Sample viewer

vx.netlux.org/Virus.DOS.Kurt.704

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:48:45.031470519Z 65 PC: 12a91 | Delete file (Filename = 'chklist.ms')
2018-12-17T22:48:45.038092191Z 67 PC: 12a9d | Get or set file attributes
2018-12-17T22:48:45.045414209Z 65 PC: 12aa3 | Delete file (Filename = 'anti-vir.dat')
2018-12-17T22:48:45.051762817Z 26 PC: 12abc | Set disk transfer address
2018-12-17T22:48:45.053224373Z 78 PC: 12ac7 | Find first file
2018-12-17T22:48:45.060328511Z 67 PC: 12ad3 | Get or set file attributes
2018-12-17T22:48:45.071862673Z 67 PC: 12ae0 | Get or set file attributes
2018-12-17T22:48:45.310245616Z 61 PC: 12ae6 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:48:45.319076358Z 87 PC: 12b90 | Get or set file date and time
2018-12-17T22:48:45.323366879Z 62 PC: 12b96 | Close file
2018-12-17T22:48:45.331796238Z 67 PC: 12ba5 | Get or set file attributes
2018-12-17T22:48:45.343289543Z 79 PC: 12ac7 | Find next file
2018-12-17T22:48:45.346739966Z 67 PC: 12ad3 | Get or set file attributes
2018-12-17T22:48:45.353174947Z 67 PC: 12ae0 | Get or set file attributes
2018-12-17T22:48:45.364250968Z 61 PC: 12ae6 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:48:45.37250166Z 87 PC: 12b90 | Get or set file date and time
2018-12-17T22:48:45.374464849Z 62 PC: 12b96 | Close file
2018-12-17T22:48:45.382446616Z 67 PC: 12ba5 | Get or set file attributes
2018-12-17T22:48:45.394727661Z 79 PC: 12ac7 | Find next file
2018-12-17T22:48:45.39792013Z 67 PC: 12ad3 | Get or set file attributes
2018-12-17T22:48:45.404319303Z 67 PC: 12ae0 | Get or set file attributes
2018-12-17T22:48:45.415618163Z 61 PC: 12ae6 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:48:45.423508488Z 87 PC: 12b90 | Get or set file date and time
2018-12-17T22:48:45.425179077Z 62 PC: 12b96 | Close file
2018-12-17T22:48:45.433666915Z 67 PC: 12ba5 | Get or set file attributes
2018-12-17T22:48:45.448371844Z 79 PC: 12ac7 | Find next file
2018-12-17T22:48:45.451840351Z 67 PC: 12ad3 | Get or set file attributes
2018-12-17T22:48:45.459602937Z 67 PC: 12ae0 | Get or set file attributes
2018-12-17T22:48:45.47171807Z 61 PC: 12ae6 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:48:45.479588097Z 87 PC: 12b90 | Get or set file date and time
2018-12-17T22:48:45.486702234Z 62 PC: 12b96 | Close file
2018-12-17T22:48:45.493240418Z 67 PC: 12ba5 | Get or set file attributes
2018-12-17T22:48:45.503269433Z 79 PC: 12ac7 | Find next file
2018-12-17T22:48:45.505647651Z 67 PC: 12ad3 | Get or set file attributes
2018-12-17T22:48:45.515783115Z 67 PC: 12ae0 | Get or set file attributes
2018-12-17T22:48:45.526988549Z 61 PC: 12ae6 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:48:45.536125847Z 87 PC: 12b90 | Get or set file date and time
2018-12-17T22:48:45.541750666Z 62 PC: 12b96 | Close file
2018-12-17T22:48:45.551271254Z 67 PC: 12ba5 | Get or set file attributes
2018-12-17T22:48:45.56623497Z 79 PC: 12ac7 | Find next file
2018-12-17T22:48:45.570085866Z 67 PC: 12ad3 | Get or set file attributes
2018-12-17T22:48:45.584789873Z 67 PC: 12ae0 | Get or set file attributes
2018-12-17T22:48:45.604924264Z 61 PC: 12ae6 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:48:45.613692008Z 87 PC: 12b90 | Get or set file date and time
2018-12-17T22:48:45.615876412Z 62 PC: 12b96 | Close file
2018-12-17T22:48:45.623709941Z 67 PC: 12ba5 | Get or set file attributes
2018-12-17T22:48:45.635809635Z 79 PC: 12ac7 | Find next file
2018-12-17T22:48:45.639989118Z 67 PC: 12ad3 | Get or set file attributes
2018-12-17T22:48:45.646537241Z 67 PC: 12ae0 | Get or set file attributes
2018-12-17T22:48:45.663353919Z 61 PC: 12ae6 | Open file (Filename = 'PAH.COM')
2018-12-17T22:48:45.671266246Z 87 PC: 12b90 | Get or set file date and time
2018-12-17T22:48:45.673577899Z 62 PC: 12b96 | Close file
2018-12-17T22:48:45.681246918Z 67 PC: 12ba5 | Get or set file attributes
2018-12-17T22:48:45.696212177Z 79 PC: 12ac7 | Find next file
2018-12-17T22:48:45.702024959Z 67 PC: 12ad3 | Get or set file attributes
2018-12-17T22:48:45.709150176Z 67 PC: 12ae0 | Get or set file attributes
2018-12-17T22:48:45.720860459Z 61 PC: 12ae6 | Open file (Filename = 'TEST.COM')
2018-12-17T22:48:45.728102366Z 63 PC: 12b1d | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:48:45.735110604Z 87 PC: 12b90 | Get or set file date and time
2018-12-17T22:48:45.737779438Z 62 PC: 12b96 | Close file
2018-12-17T22:48:45.746086768Z 67 PC: 12ba5 | Get or set file attributes
2018-12-17T22:48:45.757143301Z 79 PC: 12ac7 | Find next file
2018-12-17T22:48:45.761520025Z 26 PC: 12bb9 | Set disk transfer address
2018-12-17T22:48:45.762952096Z 42 PC: 12bbd | Get date 0x12bbd: cmp dh, 4
0x12bc0: jne 0x12c37
0x12bc2: cmp dl, 5
0x12bc5: je 0x12bca
0x12bc7: jmp 0x12c37
0x12bc9: nop
0x12bca: nop
0x12bcb: lea dx, word ptr [bp + 0x380]
0x12bcf: mov ah, 0x3b
0x12bd1: int 0x21
0x12bd3: jb 0x12c37
0x12bd5: lea ax, word ptr [bp + 0x2a8]
0x12bd9: push ax
0x12bda: push cs
0x12bdb: pushf
