.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T21:59:42.326090365Z | 26 | PC: 14117 | Set disk transfer address |
| 2018-12-17T21:59:42.328322901Z | 78 | PC: 14121 | Find first file |
| 2018-12-17T21:59:42.333488489Z | 67 | PC: 14142 | Get or set file attributes |
| 2018-12-17T21:59:42.346908472Z | 61 | PC: 14147 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T21:59:42.357615173Z | 63 | PC: 14155 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:59:42.363943911Z | 66 | PC: 14188 | Move file pointer |
| 2018-12-17T21:59:42.3652955Z | 64 | PC: 14192 | Write file or device (Write 206 bytes on handle 5) |
| 2018-12-17T21:59:42.370803322Z | 66 | PC: 14199 | Move file pointer |
| 2018-12-17T21:59:42.372889953Z | 64 | PC: 141b1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:59:42.378171758Z | 87 | PC: 14169 | Get or set file date and time |
| 2018-12-17T21:59:42.379955532Z | 62 | PC: 1416e | Close file |
| 2018-12-17T21:59:42.38861192Z | 67 | PC: 14177 | Get or set file attributes |
| 2018-12-17T21:59:42.393848497Z | 79 | PC: 14121 | Find next file |
| 2018-12-17T21:59:42.396455709Z | 67 | PC: 14142 | Get or set file attributes |
| 2018-12-17T21:59:42.406735323Z | 61 | PC: 14147 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T21:59:42.413060618Z | 63 | PC: 14155 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:59:42.419797475Z | 66 | PC: 14188 | Move file pointer |
| 2018-12-17T21:59:42.422151917Z | 64 | PC: 14192 | Write file or device (Write 206 bytes on handle 5) |
| 2018-12-17T21:59:42.424844386Z | 66 | PC: 14199 | Move file pointer |
| 2018-12-17T21:59:42.426299666Z | 64 | PC: 141b1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:59:42.429521591Z | 87 | PC: 14169 | Get or set file date and time |
| 2018-12-17T21:59:42.431069075Z | 62 | PC: 1416e | Close file |
| 2018-12-17T21:59:42.438723201Z | 67 | PC: 14177 | Get or set file attributes |
| 2018-12-17T21:59:42.445434927Z | 79 | PC: 14121 | Find next file |
| 2018-12-17T21:59:42.449039543Z | 67 | PC: 14142 | Get or set file attributes |
| 2018-12-17T21:59:42.459524022Z | 61 | PC: 14147 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T21:59:42.468833689Z | 63 | PC: 14155 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:59:42.476029772Z | 66 | PC: 14188 | Move file pointer |
| 2018-12-17T21:59:42.477897112Z | 64 | PC: 14192 | Write file or device (Write 206 bytes on handle 5) |
| 2018-12-17T21:59:42.481437647Z | 66 | PC: 14199 | Move file pointer |
| 2018-12-17T21:59:42.483050512Z | 64 | PC: 141b1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:59:42.485720818Z | 87 | PC: 14169 | Get or set file date and time |
| 2018-12-17T21:59:42.487233985Z | 62 | PC: 1416e | Close file |
| 2018-12-17T21:59:42.495464368Z | 67 | PC: 14177 | Get or set file attributes |
| 2018-12-17T21:59:42.500383856Z | 79 | PC: 14121 | Find next file |
| 2018-12-17T21:59:42.50334695Z | 67 | PC: 14142 | Get or set file attributes |
| 2018-12-17T21:59:42.513261175Z | 61 | PC: 14147 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T21:59:42.519709185Z | 63 | PC: 14155 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:59:42.526747574Z | 66 | PC: 14188 | Move file pointer |
| 2018-12-17T21:59:42.529259448Z | 64 | PC: 14192 | Write file or device (Write 206 bytes on handle 5) |
| 2018-12-17T21:59:42.532384278Z | 66 | PC: 14199 | Move file pointer |
| 2018-12-17T21:59:42.533793511Z | 64 | PC: 141b1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:59:42.537004265Z | 87 | PC: 14169 | Get or set file date and time |
| 2018-12-17T21:59:42.538892812Z | 62 | PC: 1416e | Close file |
| 2018-12-17T21:59:42.547966546Z | 67 | PC: 14177 | Get or set file attributes |
| 2018-12-17T21:59:42.553178151Z | 79 | PC: 14121 | Find next file |
| 2018-12-17T21:59:42.556605797Z | 67 | PC: 14142 | Get or set file attributes |
