Sample viewer

vx.netlux.org/Virus.DOS.Wit.2663

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:49:10.542697009Z	13	PC: 12ab4 \| Disk reset
2018-12-17T22:49:10.54567979Z	26	PC: 12b69 \| Set disk transfer address
2018-12-17T22:49:10.547442003Z	71	PC: 12b7b \| Get current directory
2018-12-17T22:49:10.550629613Z	78	PC: 12b84 \| Find first file
2018-12-17T22:49:10.560300982Z	67	PC: 12b9e \| Get or set file attributes
2018-12-17T22:49:10.576322658Z	61	PC: 12bb0 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:49:10.582809732Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-17T22:49:10.589512684Z	66	PC: 12bf5 \| Move file pointer
2018-12-17T22:49:10.591078281Z	66	PC: 12c14 \| Move file pointer
2018-12-17T22:49:10.592693665Z	64	PC: 12c30 \| Write file or device (Write 407 bytes on handle 5)
2018-12-17T22:49:10.600998531Z	64	PC: 12c3e \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:49:10.689529685Z	66	PC: 12cbd \| Move file pointer
2018-12-17T22:49:10.692052665Z	64	PC: 12ccc \| Write file or device (Write 2660 bytes on handle 5)
2018-12-17T22:49:10.700259234Z	87	PC: 12cdb \| Get or set file date and time
2018-12-17T22:49:10.702531275Z	62	PC: 12cdf \| Close file
2018-12-17T22:49:10.710132481Z	67	PC: 12cef \| Get or set file attributes
2018-12-17T22:49:10.720033582Z	79	PC: 12b84 \| Find next file
2018-12-17T22:49:10.724151224Z	67	PC: 12b9e \| Get or set file attributes
2018-12-17T22:49:10.734249258Z	61	PC: 12bb0 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:49:10.741378571Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-17T22:49:10.749493184Z	87	PC: 12cdb \| Get or set file date and time
2018-12-17T22:49:10.750877168Z	62	PC: 12cdf \| Close file
2018-12-17T22:49:10.75787926Z	67	PC: 12cef \| Get or set file attributes
2018-12-17T22:49:10.769072203Z	79	PC: 12b84 \| Find next file
2018-12-17T22:49:10.771623239Z	67	PC: 12b9e \| Get or set file attributes
2018-12-17T22:49:10.781116584Z	61	PC: 12bb0 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:49:10.78906042Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-17T22:49:10.795444385Z	66	PC: 12bf5 \| Move file pointer
2018-12-17T22:49:10.796815193Z	66	PC: 12c14 \| Move file pointer
2018-12-17T22:49:10.799508902Z	64	PC: 12c30 \| Write file or device (Write 92 bytes on handle 5)
2018-12-17T22:49:10.803273044Z	64	PC: 12c3e \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:49:10.868874132Z	66	PC: 12cbd \| Move file pointer
2018-12-17T22:49:10.872934599Z	64	PC: 12ccc \| Write file or device (Write 2660 bytes on handle 5)
2018-12-17T22:49:10.881491191Z	87	PC: 12cdb \| Get or set file date and time
2018-12-17T22:49:10.883469358Z	62	PC: 12cdf \| Close file
2018-12-17T22:49:10.892846441Z	67	PC: 12cef \| Get or set file attributes
2018-12-17T22:49:10.902545849Z	79	PC: 12b84 \| Find next file
2018-12-17T22:49:10.90520509Z	67	PC: 12b9e \| Get or set file attributes
2018-12-17T22:49:10.916619162Z	61	PC: 12bb0 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:49:10.923444892Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-17T22:49:10.930475516Z	87	PC: 12cdb \| Get or set file date and time
2018-12-17T22:49:10.932480639Z	62	PC: 12cdf \| Close file
2018-12-17T22:49:10.939454602Z	67	PC: 12cef \| Get or set file attributes
2018-12-17T22:49:10.949091715Z	79	PC: 12b84 \| Find next file
2018-12-17T22:49:10.95221429Z	67	PC: 12b9e \| Get or set file attributes
2018-12-17T22:49:10.962052285Z	61	PC: 12bb0 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:49:10.974144216Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-17T22:49:10.98108584Z	87	PC: 12cdb \| Get or set file date and time
2018-12-17T22:49:10.982695846Z	62	PC: 12cdf \| Close file
2018-12-17T22:49:10.989668815Z	67	PC: 12cef \| Get or set file attributes
2018-12-17T22:49:11.000235747Z	79	PC: 12b84 \| Find next file
2018-12-17T22:49:11.003119678Z	67	PC: 12b9e \| Get or set file attributes
2018-12-17T22:49:11.012978799Z	61	PC: 12bb0 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:49:11.020122392Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-17T22:49:11.027038642Z	66	PC: 12bf5 \| Move file pointer
2018-12-17T22:49:11.028447559Z	66	PC: 12c14 \| Move file pointer
2018-12-17T22:49:11.030707245Z	64	PC: 12c30 \| Write file or device (Write 501 bytes on handle 5)
2018-12-17T22:49:11.039130925Z	64	PC: 12c3e \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:49:11.090265868Z	66	PC: 12cbd \| Move file pointer