0x12bdc: mov cl, 0x13
0x12bde: lea dx, word ptr [bp + 0x39b]
0x12be2: push cs
0x12be3: pop ds
0x12be4: ljmp ptr [bp + 0x397]

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9661,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:23:23.996714336Z 65 PC: 12a91 | Delete file (Filename = 'chklist.ms')
2018-12-25T12:23:24.003723243Z 67 PC: 12a9d | Get or set file attributes
2018-12-25T12:23:24.011672206Z 65 PC: 12aa3 | Delete file (Filename = 'anti-vir.dat')
2018-12-25T12:23:24.01936495Z 26 PC: 12abc | Set disk transfer address
2018-12-25T12:23:24.021014268Z 78 PC: 12ac7 | Find first file
2018-12-25T12:23:24.02880384Z 67 PC: 12ad3 | Get or set file attributes
2018-12-25T12:23:24.0355612Z 67 PC: 12ae0 | Get or set file attributes
2018-12-25T12:23:24.053695918Z 61 PC: 12ae6 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:24.06224834Z 87 PC: 12b90 | Get or set file date and time
2018-12-25T12:23:24.064235341Z 62 PC: 12b96 | Close file
2018-12-25T12:23:24.072405843Z 67 PC: 12ba5 | Get or set file attributes
2018-12-25T12:23:24.084152504Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.087296405Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.09470532Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.105976919Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.114170862Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.116244454Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.124198409Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.135864577Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.139189773Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.145916253Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.16112037Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.174711859Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.177046607Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.188262162Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.201050042Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.203932128Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.210931234Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.224551436Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.231837915Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.234153284Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.241826526Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.252841138Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.256427074Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.264100232Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.288653108Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.296759966Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.299098401Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.307114519Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.318465053Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.32218182Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.328957173Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.34342516Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.35169826Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.353723371Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.361632578Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.373338489Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.376673Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.383373751Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.398088752Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.406923464Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.409000204Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.417709346Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.42921707Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.432562987Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.43950641Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.450940515Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.458757259Z 63 PC: 12b1d | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:23:24.466744479Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.4698587Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.47813Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.489355333Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.493288611Z 26 PC: 12bb9 | Set disk transfer address
2018-12-25T12:23:24.494879518Z 42 PC: 12bbd | Get date 0x12bbd: cmp dh, 4
0x12bc0: jne 0x12c37
0x12bc2: cmp dl, 5
0x12bc5: je 0x12bca
0x12bc7: jmp 0x12c37
0x12bc9: nop
0x12bca: nop
0x12bcb: lea dx, word ptr [bp + 0x380]
0x12bcf: mov ah, 0x3b
0x12bd1: int 0x21
0x12bd3: jb 0x12c37
0x12bd5: lea ax, word ptr [bp + 0x2a8]
0x12bd9: push ax
0x12bda: push cs
0x12bdb: pushf
0x12bdc: mov cl, 0x13
0x12bde: lea dx, word ptr [bp + 0x39b]
0x12be2: push cs
0x12be3: pop ds
0x12be4: ljmp ptr [bp + 0x397]

{"DateBased":true,"Day":1,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9661,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:23:24.513855526Z 65 PC: 12a91 | Delete file (Filename = 'chklist.ms')
