.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:51:31.892525868Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T22:51:31.894231849Z | 37 | PC: 12a80 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:51:31.904798116Z | 37 | PC: 12a84 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:51:31.906133545Z | 78 | PC: 12acf | Find first file |
| 2018-12-17T22:51:31.913094034Z | 61 | PC: 12c5b | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:51:31.920562638Z | 63 | PC: 12c6a | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:31.927429613Z | 66 | PC: 12c79 | Move file pointer |
| 2018-12-17T22:51:31.928865525Z | 66 | PC: 12c88 | Move file pointer |
| 2018-12-17T22:51:31.931133808Z | 64 | PC: 12c94 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:31.934304334Z | 66 | PC: 12ca0 | Move file pointer |
| 2018-12-17T22:51:31.936128098Z | 44 | PC: 12ca4 | Get time 0x12ca4: mov byte ptr [bp + 0x287], dl 0x12ca8: call 0x12cbe 0x12cab: mov ah, 0x40 0x12cad: mov cx, 0x287 0x12cb0: lea dx, word ptr [bp + 6] 0x12cb4: int 0x21 0x12cb6: call 0x12cbe 0x12cb9: mov ah, 0x3e 0x12cbb: int 0x21 0x12cbd: ret 0x12cbe: lea si, word ptr [bp + 0x1f] 0x12cc2: mov cx, 0x249 0x12cc5: xor byte ptr [si], 0 0x12cc8: inc si 0x12cc9: dec cx 0x12cca: jne 0x12cc5 0x12ccc: ret 0x12ccd: add word ptr [bx], di 0x12ccf: aas 0x12cd0: aas |
| 2018-12-17T22:51:31.940326923Z | 64 | PC: 12cb6 | Write file or device (Write 647 bytes on handle 5) |
| 2018-12-17T22:51:31.956602555Z | 62 | PC: 12cbd | Close file |
| 2018-12-17T22:51:31.965643065Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:51:31.97767868Z | 61 | PC: 12c5b | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:51:31.985083458Z | 63 | PC: 12c6a | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:31.992190211Z | 66 | PC: 12c79 | Move file pointer |
| 2018-12-17T22:51:31.994741029Z | 66 | PC: 12c88 | Move file pointer |
| 2018-12-17T22:51:31.996306721Z | 64 | PC: 12c94 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:31.999208094Z | 66 | PC: 12ca0 | Move file pointer |
| 2018-12-17T22:51:32.001003536Z | 44 | PC: 12ca4 | Get time 0x12ca4: mov byte ptr [bp + 0x287], dl 0x12ca8: call 0x12cbe 0x12cab: mov ah, 0x40 0x12cad: mov cx, 0x287 0x12cb0: lea dx, word ptr [bp + 6] 0x12cb4: int 0x21 0x12cb6: call 0x12cbe 0x12cb9: mov ah, 0x3e 0x12cbb: int 0x21 0x12cbd: ret 0x12cbe: lea si, word ptr [bp + 0x1f] 0x12cc2: mov cx, 0x249 0x12cc5: xor byte ptr [si], 0x49 0x12cc8: inc si 0x12cc9: dec cx 0x12cca: jne 0x12cc5 0x12ccc: ret 0x12ccd: add word ptr [bx], di 0x12ccf: aas 0x12cd0: aas |
| 2018-12-17T22:51:32.003725506Z | 64 | PC: 12cb6 | Write file or device (Write 647 bytes on handle 5) |
| 2018-12-17T22:51:32.013185823Z | 62 | PC: 12cbd | Close file |
| 2018-12-17T22:51:32.022858645Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:51:32.026647045Z | 61 | PC: 12c5b | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:51:32.032695457Z | 63 | PC: 12c6a | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:32.038538109Z | 66 | PC: 12c79 | Move file pointer |