2018-12-17T22:49:11.092274544Z	64	PC: 12ccc \| Write file or device (Write 2660 bytes on handle 5)
2018-12-17T22:49:11.10183885Z	87	PC: 12cdb \| Get or set file date and time
2018-12-17T22:49:11.104307268Z	62	PC: 12cdf \| Close file
2018-12-17T22:49:11.112729824Z	67	PC: 12cef \| Get or set file attributes
2018-12-17T22:49:11.122858016Z	79	PC: 12b84 \| Find next file
2018-12-17T22:49:11.125405175Z	67	PC: 12b9e \| Get or set file attributes
2018-12-17T22:49:11.135260827Z	61	PC: 12bb0 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:49:11.142149249Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-17T22:49:11.1488319Z	87	PC: 12cdb \| Get or set file date and time
2018-12-17T22:49:11.150603847Z	62	PC: 12cdf \| Close file
2018-12-17T22:49:11.160705985Z	67	PC: 12cef \| Get or set file attributes
2018-12-17T22:49:11.170972246Z	79	PC: 12b84 \| Find next file
2018-12-17T22:49:11.173850521Z	67	PC: 12b9e \| Get or set file attributes
2018-12-17T22:49:11.184013243Z	61	PC: 12bb0 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:49:11.190583867Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-17T22:49:11.19823054Z	87	PC: 12cdb \| Get or set file date and time
2018-12-17T22:49:11.200190006Z	62	PC: 12cdf \| Close file
2018-12-17T22:49:11.207186512Z	67	PC: 12cef \| Get or set file attributes
2018-12-17T22:49:11.219210779Z	79	PC: 12b84 \| Find next file
2018-12-17T22:49:11.222872033Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.228541508Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.234761344Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.240991721Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.246728379Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.252335566Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.258662858Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.264417996Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.270180588Z	78	PC: 12d16 \| Find first file
2018-12-17T22:49:11.277282833Z	59	PC: 12d4b \| Change current directory
2018-12-17T22:49:11.281641429Z	42	PC: 12da2 \| Get date 0x12da2: cmp dh, 9 0x12da5: jne 0x12dd9 0x12da7: cmp dl, 0xe 0x12daa: jne 0x12dd9 0x12dac: mov al, 2 0x12dae: out 0x21, al 0x12db0: mov ah, 9 0x12db2: mov dx, 0xa4d 0x12db5: int 0x21 0x12db7: mov dx, 0x49a 0x12dba: mov cx, 7 0x12dbd: mov ah, 0x4e 0x12dbf: int 0x21 0x12dc1: jb 0x12dd7 0x12dc3: call 0x12dde 0x12dc6: jb 0x12dd3 0x12dc8: xchg ax, bx 0x12dc9: xor cx, cx 0x12dcb: mov ah, 0x40 0x12dcd: int 0x21
2018-12-17T22:49:11.284201809Z	26	PC: 12d69 \| Set disk transfer address
2018-12-17T22:49:11.287304237Z	59	PC: 12d74 \| Change current directory
2018-12-17T22:49:11.289931502Z	9	PC: 639 \| Display string (String= 'This is a sample! (10.000 bytes)')
2018-12-17T22:49:11.292512648Z	76	PC: 12a56 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9793,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:23:47.407747817Z	13	PC: 12ab4 \| Disk reset
2018-12-25T12:23:47.411641753Z	26	PC: 12b69 \| Set disk transfer address
2018-12-25T12:23:47.413189382Z	71	PC: 12b7b \| Get current directory
2018-12-25T12:23:47.417272744Z	78	PC: 12b84 \| Find first file
2018-12-25T12:23:47.428852138Z	67	PC: 12b9e \| Get or set file attributes
2018-12-25T12:23:47.749478692Z	61	PC: 12bb0 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:47.756891405Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-25T12:23:47.765545979Z	66	PC: 12bf5 \| Move file pointer
2018-12-25T12:23:47.767627008Z	66	PC: 12c14 \| Move file pointer
2018-12-25T12:23:47.769634085Z	64	PC: 12c30 \| Write file or device (Write 407 bytes on handle 5)
2018-12-25T12:23:47.779384335Z	64	PC: 12c3e \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:23:47.852944444Z	66	PC: 12cbd \| Move file pointer
2018-12-25T12:23:47.855232633Z	64	PC: 12ccc \| Write file or device (Write 2660 bytes on handle 5)
2018-12-25T12:23:47.863089374Z	87	PC: 12cdb \| Get or set file date and time
2018-12-25T12:23:47.865219337Z	62	PC: 12cdf \| Close file
2018-12-25T12:23:47.870676753Z	67	PC: 12cef \| Get or set file attributes
2018-12-25T12:23:47.881713568Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:47.885515271Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:47.897089163Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:47.904438121Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:47.912245508Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:47.914179876Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:47.922478656Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:47.934289602Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:47.937266465Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:47.948793142Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:47.961931067Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:47.96891893Z	66	PC: 12bf5 \| Move file pointer (See above)
