptr [di], dx
0x13813: mov cx, 2
0x13816: cmp byte ptr [di], 0
0x13819: jne 0x1381e
0x1381b: add byte ptr [di], 1
0x1381e: inc di
0x1381f: loop 0x13816
0x13821: mov di, 0
0x13824: mov cx, word ptr [bp + 0x26e]
0x13828: lea si, word ptr [bp + 0x26e]
0x1382c: lea di, word ptr [bp + 0x226]
0x13830: mov dx, word ptr [si]
0x13832: sub dx, 3
0x13835: mov word ptr [di], dx
0x13837: add dx, 3
0x1383a: sub dx, 0xf9c7
0x1383e: cmp word ptr [si], dx
0x13840: jb 0x13844
0x13842: jmp 0x1389e
2018-12-17T22:31:09.299841344Z 66 PC: 1384d | Move file pointer
2018-12-17T22:31:09.302084184Z 64 PC: 13858 | Write file or device (Write 31 bytes on handle 5)
2018-12-17T22:31:09.305822139Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.308159332Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.310444895Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.313050109Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.31581199Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.318215946Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.32054992Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.323428742Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.326501206Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.329231357Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.332480954Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.335200679Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.338582118Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.342910255Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.345906715Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.348861939Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.352480175Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.35526836Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.35818658Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.362168754Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.364603443Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.367542473Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.372630051Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.375322478Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.378240523Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.381672632Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.386115431Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.388728084Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.391277985Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.394229988Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.396995619Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.400113811Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.403027164Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.405492816Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.408477157Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.412585751Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.4153729Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.419586094Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.43281632Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.4356397Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.439318323Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.442567032Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.445508154Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.448594903Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.452328857Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.455189936Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.458086648Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.462449118Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.465490271Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.468280519Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.473687641Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.476686478Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.479586095Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.483242213Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.486658301Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.489553615Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.493265767Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.496559023Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.499412139Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.503798552Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.507049586Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.50990413Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.513501297Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.516697491Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.519557664Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.52262569Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.525959482Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.528701511Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.531527825Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.535336205Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.538123382Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.540916173Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.54469907Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.547551098Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.550432967Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.553891209Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.556464417Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.559038789Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.562292928Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.564974177Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.567583463Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.571391661Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.573979485Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.577314095Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.580903613Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.583548213Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.586639483Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.590579651Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.593676708Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.596657977Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.600410539Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.603202297Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.605805503Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.609167756Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.613364739Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.616295675Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.620451392Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.623160904Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.625787312Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.628852703Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.63172628Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.63429189Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.636982342Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.640886396Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.643426135Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.646078618Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.65000218Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.652835494Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.656175574Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.660328556Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.663001623Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.665773261Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.669824859Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.67266817Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.675849703Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.679891174Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.682976103Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.687575283Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.691796514Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.694538639Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.697195058Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.701065136Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.703951474Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.70689111Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.7107783Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.713568145Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.716830069Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.720900458Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.72358406Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.726273183Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.73002904Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.73292345Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.736671939Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.74182443Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.74491249Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.747907126Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.751584414Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.754485112Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.757127369Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.768971482Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.772070235Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.774768366Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.778671358Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.781618686Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.784362208Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.78863658Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.791364194Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.794039849Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.798545747Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.802352919Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.805033446Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.808494405Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.811277309Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.814079557Z 66 PC: 13882 | Move file pointer
2018-12-17T22:31:09.816483311Z 64 PC: 1388d | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:31:09.82311613Z 87 PC: 1389a | Get or set file date and time
2018-12-17T22:31:09.824447862Z 62 PC: 1389e | Close file
2018-12-17T22:31:09.838814328Z 79 PC: 137e1 | Find next file
2018-12-17T22:31:09.841354282Z 61 PC: 137ef | Open file (Filename = 'PRINT.COM')
2018-12-17T22:31:09.847868175Z 63 PC: 137fb | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:31:09.854443612Z 44 PC: 1380d | Get time 0x1380d: lea di, word ptr [bp + 0x110]
0x13811: add word ptr [di], dx
0x13813: mov cx, 2
0x13816: cmp byte ptr [di], 0
0x13819: jne 0x1381e