2018-12-25T12:23:24.520624735Z 67 PC: 12a9d | Get or set file attributes
2018-12-25T12:23:24.526299244Z 65 PC: 12aa3 | Delete file (Filename = 'anti-vir.dat')
2018-12-25T12:23:24.531982414Z 26 PC: 12abc | Set disk transfer address
2018-12-25T12:23:24.533418864Z 78 PC: 12ac7 | Find first file
2018-12-25T12:23:24.539849406Z 67 PC: 12ad3 | Get or set file attributes
2018-12-25T12:23:24.550178115Z 67 PC: 12ae0 | Get or set file attributes
2018-12-25T12:23:24.568191018Z 61 PC: 12ae6 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:24.575641519Z 87 PC: 12b90 | Get or set file date and time
2018-12-25T12:23:24.577111421Z 62 PC: 12b96 | Close file
2018-12-25T12:23:24.583841478Z 67 PC: 12ba5 | Get or set file attributes
2018-12-25T12:23:24.594426767Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.596973484Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.602467114Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.615808552Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.627404801Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.629571091Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.63741243Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.647236882Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.649819643Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.655362406Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.667374164Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.673943732Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.675431601Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.686894971Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.701536768Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.70426158Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.711860809Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.717934027Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.722071037Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.724136485Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.730836034Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.742932675Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.746391001Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.757178764Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.766751512Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.774338866Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.776246999Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.783141184Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.793224641Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.796445853Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.801873192Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.822020397Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.832004084Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.833452255Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.847285655Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.857410358Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.86025122Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.865920194Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.878054076Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.889745329Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.891154449Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.898302842Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.907841Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.910305863Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.916510463Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.926898621Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.938355857Z 63 PC: 12b1d | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:23:24.945563619Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.947035073Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.953949587Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.963997132Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.9663195Z 26 PC: 12bb9 | Set disk transfer address
2018-12-25T12:23:24.967560147Z 42 PC: 12bbd | Get date 0x12bbd: cmp dh, 4
0x12bc0: jne 0x12c37
0x12bc2: cmp dl, 5
0x12bc5: je 0x12bca
0x12bc7: jmp 0x12c37
0x12bc9: nop
0x12bca: nop
0x12bcb: lea dx, word ptr [bp + 0x380]
0x12bcf: mov ah, 0x3b
0x12bd1: int 0x21
0x12bd3: jb 0x12c37
0x12bd5: lea ax, word ptr [bp + 0x2a8]
0x12bd9: push ax
0x12bda: push cs
0x12bdb: pushf
0x12bdc: mov cl, 0x13
0x12bde: lea dx, word ptr [bp + 0x39b]
0x12be2: push cs
0x12be3: pop ds
0x12be4: ljmp ptr [bp + 0x397]

{"DateBased":true,"Day":5,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9661,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:23:24.757027831Z 65 PC: 12a91 | Delete file (Filename = 'chklist.ms')
2018-12-25T12:23:24.763823504Z 67 PC: 12a9d | Get or set file attributes
2018-12-25T12:23:24.770274904Z 65 PC: 12aa3 | Delete file (Filename = 'anti-vir.dat')