2018-12-25T12:23:47.970743421Z	66	PC: 12c14 \| Move file pointer (See above)
2018-12-25T12:23:47.972476863Z	64	PC: 12c30 \| Write file or device (See above)
2018-12-25T12:23:47.976610298Z	64	PC: 12c3e \| Write file or device (See above)
2018-12-25T12:23:48.026551293Z	66	PC: 12cbd \| Move file pointer (See above)
2018-12-25T12:23:48.027964878Z	64	PC: 12ccc \| Write file or device (See above)
2018-12-25T12:23:48.272390684Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.274410085Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.286377133Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.310812466Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.314192944Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.322351975Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.328506972Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.333162518Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.334710497Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.341832111Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.350507689Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.352726933Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.361550243Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.371130502Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.375796711Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.377214366Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.383417412Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.58332058Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.586243275Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.688698695Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.696010918Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.702962769Z	66	PC: 12bf5 \| Move file pointer (See above)
2018-12-25T12:23:48.70527084Z	66	PC: 12c14 \| Move file pointer (See above)
2018-12-25T12:23:48.707115941Z	64	PC: 12c30 \| Write file or device (See above)
2018-12-25T12:23:48.724130892Z	64	PC: 12c3e \| Write file or device (See above)
2018-12-25T12:23:48.798456855Z	66	PC: 12cbd \| Move file pointer (See above)
2018-12-25T12:23:48.800582796Z	64	PC: 12ccc \| Write file or device (See above)
2018-12-25T12:23:48.810226415Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.812508564Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.821081328Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.831472237Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.834992247Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.845910041Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.851498779Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.857378085Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.859152386Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.867050654Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.877831005Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.881087515Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.891699551Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.904952542Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.913480201Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.915290291Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.922603707Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.933527897Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.936102637Z	78	PC: 12d16 \| Find first file
2018-12-25T12:23:48.942355363Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.949547412Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.961406598Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.969215699Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.97638363Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.982690556Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.989020829Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.995801433Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.002162989Z	59	PC: 12d4b \| Change current directory