0x1381b: add byte ptr [di], 1
0x1381e: inc di
0x1381f: loop 0x13816
0x13821: mov di, 0
0x13824: mov cx, word ptr [bp + 0x26e]
0x13828: lea si, word ptr [bp + 0x26e]
0x1382c: lea di, word ptr [bp + 0x226]
0x13830: mov dx, word ptr [si]
0x13832: sub dx, 3
0x13835: mov word ptr [di], dx
0x13837: add dx, 3
0x1383a: sub dx, 0xf9c7
0x1383e: cmp word ptr [si], dx
0x13840: jb 0x13844
0x13842: jmp 0x1389e
2018-12-17T22:31:09.85644653Z 66 PC: 1384d | Move file pointer
2018-12-17T22:31:09.857734344Z 64 PC: 13858 | Write file or device (Write 31 bytes on handle 5)
2018-12-17T22:31:09.860576631Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.863034761Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.865475301Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.868377423Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.870885841Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.873335896Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.87612137Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.892998484Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.895688342Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.898256862Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.901201312Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.904327344Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.906780664Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.909353151Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.912973798Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.915552775Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.918057537Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.92162349Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.924209713Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.926857898Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.930290121Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.932847076Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.935661031Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.941543628Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.944485653Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.948209718Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.951420597Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.953206253Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.955021626Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.957416555Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.959304738Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.961263397Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.963726692Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.96551321Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.96768909Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.970627157Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.972366416Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.974433599Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.976817483Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.978701822Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.980510233Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.982887579Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.985054284Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.986862264Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.989176254Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.990944624Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.993767151Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.99575143Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.997551878Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:09.999989748Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.002262399Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.004155262Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.006627688Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.008701011Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.010657089Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.013313841Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.015376517Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.017217454Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.019718042Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.021816136Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.023672743Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.02593858Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.027933809Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.02979253Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.03242813Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.03419128Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.036017841Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.038398471Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.040143278Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.041971476Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.044563463Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.046750377Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.04851567Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.050859824Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.052598533Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.054481154Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.057054193Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.058885226Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.061381448Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.063684393Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.066120903Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.068782606Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.07070494Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.072907638Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.075699367Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.077531449Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.079220763Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.081251766Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.083320081Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.08539572Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.087823104Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.090276757Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.092485865Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.096391456Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.09834948Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.1004001Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.103102174Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.105826015Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.10773107Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.111301336Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.114373864Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.116953841Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.120193553Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.122081777Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.125194849Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.128449907Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.131034816Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.133181418Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.135875269Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.138727502Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.141966308Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.144399171Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.146312988Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.149157149Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.151654383Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.153689641Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.156965407Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.158994982Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.160987367Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.164203514Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.166597279Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.169291083Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.171584705Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.173988365Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.176374947Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.179288182Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.182024127Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.183977116Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.185996148Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.18762496Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.190002071Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.191817853Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.193642937Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.196042029Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.198757504Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.201672636Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.205051601Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.207949083Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.211064346Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.213888934Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.21668987Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.219796856Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.222420529Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.2252179Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.228008074Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.229952007Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.231771634Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.234060302Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.235851567Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.237671261Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.240241221Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.242145526Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.244424447Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.246612922Z 66 PC: 13882 | Move file pointer
2018-12-17T22:31:10.247611289Z 64 PC: 1388d | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:31:10.249817457Z 87 PC: 1389a | Get or set file date and time
2018-12-17T22:31:10.251498973Z 62 PC: 1389e | Close file
2018-12-17T22:31:10.256348928Z 79 PC: 137e1 | Find next file
2018-12-17T22:31:10.259119729Z 61 PC: 137ef | Open file (Filename = 'HELLO.COM')
2018-12-17T22:31:10.265585417Z 63 PC: 137fb | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:31:10.27258744Z 44 PC: 1380d | Get time 0x1380d: lea di, word ptr [bp + 0x110]
0x13811: add word ptr [di], dx
0x13813: mov cx, 2
0x13816: cmp byte ptr [di], 0
0x13819: jne 0x1381e
0x1381b: add byte ptr [di], 1
0x1381e: inc di
0x1381f: loop 0x13816
