.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:15:54.238951168Z | 26 | PC: 12a64 | Set disk transfer address |
| 2018-12-17T23:15:54.240870532Z | 78 | PC: 12a78 | Find first file |
| 2018-12-17T23:15:54.247085802Z | 61 | PC: 12baa | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:15:54.253601703Z | 63 | PC: 12bb9 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:15:54.260565808Z | 66 | PC: 12bc8 | Move file pointer |
| 2018-12-17T23:15:54.26198956Z | 66 | PC: 12bd7 | Move file pointer |
| 2018-12-17T23:15:54.264488517Z | 64 | PC: 12be3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:15:54.266509548Z | 66 | PC: 12bef | Move file pointer |
| 2018-12-17T23:15:54.267761136Z | 44 | PC: 12bf3 | Get time 0x12bf3: mov byte ptr [bp + 0x1d6], dl 0x12bf7: call 0x12c0d 0x12bfa: mov ah, 0x40 0x12bfc: mov cx, 0x1d6 0x12bff: lea dx, word ptr [bp + 6] 0x12c03: int 0x21 0x12c05: call 0x12c0d 0x12c08: mov ah, 0x3e 0x12c0a: int 0x21 0x12c0c: ret 0x12c0d: lea si, word ptr [bp + 0x11] 0x12c11: mov cx, 0x1a6 0x12c14: xor byte ptr [si], 0 0x12c17: inc si 0x12c18: dec cx 0x12c19: jne 0x12c14 0x12c1b: ret 0x12c1c: add word ptr [bx], di 0x12c1e: aas 0x12c1f: aas |
| 2018-12-17T23:15:54.269388621Z | 64 | PC: 12c05 | Write file or device (Write 470 bytes on handle 5) |
| 2018-12-17T23:15:54.281974902Z | 62 | PC: 12c0c | Close file |
| 2018-12-17T23:15:54.290973135Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T23:15:54.293776983Z | 61 | PC: 12baa | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:15:54.301007153Z | 63 | PC: 12bb9 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:15:54.308646771Z | 66 | PC: 12bc8 | Move file pointer |
| 2018-12-17T23:15:54.310280714Z | 66 | PC: 12bd7 | Move file pointer |
| 2018-12-17T23:15:54.312011503Z | 64 | PC: 12be3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:15:54.315384586Z | 66 | PC: 12bef | Move file pointer |
| 2018-12-17T23:15:54.317017724Z | 44 | PC: 12bf3 | Get time 0x12bf3: mov byte ptr [bp + 0x1d6], dl 0x12bf7: call 0x12c0d 0x12bfa: mov ah, 0x40 0x12bfc: mov cx, 0x1d6 0x12bff: lea dx, word ptr [bp + 6] 0x12c03: int 0x21 0x12c05: call 0x12c0d 0x12c08: mov ah, 0x3e 0x12c0a: int 0x21 0x12c0c: ret 0x12c0d: lea si, word ptr [bp + 0x11] 0x12c11: mov cx, 0x1a6 0x12c14: xor byte ptr [si], 0x43 0x12c17: inc si 0x12c18: dec cx 0x12c19: jne 0x12c14 0x12c1b: ret 0x12c1c: add word ptr [bx], di 0x12c1e: aas 0x12c1f: aas |
| 2018-12-17T23:15:54.319569601Z | 64 | PC: 12c05 | Write file or device (Write 470 bytes on handle 5) |
| 2018-12-17T23:15:54.323922885Z | 62 | PC: 12c0c | Close file |
| 2018-12-17T23:15:54.331921596Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T23:15:54.334831588Z | 61 | PC: 12baa | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:15:54.34704491Z | 63 | PC: 12bb9 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:15:54.353474865Z | 66 | PC: 12bc8 | Move file pointer |
| 2018-12-17T23:15:54.355136888Z | 66 | PC: 12bd7 | Move file pointer |
| 2018-12-17T23:15:54.357167026Z | 64 | PC: 12be3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:15:54.361791781Z | 66 | PC: 12bef | Move file pointer |
| 2018-12-17T23:15:54.363195428Z | 44 | PC: 12bf3 | Get time 0x12bf3: mov byte ptr [bp + 0x1d6], dl 0x12bf7: call 0x12c0d 0x12bfa: mov ah, 0x40 0x12bfc: mov cx, 0x1d6 0x12bff: lea dx, word ptr [bp + 6] 0x12c03: int 0x21 0x12c05: call 0x12c0d 0x12c08: mov ah, 0x3e 0x12c0a: int 0x21 0x12c0c: ret 0x12c0d: lea si, word ptr [bp + 0x11] 0x12c11: mov cx, 0x1a6 0x12c14: xor byte ptr [si], 0x48 0x12c17: inc si 0x12c18: dec cx 0x12c19: jne 0x12c14 0x12c1b: ret 0x12c1c: add word ptr [bx], di 0x12c1e: aas 0x12c1f: aas |
| 2018-12-17T23:15:54.366249635Z | 64 | PC: 12c05 | Write file or device (Write 470 bytes on handle 5) |
| 2018-12-17T23:15:54.377435902Z | 62 | PC: 12c0c | Close file |