2018-12-25T12:23:49.006574893Z	42	PC: 12da2 \| Get date 0x12da2: cmp dh, 9 0x12da5: jne 0x12dd9 0x12da7: cmp dl, 0xe 0x12daa: jne 0x12dd9 0x12dac: mov al, 2 0x12dae: out 0x21, al 0x12db0: mov ah, 9 0x12db2: mov dx, 0xa4d 0x12db5: int 0x21 0x12db7: mov dx, 0x49a 0x12dba: mov cx, 7 0x12dbd: mov ah, 0x4e 0x12dbf: int 0x21 0x12dc1: jb 0x12dd7 0x12dc3: call 0x12dde 0x12dc6: jb 0x12dd3 0x12dc8: xchg ax, bx 0x12dc9: xor cx, cx 0x12dcb: mov ah, 0x40 0x12dcd: int 0x21
2018-12-25T12:23:49.009149385Z	26	PC: 12d69 \| Set disk transfer address
2018-12-25T12:23:49.010316408Z	59	PC: 12d74 \| Change current directory
2018-12-25T12:23:49.012760756Z	9	PC: 639 \| Display string (String= 'This is a sample! (10.000 bytes)')
2018-12-25T12:23:49.015174103Z	76	PC: 12a56 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":9,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9793,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:23:47.451249878Z	13	PC: 12ab4 \| Disk reset
2018-12-25T12:23:47.453533016Z	26	PC: 12b69 \| Set disk transfer address
2018-12-25T12:23:47.454685915Z	71	PC: 12b7b \| Get current directory
2018-12-25T12:23:47.45789235Z	78	PC: 12b84 \| Find first file
2018-12-25T12:23:47.468811302Z	67	PC: 12b9e \| Get or set file attributes
2018-12-25T12:23:47.749228051Z	61	PC: 12bb0 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:47.756964488Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-25T12:23:47.765287656Z	66	PC: 12bf5 \| Move file pointer
2018-12-25T12:23:47.767519163Z	66	PC: 12c14 \| Move file pointer
2018-12-25T12:23:47.76960351Z	64	PC: 12c30 \| Write file or device (Write 407 bytes on handle 5)
2018-12-25T12:23:47.779715027Z	64	PC: 12c3e \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:23:47.856618997Z	66	PC: 12cbd \| Move file pointer
2018-12-25T12:23:47.858987988Z	64	PC: 12ccc \| Write file or device (Write 2660 bytes on handle 5)
2018-12-25T12:23:47.865396467Z	87	PC: 12cdb \| Get or set file date and time
2018-12-25T12:23:47.867176647Z	62	PC: 12cdf \| Close file
2018-12-25T12:23:47.875269149Z	67	PC: 12cef \| Get or set file attributes
2018-12-25T12:23:47.886110225Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:47.889514659Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:47.901380355Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:47.909278894Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:47.917374352Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:47.919036986Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:47.929210891Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:47.940831175Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:47.943782599Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.120646874Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.129255046Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.136313826Z	66	PC: 12bf5 \| Move file pointer (See above)
2018-12-25T12:23:48.137797017Z	66	PC: 12c14 \| Move file pointer (See above)
2018-12-25T12:23:48.140027228Z	64	PC: 12c30 \| Write file or device (See above)
2018-12-25T12:23:48.144355728Z	64	PC: 12c3e \| Write file or device (See above)
2018-12-25T12:23:48.220669317Z	66	PC: 12cbd \| Move file pointer (See above)
2018-12-25T12:23:48.2236208Z	64	PC: 12ccc \| Write file or device (See above)
2018-12-25T12:23:48.276994485Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.285658377Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.31676228Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.328319229Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.331687414Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.343023349Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.352846966Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.360419449Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.362784868Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.372155673Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.383611854Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.386947781Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.58476209Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.593305978Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.60091266Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.602731734Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.72174083Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.731895779Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.73441864Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.741792281Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.746889021Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.754168839Z	66	PC: 12bf5 \| Move file pointer (See above)