0x13821: mov di, 0
0x13824: mov cx, word ptr [bp + 0x26e]
0x13828: lea si, word ptr [bp + 0x26e]
0x1382c: lea di, word ptr [bp + 0x226]
0x13830: mov dx, word ptr [si]
0x13832: sub dx, 3
0x13835: mov word ptr [di], dx
0x13837: add dx, 3
0x1383a: sub dx, 0xf9c7
0x1383e: cmp word ptr [si], dx
0x13840: jb 0x13844
0x13842: jmp 0x1389e
2018-12-17T22:31:10.27593742Z 66 PC: 1384d | Move file pointer
2018-12-17T22:31:10.277761924Z 64 PC: 13858 | Write file or device (Write 31 bytes on handle 5)
2018-12-17T22:31:10.280678175Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.284836144Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.287746659Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.290994822Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.293652461Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.296558121Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.298670616Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.302059219Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.30398612Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.307544341Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.309634668Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.311601897Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.314720305Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.316709605Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.31927046Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.322904537Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.325824911Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.328043389Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.330380348Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.332316568Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.33418112Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.336588627Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.338395395Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.340377384Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.34257218Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.344293105Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.346684559Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.349248689Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.350980232Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.353490188Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.355250583Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.357014971Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.359335656Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.361086355Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.363043156Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.365334489Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.367074055Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.369510506Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.371281889Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.37330309Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.375655458Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.377380511Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.379294122Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.381606924Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.383374569Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.38540648Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.387684136Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.389388565Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.391311364Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.393526431Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.3952769Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.39761793Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.399285758Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.401014392Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.403273391Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.405025512Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.407213908Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.409414734Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.411110349Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.413039509Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.415142888Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.416956226Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.419293134Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.421049169Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.423292578Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.42569749Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.427478547Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.429270457Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.431830289Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.433705414Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.435582561Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.43793134Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.439638194Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.441520546Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.444509909Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.44706366Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.450284747Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.452073324Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.453890588Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.456227829Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.458084642Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.459867844Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.462454817Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.464285123Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.466261327Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.46843513Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.470278615Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.472800916Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.474668897Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.476443754Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.478782512Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.480565055Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.482393519Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.484729792Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.486506615Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.488852942Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.490700217Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.492461056Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.494914656Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.496814103Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.499094786Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.501553834Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.503440621Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.505389851Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.507928766Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.509781718Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.511682942Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.518734501Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.521722521Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.524576087Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.526585675Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.528370516Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.530867157Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.532751023Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.534617533Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.537088551Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.538889546Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.540777699Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.542999433Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.544774477Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.547451748Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.55009039Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.551870375Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.554448114Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.556277932Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.558115Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.560510176Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.562328405Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.564373495Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.566646502Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.568514692Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.571035217Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.572805814Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.574982803Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.577234317Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.579147398Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.580891883Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.583178777Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.58500084Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.587771305Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.589547768Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.591420097Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.594028853Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.595817517Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.597611418Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.600186903Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.60226792Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.604084559Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.60674407Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.60899364Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.612587749Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.615788457Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.618623652Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.620959648Z 66 PC: 13882 | Move file pointer
2018-12-17T22:31:10.622165967Z 64 PC: 1388d | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:31:10.623871083Z 87 PC: 1389a | Get or set file date and time
2018-12-17T22:31:10.625520821Z 62 PC: 1389e | Close file
2018-12-17T22:31:10.630245611Z 79 PC: 137e1 | Find next file
2018-12-17T22:31:10.632153652Z 61 PC: 137ef | Open file (Filename = 'PHANG.COM')
2018-12-17T22:31:10.636762864Z 63 PC: 137fb | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:31:10.640835596Z 44 PC: 1380d | Get time 0x1380d: lea di, word ptr [bp + 0x110]
0x13811: add word ptr [di], dx
0x13813: mov cx, 2
0x13816: cmp byte ptr [di], 0
0x13819: jne 0x1381e
0x1381b: add byte ptr [di], 1
0x1381e: inc di
0x1381f: loop 0x13816
0x13821: mov di, 0
0x13824: mov cx, word ptr [bp + 0x26e]
0x13828: lea si, word ptr [bp + 0x26e]