2018-12-25T12:23:24.776073918Z 26 PC: 12abc | Set disk transfer address
2018-12-25T12:23:24.777198055Z 78 PC: 12ac7 | Find first file
2018-12-25T12:23:24.783642361Z 67 PC: 12ad3 | Get or set file attributes
2018-12-25T12:23:24.79088692Z 67 PC: 12ae0 | Get or set file attributes
2018-12-25T12:23:24.80698313Z 61 PC: 12ae6 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:24.81397653Z 87 PC: 12b90 | Get or set file date and time
2018-12-25T12:23:24.815805975Z 62 PC: 12b96 | Close file
2018-12-25T12:23:24.822583253Z 67 PC: 12ba5 | Get or set file attributes
2018-12-25T12:23:24.833365534Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.835967479Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.841859725Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.852900528Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.860063278Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.861460749Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.869340122Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.881814602Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.884819835Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.891627865Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.902116254Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.908850665Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.910550345Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.91833248Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.928526864Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.93132573Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.937666528Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.950792594Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:24.95764575Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:24.960420471Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:24.968909077Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:24.979325547Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:24.98294142Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:24.988613638Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:24.998274583Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:25.006390373Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:25.007916774Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:25.01808721Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:25.028931469Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:25.031819748Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:25.037774186Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:25.04823199Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:25.056084511Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:25.057912556Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:25.067963877Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:25.080692166Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:25.08359166Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:25.089955648Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:25.100104256Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:25.106642606Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:25.109154406Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:25.115885005Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:25.12913805Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:25.13287085Z 67 PC: 12ad3 | Get or set file attributes (See above)
2018-12-25T12:23:25.144897774Z 67 PC: 12ae0 | Get or set file attributes (See above)
2018-12-25T12:23:25.155218914Z 61 PC: 12ae6 | Open file (See above)
2018-12-25T12:23:25.162326281Z 63 PC: 12b1d | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:23:25.169735307Z 87 PC: 12b90 | Get or set file date and time (See above)
2018-12-25T12:23:25.171529166Z 62 PC: 12b96 | Close file (See above)
2018-12-25T12:23:25.179161784Z 67 PC: 12ba5 | Get or set file attributes (See above)
2018-12-25T12:23:25.190032467Z 79 PC: 12ac7 | Find next file (See above)
2018-12-25T12:23:25.192654655Z 26 PC: 12bb9 | Set disk transfer address
2018-12-25T12:23:25.193974226Z 42 PC: 12bbd | Get date 0x12bbd: cmp dh, 4
0x12bc0: jne 0x12c37
0x12bc2: cmp dl, 5
0x12bc5: je 0x12bca
0x12bc7: jmp 0x12c37
0x12bc9: nop
0x12bca: nop
0x12bcb: lea dx, word ptr [bp + 0x380]
0x12bcf: mov ah, 0x3b
0x12bd1: int 0x21
0x12bd3: jb 0x12c37
0x12bd5: lea ax, word ptr [bp + 0x2a8]
0x12bd9: push ax
0x12bda: push cs
0x12bdb: pushf
0x12bdc: mov cl, 0x13
0x12bde: lea dx, word ptr [bp + 0x39b]
0x12be2: push cs
0x12be3: pop ds
0x12be4: ljmp ptr [bp + 0x397]
2018-12-25T12:23:25.197325703Z 59 PC: 12bd3 | Change current directory
2018-12-25T12:23:25.217113486Z 60 PC: 12c17 | Create or truncate file
2018-12-25T12:23:25.228229313Z 64 PC: 12c27 | Write file or device (Write 77 bytes on handle 5)
2018-12-25T12:23:25.233033471Z 62 PC: 12c2b | Close file
2018-12-25T12:23:25.240971924Z 9 PC: 12c33 | Display string (String= ' KURT COBAIN Virus v0.3 pre_� testing 1994(w) TruchoSoftware - Argentina ')