2018-12-25T12:23:48.760483151Z	66	PC: 12c14 \| Move file pointer (See above)
2018-12-25T12:23:48.762077681Z	64	PC: 12c30 \| Write file or device (See above)
2018-12-25T12:23:48.767979846Z	64	PC: 12c3e \| Write file or device (See above)
2018-12-25T12:23:48.796894762Z	66	PC: 12cbd \| Move file pointer (See above)
2018-12-25T12:23:48.798436519Z	64	PC: 12ccc \| Write file or device (See above)
2018-12-25T12:23:48.804566246Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.806239346Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.812185203Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.820774353Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.826123483Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.837657548Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.845162176Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.853694441Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.855313616Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.863119523Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.874478326Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.877311475Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.888186373Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.901666009Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.907967737Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.90920558Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.914379693Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.92122068Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.924169937Z	78	PC: 12d16 \| Find first file
2018-12-25T12:23:48.930494847Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.937198498Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.949638332Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.961959751Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.969215659Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.975679121Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.982028385Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:48.98907798Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.000932493Z	59	PC: 12d4b \| Change current directory
2018-12-25T12:23:49.010573339Z	42	PC: 12da2 \| Get date 0x12da2: cmp dh, 9 0x12da5: jne 0x12dd9 0x12da7: cmp dl, 0xe 0x12daa: jne 0x12dd9 0x12dac: mov al, 2 0x12dae: out 0x21, al 0x12db0: mov ah, 9 0x12db2: mov dx, 0xa4d 0x12db5: int 0x21 0x12db7: mov dx, 0x49a 0x12dba: mov cx, 7 0x12dbd: mov ah, 0x4e 0x12dbf: int 0x21 0x12dc1: jb 0x12dd7 0x12dc3: call 0x12dde 0x12dc6: jb 0x12dd3 0x12dc8: xchg ax, bx 0x12dc9: xor cx, cx 0x12dcb: mov ah, 0x40 0x12dcd: int 0x21
2018-12-25T12:23:49.014193673Z	26	PC: 12d69 \| Set disk transfer address
2018-12-25T12:23:49.01550027Z	59	PC: 12d74 \| Change current directory
2018-12-25T12:23:49.01798086Z	9	PC: 639 \| Display string (String= 'This is a sample! (10.000 bytes)')
2018-12-25T12:23:49.020614228Z	76	PC: 12a56 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":14,"Month":9,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9793,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:23:47.89461104Z	13	PC: 12ab4 \| Disk reset
2018-12-25T12:23:47.897539401Z	26	PC: 12b69 \| Set disk transfer address
2018-12-25T12:23:47.898789423Z	71	PC: 12b7b \| Get current directory
2018-12-25T12:23:47.901955645Z	78	PC: 12b84 \| Find first file
2018-12-25T12:23:47.912693088Z	67	PC: 12b9e \| Get or set file attributes
2018-12-25T12:23:47.929855145Z	61	PC: 12bb0 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:47.937302123Z	63	PC: 12bcf \| Read file or device (Read 2660 bytes on handle 5)
2018-12-25T12:23:47.944734539Z	66	PC: 12bf5 \| Move file pointer
2018-12-25T12:23:47.946766044Z	66	PC: 12c14 \| Move file pointer
2018-12-25T12:23:47.94918471Z	64	PC: 12c30 \| Write file or device (Write 407 bytes on handle 5)
2018-12-25T12:23:47.958154819Z	64	PC: 12c3e \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:23:48.034666085Z	66	PC: 12cbd \| Move file pointer
2018-12-25T12:23:48.036888387Z	64	PC: 12ccc \| Write file or device (Write 2660 bytes on handle 5)
2018-12-25T12:23:48.272187393Z	87	PC: 12cdb \| Get or set file date and time
2018-12-25T12:23:48.273983646Z	62	PC: 12cdf \| Close file
2018-12-25T12:23:48.279610008Z	67	PC: 12cef \| Get or set file attributes