0x1382c: lea di, word ptr [bp + 0x226]
0x13830: mov dx, word ptr [si]
0x13832: sub dx, 3
0x13835: mov word ptr [di], dx
0x13837: add dx, 3
0x1383a: sub dx, 0xf9c7
0x1383e: cmp word ptr [si], dx
0x13840: jb 0x13844
0x13842: jmp 0x1389e
2018-12-17T22:31:10.643909546Z 66 PC: 1384d | Move file pointer
2018-12-17T22:31:10.645443346Z 64 PC: 13858 | Write file or device (Write 31 bytes on handle 5)
2018-12-17T22:31:10.64833633Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.652818462Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.655629461Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.658020241Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.660866826Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.663357234Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.66618518Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.669042479Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.671447643Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.674510874Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.676950423Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.679493265Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.683826766Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.686827807Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.690016918Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.692968631Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.695492361Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.698566533Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.701096863Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.703611449Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.707016336Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.709877827Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.713534962Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.716491258Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.719349917Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.724065939Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.726681691Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.729249872Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.732508368Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.735253214Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.738488033Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.741513059Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.744315741Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.747597114Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.750211663Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.752934774Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.756373817Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.759243566Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.762950065Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.765963684Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.768768318Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.772186391Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.774877546Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.777430643Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.781074591Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.783667683Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.78667267Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.790299179Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.793241495Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.79683858Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.800407501Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.803276388Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.806756606Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.809700388Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.813239796Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.816024678Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.818889882Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.82235268Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.825231544Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.832360118Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.835427342Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.838283693Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.841971304Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.844615346Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.847391256Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.850275467Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.852771968Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.856323485Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.858911156Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.861566098Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.865197824Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.867987647Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.872683658Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.875521123Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.878297559Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.882147228Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.884744276Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.887280518Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.890815021Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.893489155Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.89666943Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.899519023Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.902396693Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.906044208Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.908816802Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.912755543Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.915603499Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.918404147Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.921681413Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.924446716Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.927742337Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.930465029Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.933472184Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.937165469Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.939897462Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.943604593Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.947222028Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.950015762Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.953413692Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.95695248Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.961322502Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.964226981Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.967071879Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.970440411Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.973296029Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.97643652Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.979423928Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.982245699Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.986008118Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.988785479Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.991740561Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.994588537Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:10.997160266Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.000709377Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.003263627Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.005778159Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.008988443Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.011526439Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.014760354Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.017295422Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.019837978Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.023882599Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.026447898Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.029432786Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.0326665Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.03538661Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.038994977Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.041818425Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.049552445Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.052118151Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.054590474Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.058224899Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.061419122Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.064641116Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.067166743Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.069633433Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.073121652Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.076020915Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.0804731Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.083305751Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.08597533Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.089860001Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.092405592Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.095765236Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.099092535Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.10160385Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.104691654Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.107197761Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.109768129Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.113934542Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.117101842Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.120363669Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.12311341Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.125644965Z 66 PC: 13882 | Move file pointer
2018-12-17T22:31:11.127376111Z 64 PC: 1388d | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:31:11.130075582Z 87 PC: 1389a | Get or set file date and time
2018-12-17T22:31:11.132783234Z 62 PC: 1389e | Close file
2018-12-17T22:31:11.140662327Z 79 PC: 137e1 | Find next file
2018-12-17T22:31:11.143216223Z 61 PC: 137ef | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:31:11.149739368Z 63 PC: 137fb | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:31:11.155870355Z 44 PC: 1380d | Get time 0x1380d: lea di, word ptr [bp + 0x110]
0x13811: add word ptr [di], dx
0x13813: mov cx, 2
0x13816: cmp byte ptr [di], 0
0x13819: jne 0x1381e
0x1381b: add byte ptr [di], 1
0x1381e: inc di
0x1381f: loop 0x13816
0x13821: mov di, 0
0x13824: mov cx, word ptr [bp + 0x26e]
0x13828: lea si, word ptr [bp + 0x26e]
0x1382c: lea di, word ptr [bp + 0x226]
0x13830: mov dx, word ptr [si]