| 2018-12-17T21:59:42.566408033Z | 61 | PC: 14147 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T21:59:42.574512254Z | 63 | PC: 14155 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:59:42.581625364Z | 66 | PC: 14188 | Move file pointer |
| 2018-12-17T21:59:42.583452904Z | 64 | PC: 14192 | Write file or device (Write 206 bytes on handle 5) |
| 2018-12-17T21:59:42.587219081Z | 66 | PC: 14199 | Move file pointer |
| 2018-12-17T21:59:42.589273287Z | 64 | PC: 141b1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:59:42.592230869Z | 87 | PC: 14169 | Get or set file date and time |
| 2018-12-17T21:59:42.595079481Z | 62 | PC: 1416e | Close file |
| 2018-12-17T21:59:42.602891857Z | 67 | PC: 14177 | Get or set file attributes |
| 2018-12-17T21:59:42.607773928Z | 79 | PC: 14121 | Find next file |
| 2018-12-17T21:59:42.610653229Z | 67 | PC: 14142 | Get or set file attributes |
| 2018-12-17T21:59:42.621947015Z | 61 | PC: 14147 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T21:59:42.628788598Z | 63 | PC: 14155 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:59:42.635147038Z | 66 | PC: 14188 | Move file pointer |
| 2018-12-17T21:59:42.637550844Z | 64 | PC: 14192 | Write file or device (Write 206 bytes on handle 5) |
| 2018-12-17T21:59:42.645667176Z | 66 | PC: 14199 | Move file pointer |
| 2018-12-17T21:59:42.647362584Z | 64 | PC: 141b1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:59:42.655174193Z | 87 | PC: 14169 | Get or set file date and time |
| 2018-12-17T21:59:42.656917819Z | 62 | PC: 1416e | Close file |
| 2018-12-17T21:59:42.665494276Z | 67 | PC: 14177 | Get or set file attributes |
| 2018-12-17T21:59:42.671173438Z | 79 | PC: 14121 | Find next file |
| 2018-12-17T21:59:42.673984585Z | 67 | PC: 14142 | Get or set file attributes |
| 2018-12-17T21:59:42.68434971Z | 61 | PC: 14147 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T21:59:42.692568137Z | 63 | PC: 14155 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:59:42.698779459Z | 66 | PC: 14188 | Move file pointer |
| 2018-12-17T21:59:42.700103647Z | 64 | PC: 14192 | Write file or device (Write 206 bytes on handle 5) |
| 2018-12-17T21:59:42.703307274Z | 66 | PC: 14199 | Move file pointer |
| 2018-12-17T21:59:42.704601719Z | 64 | PC: 141b1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:59:42.707197367Z | 87 | PC: 14169 | Get or set file date and time |
| 2018-12-17T21:59:42.709324046Z | 62 | PC: 1416e | Close file |
| 2018-12-17T21:59:42.71687512Z | 67 | PC: 14177 | Get or set file attributes |
| 2018-12-17T21:59:42.726576733Z | 79 | PC: 14121 | Find next file |
| 2018-12-17T21:59:42.734430868Z | 67 | PC: 14142 | Get or set file attributes |
| 2018-12-17T21:59:42.744767176Z | 61 | PC: 14147 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T21:59:42.751631876Z | 63 | PC: 14155 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:59:42.758669334Z | 87 | PC: 14169 | Get or set file date and time |
| 2018-12-17T21:59:42.760116394Z | 62 | PC: 1416e | Close file |
| 2018-12-17T21:59:42.767100746Z | 67 | PC: 14177 | Get or set file attributes |
| 2018-12-17T21:59:42.772000977Z | 79 | PC: 14121 | Find next file |
| 2018-12-17T21:59:42.774757882Z | 26 | PC: 14134 | Set disk transfer address |
| 2018-12-17T21:59:42.775714861Z | 48 | PC: 12a63 | Get DOS version |
| 2018-12-17T21:59:42.777094092Z | 9 | PC: 12a7a | Display string (String= '
--=[ Selfchecking AntiStealth Goat COM/EXE file, 01/06/01 ]=------------------
(c) 1995-2001 by ROSE SWE, Dipl.-Ing. Ralph Roth - Version 1.18 - Freeware
') |
| 2018-12-17T21:59:42.786619116Z | 61 | PC: 12cb7 | Open file (Filename = '�') |
| 2018-12-17T21:59:42.798216135Z | 9 | PC: 12a88 | Display string (String= 'Self test: ') |
| 2018-12-17T21:59:42.80113519Z | 93 | PC: 12b24 | File sharing functions |
| 2018-12-17T21:59:42.803129415Z | 9 | PC: 12b03 | Display string (String= 'Size change=+00CEh/00206d. Virus might be activ?
��') |
| 2018-12-17T21:59:42.808612457Z | 76 | PC: 12b09 | Terminate with return code (Return code = '1') |