| 2018-12-17T22:51:32.041026398Z | 66 | PC: 12c88 | Move file pointer |
| 2018-12-17T22:51:32.042517852Z | 64 | PC: 12c94 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:32.045349564Z | 66 | PC: 12ca0 | Move file pointer |
| 2018-12-17T22:51:32.048807265Z | 44 | PC: 12ca4 | Get time 0x12ca4: mov byte ptr [bp + 0x287], dl 0x12ca8: call 0x12cbe 0x12cab: mov ah, 0x40 0x12cad: mov cx, 0x287 0x12cb0: lea dx, word ptr [bp + 6] 0x12cb4: int 0x21 0x12cb6: call 0x12cbe 0x12cb9: mov ah, 0x3e 0x12cbb: int 0x21 0x12cbd: ret 0x12cbe: lea si, word ptr [bp + 0x1f] 0x12cc2: mov cx, 0x249 0x12cc5: xor byte ptr [si], 0x49 0x12cc8: inc si 0x12cc9: dec cx 0x12cca: jne 0x12cc5 0x12ccc: ret 0x12ccd: add word ptr [bx], di 0x12ccf: aas 0x12cd0: aas |
| 2018-12-17T22:51:32.05140177Z | 64 | PC: 12cb6 | Write file or device (Write 647 bytes on handle 5) |
| 2018-12-17T22:51:32.060332295Z | 62 | PC: 12cbd | Close file |
| 2018-12-17T22:51:32.070299469Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:51:32.072300495Z | 61 | PC: 12c5b | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:51:32.076582847Z | 63 | PC: 12c6a | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:32.080758878Z | 66 | PC: 12c79 | Move file pointer |
| 2018-12-17T22:51:32.082253424Z | 66 | PC: 12c88 | Move file pointer |
| 2018-12-17T22:51:32.083571997Z | 64 | PC: 12c94 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:32.08582536Z | 66 | PC: 12ca0 | Move file pointer |
| 2018-12-17T22:51:32.088101834Z | 44 | PC: 12ca4 | Get time 0x12ca4: mov byte ptr [bp + 0x287], dl 0x12ca8: call 0x12cbe 0x12cab: mov ah, 0x40 0x12cad: mov cx, 0x287 0x12cb0: lea dx, word ptr [bp + 6] 0x12cb4: int 0x21 0x12cb6: call 0x12cbe 0x12cb9: mov ah, 0x3e 0x12cbb: int 0x21 0x12cbd: ret 0x12cbe: lea si, word ptr [bp + 0x1f] 0x12cc2: mov cx, 0x249 0x12cc5: xor byte ptr [si], 0x4e 0x12cc8: inc si 0x12cc9: dec cx 0x12cca: jne 0x12cc5 0x12ccc: ret 0x12ccd: add word ptr [bx], di 0x12ccf: aas 0x12cd0: aas |
| 2018-12-17T22:51:32.089834523Z | 64 | PC: 12cb6 | Write file or device (Write 647 bytes on handle 5) |
| 2018-12-17T22:51:32.095254993Z | 62 | PC: 12cbd | Close file |
| 2018-12-17T22:51:32.104678112Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:51:32.107745204Z | 61 | PC: 12c5b | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:51:32.115024967Z | 63 | PC: 12c6a | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:32.122720809Z | 66 | PC: 12c79 | Move file pointer |
| 2018-12-17T22:51:32.12419166Z | 66 | PC: 12c88 | Move file pointer |
| 2018-12-17T22:51:32.125482598Z | 64 | PC: 12c94 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:32.128787908Z | 66 | PC: 12ca0 | Move file pointer |
| 2018-12-17T22:51:32.130252801Z | 44 | PC: 12ca4 | Get time 0x12ca4: mov byte ptr [bp + 0x287], dl 0x12ca8: call 0x12cbe 0x12cab: mov ah, 0x40 0x12cad: mov cx, 0x287 0x12cb0: lea dx, word ptr [bp + 6] 0x12cb4: int 0x21 0x12cb6: call 0x12cbe 0x12cb9: mov ah, 0x3e 0x12cbb: int 0x21 0x12cbd: ret 0x12cbe: lea si, word ptr [bp + 0x1f] 0x12cc2: mov cx, 0x249 0x12cc5: xor byte ptr [si], 0x54 0x12cc8: inc si 0x12cc9: dec cx 0x12cca: jne 0x12cc5 0x12ccc: ret 0x12ccd: add word ptr [bx], di 0x12ccf: aas 0x12cd0: aas |