0x13832: sub dx, 3
0x13835: mov word ptr [di], dx
0x13837: add dx, 3
0x1383a: sub dx, 0xf9c7
0x1383e: cmp word ptr [si], dx
0x13840: jb 0x13844
0x13842: jmp 0x1389e
2018-12-17T22:31:11.160331931Z 66 PC: 1384d | Move file pointer
2018-12-17T22:31:11.161643096Z 64 PC: 13858 | Write file or device (Write 31 bytes on handle 5)
2018-12-17T22:31:11.16422817Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.168312316Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.170965882Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.174137589Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.176622276Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.179004386Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.181996245Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.184627359Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.187761625Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.190303782Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.192729693Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.195980207Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.198500221Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.201581708Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.203990766Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.206668185Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.209242772Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.211136771Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.21427193Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.216741175Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.219722783Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.222268518Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.224696414Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.227826383Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.2302002Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.232987353Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.235381033Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.238379273Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.241087294Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.243816905Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.246783454Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.249177508Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.251682354Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.25439005Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.256796139Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.25984567Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.262318367Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.265161007Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.267699909Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.270211569Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.273360183Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.27598098Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.278910824Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.281770461Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.28456551Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.287759758Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.290486756Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.293917196Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.296656145Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.299554746Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.302950928Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.305825278Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.309895094Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.31576493Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.31972964Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.322419303Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.325409127Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.328533781Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.331055115Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.334133266Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.335972257Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.33790402Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.340046315Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.341788632Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.343853583Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.345764342Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.349806391Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.351659122Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.355064434Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.359288527Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.361300025Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.363902108Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.365999251Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.368101951Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.370161556Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.371957183Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.375008971Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.376851309Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.37938285Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.382392132Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.384923003Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.388977169Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.392230258Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.39630313Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.398771555Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.401845452Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.405307502Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.407941956Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.411649435Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.414330851Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.418442849Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.421027324Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.42372467Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.438802933Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.441454426Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.444478586Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.447179902Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.449714983Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.452835513Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.45578981Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.459025608Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.461827267Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.465573164Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.468214613Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.470760692Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.474443636Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.477625944Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.480494426Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.483051783Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.485733051Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.488913566Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.491886064Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.495303411Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.497735537Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.500402484Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.503012304Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.505347809Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.508444435Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.510807457Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.514110973Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.517043973Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.521421684Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.524182474Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.527009236Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.530895071Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.534142079Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.538639222Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.54177859Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.544536941Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.548475683Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.551953082Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.55509541Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.557611589Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.560223407Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.563163488Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.566003746Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.570121311Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.572940405Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.576842728Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.579608943Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.582353448Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.58549083Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.587961553Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.591351766Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.594028076Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.59648258Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.599014039Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.602050638Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.605519429Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.608092362Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.610905125Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.613431771Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.61597722Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.618885249Z 66 PC: 13882 | Move file pointer
2018-12-17T22:31:11.6201173Z 64 PC: 1388d | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:31:11.623276874Z 87 PC: 1389a | Get or set file date and time
2018-12-17T22:31:11.625739236Z 62 PC: 1389e | Close file
2018-12-17T22:31:11.63337471Z 79 PC: 137e1 | Find next file
2018-12-17T22:31:11.63603343Z 61 PC: 137ef | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:31:11.642753732Z 63 PC: 137fb | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:31:11.649996284Z 44 PC: 1380d | Get time 0x1380d: lea di, word ptr [bp + 0x110]
0x13811: add word ptr [di], dx
0x13813: mov cx, 2
0x13816: cmp byte ptr [di], 0
0x13819: jne 0x1381e
0x1381b: add byte ptr [di], 1
0x1381e: inc di
0x1381f: loop 0x13816
0x13821: mov di, 0
0x13824: mov cx, word ptr [bp + 0x26e]
0x13828: lea si, word ptr [bp + 0x26e]
0x1382c: lea di, word ptr [bp + 0x226]
0x13830: mov dx, word ptr [si]
0x13832: sub dx, 3
0x13835: mov word ptr [di], dx
0x13837: add dx, 3