| 2018-12-17T23:15:54.385877211Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T23:15:54.389091399Z | 61 | PC: 12baa | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:15:54.395960211Z | 63 | PC: 12bb9 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:15:54.400538722Z | 66 | PC: 12bc8 | Move file pointer |
| 2018-12-17T23:15:54.402405336Z | 66 | PC: 12bd7 | Move file pointer |
| 2018-12-17T23:15:54.403627642Z | 64 | PC: 12be3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:15:54.405658589Z | 66 | PC: 12bef | Move file pointer |
| 2018-12-17T23:15:54.411325829Z | 44 | PC: 12bf3 | Get time 0x12bf3: mov byte ptr [bp + 0x1d6], dl 0x12bf7: call 0x12c0d 0x12bfa: mov ah, 0x40 0x12bfc: mov cx, 0x1d6 0x12bff: lea dx, word ptr [bp + 6] 0x12c03: int 0x21 0x12c05: call 0x12c0d 0x12c08: mov ah, 0x3e 0x12c0a: int 0x21 0x12c0c: ret 0x12c0d: lea si, word ptr [bp + 0x11] 0x12c11: mov cx, 0x1a6 0x12c14: xor byte ptr [si], 0x48 0x12c17: inc si 0x12c18: dec cx 0x12c19: jne 0x12c14 0x12c1b: ret 0x12c1c: add word ptr [bx], di 0x12c1e: aas 0x12c1f: aas |
| 2018-12-17T23:15:54.413088194Z | 64 | PC: 12c05 | Write file or device (Write 470 bytes on handle 5) |
| 2018-12-17T23:15:54.416063748Z | 62 | PC: 12c0c | Close file |
| 2018-12-17T23:15:54.421814343Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T23:15:54.425164569Z | 61 | PC: 12baa | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:15:54.431719647Z | 63 | PC: 12bb9 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:15:54.43853058Z | 66 | PC: 12bc8 | Move file pointer |
| 2018-12-17T23:15:54.441081123Z | 66 | PC: 12bd7 | Move file pointer |
| 2018-12-17T23:15:54.442819409Z | 64 | PC: 12be3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:15:54.44575332Z | 66 | PC: 12bef | Move file pointer |
| 2018-12-17T23:15:54.448377453Z | 44 | PC: 12bf3 | Get time 0x12bf3: mov byte ptr [bp + 0x1d6], dl 0x12bf7: call 0x12c0d 0x12bfa: mov ah, 0x40 0x12bfc: mov cx, 0x1d6 0x12bff: lea dx, word ptr [bp + 6] 0x12c03: int 0x21 0x12c05: call 0x12c0d 0x12c08: mov ah, 0x3e 0x12c0a: int 0x21 0x12c0c: ret 0x12c0d: lea si, word ptr [bp + 0x11] 0x12c11: mov cx, 0x1a6 0x12c14: xor byte ptr [si], 0x4e 0x12c17: inc si 0x12c18: dec cx 0x12c19: jne 0x12c14 0x12c1b: ret 0x12c1c: add word ptr [bx], di 0x12c1e: aas 0x12c1f: aas |
| 2018-12-17T23:15:54.45071887Z | 64 | PC: 12c05 | Write file or device (Write 470 bytes on handle 5) |
| 2018-12-17T23:15:54.453865929Z | 62 | PC: 12c0c | Close file |
| 2018-12-17T23:15:54.463133861Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T23:15:54.465787409Z | 61 | PC: 12baa | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:15:54.472250021Z | 63 | PC: 12bb9 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:15:54.47979118Z | 66 | PC: 12bc8 | Move file pointer |
| 2018-12-17T23:15:54.481387764Z | 66 | PC: 12bd7 | Move file pointer |
| 2018-12-17T23:15:54.482789361Z | 64 | PC: 12be3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:15:54.486481955Z | 66 | PC: 12bef | Move file pointer |
| 2018-12-17T23:15:54.487927292Z | 44 | PC: 12bf3 | Get time 0x12bf3: mov byte ptr [bp + 0x1d6], dl 0x12bf7: call 0x12c0d 0x12bfa: mov ah, 0x40 0x12bfc: mov cx, 0x1d6 0x12bff: lea dx, word ptr [bp + 6] 0x12c03: int 0x21 0x12c05: call 0x12c0d 0x12c08: mov ah, 0x3e 0x12c0a: int 0x21 0x12c0c: ret 0x12c0d: lea si, word ptr [bp + 0x11] 0x12c11: mov cx, 0x1a6 0x12c14: xor byte ptr [si], 0x4e 0x12c17: inc si 0x12c18: dec cx 0x12c19: jne 0x12c14 0x12c1b: ret 0x12c1c: add word ptr [bx], di 0x12c1e: aas 0x12c1f: aas |
| 2018-12-17T23:15:54.490252285Z | 64 | PC: 12c05 | Write file or device (Write 470 bytes on handle 5) |
| 2018-12-17T23:15:54.499222877Z | 62 | PC: 12c0c | Close file |
| 2018-12-17T23:15:54.507481578Z | 26 | PC: 12a88 | Set disk transfer address |
| 2018-12-17T23:15:54.509427045Z | 9 | PC: 12aa6 | Display string (String= ' What were all the worlds alarms To mighty Paris when he found Sleep upon a golden bed That first dawn in Helens arms? Lullaby by W.B. Yeats ') |