| 2018-12-17T22:51:32.133033207Z | 64 | PC: 12cb6 | Write file or device (Write 647 bytes on handle 5) |
| 2018-12-17T22:51:32.143819172Z | 62 | PC: 12cbd | Close file |
| 2018-12-17T22:51:32.151961093Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:51:32.155982761Z | 61 | PC: 12c5b | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:51:32.164365427Z | 63 | PC: 12c6a | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:32.172410654Z | 66 | PC: 12c79 | Move file pointer |
| 2018-12-17T22:51:32.174358779Z | 66 | PC: 12c88 | Move file pointer |
| 2018-12-17T22:51:32.176872749Z | 64 | PC: 12c94 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:32.1801657Z | 66 | PC: 12ca0 | Move file pointer |
| 2018-12-17T22:51:32.182143312Z | 44 | PC: 12ca4 | Get time 0x12ca4: mov byte ptr [bp + 0x287], dl 0x12ca8: call 0x12cbe 0x12cab: mov ah, 0x40 0x12cad: mov cx, 0x287 0x12cb0: lea dx, word ptr [bp + 6] 0x12cb4: int 0x21 0x12cb6: call 0x12cbe 0x12cb9: mov ah, 0x3e 0x12cbb: int 0x21 0x12cbd: ret 0x12cbe: lea si, word ptr [bp + 0x1f] 0x12cc2: mov cx, 0x249 0x12cc5: xor byte ptr [si], 0x54 0x12cc8: inc si 0x12cc9: dec cx 0x12cca: jne 0x12cc5 0x12ccc: ret 0x12ccd: add word ptr [bx], di 0x12ccf: aas 0x12cd0: aas |
| 2018-12-17T22:51:32.186151329Z | 64 | PC: 12cb6 | Write file or device (Write 647 bytes on handle 5) |
| 2018-12-17T22:51:32.196321832Z | 62 | PC: 12cbd | Close file |
| 2018-12-17T22:51:32.205508392Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:51:32.208843321Z | 61 | PC: 12c5b | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:51:32.21649171Z | 63 | PC: 12c6a | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:32.224415065Z | 66 | PC: 12c79 | Move file pointer |
| 2018-12-17T22:51:32.22586885Z | 66 | PC: 12c88 | Move file pointer |
| 2018-12-17T22:51:32.227639156Z | 64 | PC: 12c94 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:32.236194266Z | 66 | PC: 12ca0 | Move file pointer |
| 2018-12-17T22:51:32.237982636Z | 44 | PC: 12ca4 | Get time 0x12ca4: mov byte ptr [bp + 0x287], dl 0x12ca8: call 0x12cbe 0x12cab: mov ah, 0x40 0x12cad: mov cx, 0x287 0x12cb0: lea dx, word ptr [bp + 6] 0x12cb4: int 0x21 0x12cb6: call 0x12cbe 0x12cb9: mov ah, 0x3e 0x12cbb: int 0x21 0x12cbd: ret 0x12cbe: lea si, word ptr [bp + 0x1f] 0x12cc2: mov cx, 0x249 0x12cc5: xor byte ptr [si], 0x59 0x12cc8: inc si 0x12cc9: dec cx 0x12cca: jne 0x12cc5 0x12ccc: ret 0x12ccd: add word ptr [bx], di 0x12ccf: aas 0x12cd0: aas |
| 2018-12-17T22:51:32.241976791Z | 64 | PC: 12cb6 | Write file or device (Write 647 bytes on handle 5) |
| 2018-12-17T22:51:32.250922723Z | 62 | PC: 12cbd | Close file |
| 2018-12-17T22:51:32.259887454Z | 26 | PC: 12ae9 | Set disk transfer address |
| 2018-12-17T22:51:32.261914534Z | 19 | PC: 12afb | Delete file |
| 2018-12-17T22:51:32.269207018Z | 9 | PC: 12b2d | Display string (String= 'ATTITUDE Attitude is a little thing that makes a big difference Just ask any pitbull!!! ') |