0x1383a: sub dx, 0xf9c7
0x1383e: cmp word ptr [si], dx
0x13840: jb 0x13844
0x13842: jmp 0x1389e
2018-12-17T22:31:11.652682145Z 66 PC: 1384d | Move file pointer
2018-12-17T22:31:11.654844328Z 64 PC: 13858 | Write file or device (Write 31 bytes on handle 5)
2018-12-17T22:31:11.66252835Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.665152386Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.667852921Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.670572137Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.674014828Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.676618744Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.67984043Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.683030224Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.686064658Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.688524297Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.691033117Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.694108968Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.697273954Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.704423285Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.715733214Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.718619682Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.722589228Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.725393641Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.737271909Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.739068848Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.740787353Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.742968029Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.744807694Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.747284142Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.749344062Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.752964926Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.75577261Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.758211576Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.761437906Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.763742908Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.76697681Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.769476541Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.772933714Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.776901439Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.780336112Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.784319054Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.787191458Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.791548998Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.794592824Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.79719709Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.800789293Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.803366538Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.806441222Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.808942049Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.811518356Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.814691963Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.817556943Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.820789446Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.823419568Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.82661433Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.829283465Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.831762459Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.834820921Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.837635782Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.841305076Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.844035822Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.847106994Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.849932405Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.853247711Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.856636657Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.859275878Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.862727295Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.865230993Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.868649634Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.871248525Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.873676762Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.876971041Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.879564761Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.882662029Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.885406013Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.888556113Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.891093773Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.893608327Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.896731637Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.899514126Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.904286023Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.907038821Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.910299191Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.913514797Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.916710635Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.919459835Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.922045347Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.925678662Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.928997353Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.933441591Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.936335082Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.940390546Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.9432919Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.946149424Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.950081798Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.952738842Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.956809831Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.959435586Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.9632865Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.966113866Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.968954821Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.971917485Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.974447593Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.977721642Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.980860882Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.984217571Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.986824051Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.990511501Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.993572148Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.996346909Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:11.999146676Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.001677441Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.004770282Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.008820689Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.011928264Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.014459145Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.017616621Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.020145782Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.022654959Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.02564456Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.028462551Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.031889894Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.034913075Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.038004495Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.041339958Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.043891027Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.047325235Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.053838811Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.057160956Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.060253546Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.063327037Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.066531916Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.069187462Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.071981283Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.074924777Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.078031825Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.081394766Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.086260644Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.089057719Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.092573088Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.095422332Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.099453008Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.103359025Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.106366844Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.110310985Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.11303494Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.116796703Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.119721389Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.122550158Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.126145862Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.12858514Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.131843214Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.134419607Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.137819041Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.140547377Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.14402522Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.147229112Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.150145721Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.15332098Z 66 PC: 13882 | Move file pointer
2018-12-17T22:31:12.15534693Z 64 PC: 1388d | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:31:12.162964454Z 87 PC: 1389a | Get or set file date and time
2018-12-17T22:31:12.164739942Z 62 PC: 1389e | Close file
2018-12-17T22:31:12.173494049Z 79 PC: 137e1 | Find next file
2018-12-17T22:31:12.176073288Z 61 PC: 137ef | Open file (Filename = 'PAH.COM')
2018-12-17T22:31:12.183473597Z 63 PC: 137fb | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:31:12.190212026Z 44 PC: 1380d | Get time 0x1380d: lea di, word ptr [bp + 0x110]
0x13811: add word ptr [di], dx
0x13813: mov cx, 2
0x13816: cmp byte ptr [di], 0
0x13819: jne 0x1381e
0x1381b: add byte ptr [di], 1
0x1381e: inc di
0x1381f: loop 0x13816
0x13821: mov di, 0
0x13824: mov cx, word ptr [bp + 0x26e]
0x13828: lea si, word ptr [bp + 0x26e]
0x1382c: lea di, word ptr [bp + 0x226]
0x13830: mov dx, word ptr [si]
0x13832: sub dx, 3
0x13835: mov word ptr [di], dx
0x13837: add dx, 3
0x1383a: sub dx, 0xf9c7
0x1383e: cmp word ptr [si], dx
0x13840: jb 0x13844