2018-12-25T12:23:48.286280521Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.288485632Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.295085833Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.299506084Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.307310864Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.308901988Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.317493102Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.328671769Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.333709243Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.345454575Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.354387435Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.361945898Z	66	PC: 12bf5 \| Move file pointer (See above)
2018-12-25T12:23:48.363577558Z	66	PC: 12c14 \| Move file pointer (See above)
2018-12-25T12:23:48.366143109Z	64	PC: 12c30 \| Write file or device (See above)
2018-12-25T12:23:48.371539806Z	64	PC: 12c3e \| Write file or device (See above)
2018-12-25T12:23:48.421519754Z	66	PC: 12cbd \| Move file pointer (See above)
2018-12-25T12:23:48.422632951Z	64	PC: 12ccc \| Write file or device (See above)
2018-12-25T12:23:48.583688753Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.585448153Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.687759054Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.721948741Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.725383449Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.739189556Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.748250084Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.756611054Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.758196934Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.766688273Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.777652582Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.780529589Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.791713741Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.799201825Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.806343613Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.808592594Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.819365002Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.830361399Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.833411982Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.84429101Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.85192972Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.859118007Z	66	PC: 12bf5 \| Move file pointer (See above)
2018-12-25T12:23:48.861001162Z	66	PC: 12c14 \| Move file pointer (See above)
2018-12-25T12:23:48.862572241Z	64	PC: 12c30 \| Write file or device (See above)
2018-12-25T12:23:48.871561236Z	64	PC: 12c3e \| Write file or device (See above)
2018-12-25T12:23:48.945306914Z	66	PC: 12cbd \| Move file pointer (See above)
2018-12-25T12:23:48.946826496Z	64	PC: 12ccc \| Write file or device (See above)
2018-12-25T12:23:48.952523712Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.953977697Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.959040744Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.965756923Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:48.96797726Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:48.974332432Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:48.979062037Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:48.984051678Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:48.985137561Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:48.992048356Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:48.998849588Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:49.00104443Z	67	PC: 12b9e \| Get or set file attributes (See above)
2018-12-25T12:23:49.011562728Z	61	PC: 12bb0 \| Open file (See above)
2018-12-25T12:23:49.019145088Z	63	PC: 12bcf \| Read file or device (See above)
2018-12-25T12:23:49.027808492Z	87	PC: 12cdb \| Get or set file date and time (See above)
2018-12-25T12:23:49.029511223Z	62	PC: 12cdf \| Close file (See above)
2018-12-25T12:23:49.037801575Z	67	PC: 12cef \| Get or set file attributes (See above)
2018-12-25T12:23:49.048542575Z	79	PC: 12b84 \| Find next file (See above)
2018-12-25T12:23:49.051162052Z	78	PC: 12d16 \| Find first file