0x13842: jmp 0x1389e
2018-12-17T22:31:12.192952498Z 66 PC: 1384d | Move file pointer
2018-12-17T22:31:12.195482289Z 64 PC: 13858 | Write file or device (Write 31 bytes on handle 5)
2018-12-17T22:31:12.198301897Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.202529932Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.205378834Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.209258857Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.212522151Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.215424218Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.219589827Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.222462796Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.226298858Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.229547866Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.233517018Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.236167467Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.238858202Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.242241484Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.245081681Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.248451342Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.251297289Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.255064084Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.258141764Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.261264419Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.264674227Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.267297054Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.270613262Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.272454003Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.27497833Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.276831102Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.279474822Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.281397155Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.283385921Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.285781257Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.28764175Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.290194059Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.291991506Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.294939559Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.296767446Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.299284889Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.301135778Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.303818528Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.307743949Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.310530161Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.314845605Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.317482478Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.321126442Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.323830121Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.326626043Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.329847055Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.332586998Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.336494391Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.33926744Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.343022886Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.346163055Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.349134911Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.352755293Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.3546963Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.357089234Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.358943491Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.361353596Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.36316151Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.365412219Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.367468209Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.369431454Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.371789471Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.373612885Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.376382874Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.378219099Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.381114411Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.38296546Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.38579842Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.387624434Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.390080288Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.391925458Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.394114892Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.396528011Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.398394171Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.400866855Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.402704808Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.405471054Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.40726093Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.409197001Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.411323394Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.413285769Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.415745814Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.417550435Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.419877628Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.42162818Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.424052693Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.42580909Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.428212253Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.429973517Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.432462339Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.434261664Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.436180085Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.438303177Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.440032879Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.442329818Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.444056014Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.446570812Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.448394168Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.450781816Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.452545113Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.455106112Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.457064641Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.459902188Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.461728851Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.463674086Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.46593978Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.467713597Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.470167859Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.47244037Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.474948413Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.477052983Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.479491315Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.481306925Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.483599675Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.48545041Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.487675317Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.489615356Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.491626753Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.493684032Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.495980215Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.498384669Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.500218669Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.503642542Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.506234556Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.509959264Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.51228871Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.515336432Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.518073191Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.522185213Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.525092172Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.529324713Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.532261562Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.53534269Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.539905324Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.54282939Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.547003512Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.550604935Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.554500319Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.557406623Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.561622448Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.564793666Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.568314609Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.571836244Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.574919738Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.578329051Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.581327218Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.585537612Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.588446171Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.593031273Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.595564069Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.598458809Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.601345607Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.603822571Z 64 PC: 13872 | Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:31:12.607396135Z 66 PC: 13882 | Move file pointer
2018-12-17T22:31:12.608871827Z 64 PC: 1388d | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:31:12.612275592Z 87 PC: 1389a | Get or set file date and time
2018-12-17T22:31:12.613753901Z 62 PC: 1389e | Close file
2018-12-17T22:31:12.623078219Z 79 PC: 137e1 | Find next file
2018-12-17T22:31:12.625841821Z 61 PC: 137ef | Open file (Filename = 'TEST.COM')
2018-12-17T22:31:12.634541025Z 63 PC: 137fb | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:31:12.637437162Z 79 PC: 137e1 | Find next file
2018-12-17T22:31:12.640160996Z 26 PC: 138aa | Set disk transfer address
2018-12-17T22:31:13.379041557Z 44 PC: 12a50 | Get time 0x12a50: xor ax, ax
0x12a52: xor bx, bx
0x12a54: mov bx, 0x3c
0x12a57: mov al, ch
0x12a59: mul bl
0x12a5b: xor bx, bx
0x12a5d: mov bl, cl
0x12a5f: add ax, bx
0x12a61: mov cx, dx
0x12a63: mov bx, 0x3c
0x12a66: mul bx
0x12a68: xor bx, bx
0x12a6a: mov bl, ch
0x12a6c: add ax, bx
0x12a6e: mov word ptr [0x41c4], ax
0x12a71: mov di, 0
0x12a74: mov bx, 0
0x12a77: mov cx, 2
0x12a7a: inc word ptr [0xfe7]
0x12a7e: cmp word ptr [0xfe7], 0