2018-12-25T12:23:49.064200791Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.070881482Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.077782486Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.084918962Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.091665024Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.103472112Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.115447488Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.122634473Z	78	PC: 12d16 \| Find first file (See above)
2018-12-25T12:23:49.145039913Z	59	PC: 12d4b \| Change current directory
2018-12-25T12:23:49.149797072Z	42	PC: 12da2 \| Get date 0x12da2: cmp dh, 9 0x12da5: jne 0x12dd9 0x12da7: cmp dl, 0xe 0x12daa: jne 0x12dd9 0x12dac: mov al, 2 0x12dae: out 0x21, al 0x12db0: mov ah, 9 0x12db2: mov dx, 0xa4d 0x12db5: int 0x21 0x12db7: mov dx, 0x49a 0x12dba: mov cx, 7 0x12dbd: mov ah, 0x4e 0x12dbf: int 0x21 0x12dc1: jb 0x12dd7 0x12dc3: call 0x12dde 0x12dc6: jb 0x12dd3 0x12dc8: xchg ax, bx 0x12dc9: xor cx, cx 0x12dcb: mov ah, 0x40 0x12dcd: int 0x21
2018-12-25T12:23:49.152213269Z	9	PC: 12db7 \| Display string (Could not find end pointer)
2018-12-25T12:23:49.176526204Z	78	PC: 12dc1 \| Find first file
2018-12-25T12:23:49.183145684Z	67	PC: 12dea \| Get or set file attributes
2018-12-25T12:23:49.195106687Z	61	PC: 12df0 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:49.202620156Z	64	PC: 12dcf \| Write file or device (Write 0 bytes on handle 5)
2018-12-25T12:23:49.210865887Z	62	PC: 12dd3 \| Close file
2018-12-25T12:23:49.219854267Z	79	PC: 12dc1 \| Find next file (See above)
2018-12-25T12:23:49.222903252Z	67	PC: 12dea \| Get or set file attributes (See above)
2018-12-25T12:23:49.233991056Z	61	PC: 12df0 \| Open file (See above)
2018-12-25T12:23:49.243234118Z	64	PC: 12dcf \| Write file or device (See above)
2018-12-25T12:23:49.251574061Z	62	PC: 12dd3 \| Close file (See above)
2018-12-25T12:23:49.259729855Z	79	PC: 12dc1 \| Find next file (See above)
2018-12-25T12:23:49.263224999Z	67	PC: 12dea \| Get or set file attributes (See above)
2018-12-25T12:23:49.287042915Z	61	PC: 12df0 \| Open file (See above)
2018-12-25T12:23:49.295635029Z	64	PC: 12dcf \| Write file or device (See above)
2018-12-25T12:23:49.305419107Z	62	PC: 12dd3 \| Close file (See above)
2018-12-25T12:23:49.31411056Z	79	PC: 12dc1 \| Find next file (See above)
2018-12-25T12:23:49.31752675Z	67	PC: 12dea \| Get or set file attributes (See above)
2018-12-25T12:23:49.328292447Z	61	PC: 12df0 \| Open file (See above)
2018-12-25T12:23:49.336257994Z	64	PC: 12dcf \| Write file or device (See above)
2018-12-25T12:23:49.344588982Z	62	PC: 12dd3 \| Close file (See above)
2018-12-25T12:23:49.352675534Z	79	PC: 12dc1 \| Find next file (See above)
2018-12-25T12:23:49.356037744Z	67	PC: 12dea \| Get or set file attributes (See above)
2018-12-25T12:23:49.367448376Z	61	PC: 12df0 \| Open file (See above)
2018-12-25T12:23:49.376081952Z	64	PC: 12dcf \| Write file or device (See above)
2018-12-25T12:23:49.385177579Z	62	PC: 12dd3 \| Close file (See above)
2018-12-25T12:23:49.406687742Z	79	PC: 12dc1 \| Find next file (See above)
2018-12-25T12:23:49.409606926Z	67	PC: 12dea \| Get or set file attributes (See above)
2018-12-25T12:23:49.422194538Z	61	PC: 12df0 \| Open file (See above)
2018-12-25T12:23:49.429684547Z	64	PC: 12dcf \| Write file or device (See above)
2018-12-25T12:23:49.437845578Z	62	PC: 12dd3 \| Close file (See above)
2018-12-25T12:23:49.447091475Z	79	PC: 12dc1 \| Find next file (See above)
2018-12-25T12:23:49.450125408Z	67	PC: 12dea \| Get or set file attributes (See above)
2018-12-25T12:23:49.461163596Z	61	PC: 12df0 \| Open file (See above)
2018-12-25T12:23:49.469963636Z	64	PC: 12dcf \| Write file or device (See above)
2018-12-25T12:23:49.479381946Z	62	PC: 12dd3 \| Close file (See above)
2018-12-25T12:23:49.489348316Z	79	PC: 12dc1 \| Find next file (See above)
2018-12-25T12:23:49.493316722Z	67	PC: 12dea \| Get or set file attributes (See above)
2018-12-25T12:23:49.504526596Z	61	PC: 12df0 \| Open file (See above)
2018-12-25T12:23:49.511978299Z	64	PC: 12dcf \| Write file or device (See above)
2018-12-25T12:23:49.521412504Z	62	PC: 12dd3 \| Close file (See above)
2018-12-25T12:23:49.530423406Z	79	PC: 12dc1 \| Find next file (See above)
2018-12-25T12:23:49.533774534Z	67	PC: 12dea \| Get or set file attributes (See above)
2018-12-25T12:23:49.546910936Z	61	PC: 12df0 \| Open file (See above)
2018-12-25T12:23:49.554964472Z	64	PC: 12dcf \| Write file or device (See above)
2018-12-25T12:23:49.563695218Z	62	PC: 12dd3 \| Close file (See above)
2018-12-25T12:23:49.572759002Z	79	PC: 12dc1 \| Find next file (See above)