.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:53:18.75999375Z | 26 | PC: 12b24 | Set disk transfer address |
| 2018-12-17T22:53:18.761452671Z | 78 | PC: 12b2c | Find first file |
| 2018-12-17T22:53:18.769101328Z | 47 | PC: 12b37 | Get disk transfer address |
| 2018-12-17T22:53:18.770656028Z | 61 | PC: 12b47 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:53:18.777932196Z | 87 | PC: 12b4d | Get or set file date and time |
| 2018-12-17T22:53:18.780673325Z | 63 | PC: 12b6d | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:53:18.788031908Z | 66 | PC: 12b7f | Move file pointer |
| 2018-12-17T22:53:18.789594153Z | 64 | PC: 12b8a | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:53:18.793960665Z | 66 | PC: 12b93 | Move file pointer |
| 2018-12-17T22:53:18.803178059Z | 44 | PC: 12ace | Get time 0x12ace: mov byte ptr [bp + 0x120], cl 0x12ad2: mov cx, 0xdd 0x12ad5: lea si, word ptr [bp + 0x16d] 0x12ad9: lea di, word ptr [bp + 0x232] 0x12add: movsb byte ptr es:[di], byte ptr [si] 0x12ade: mov al, byte ptr [bp + 0x232] 0x12ae2: xor al, byte ptr [bp + 0x120] 0x12ae6: mov byte ptr [bp + 0x232], al 0x12aea: lea di, word ptr [si - 1] 0x12aed: lea si, word ptr [bp + 0x232] 0x12af1: movsb byte ptr es:[di], byte ptr [si] 0x12af2: mov si, di 0x12af4: loop 0x12ad9 0x12af6: ret 0x12af7: jmp 0x12b11 0x12af9: call 0x22aca 0x12afc: mov ah, 0x40 0x12afe: mov cx, 0x14a 0x12b01: lea dx, word ptr [bp + 0x100] 0x12b05: int 0x21 |
| 2018-12-17T22:53:18.806900622Z | 64 | PC: 12b07 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T22:53:18.831830751Z | 87 | PC: 12ba5 | Get or set file date and time |
| 2018-12-17T22:53:18.834102819Z | 62 | PC: 12ba9 | Close file |
| 2018-12-17T22:53:18.853284701Z | 79 | PC: 12b2c | Find next file |
| 2018-12-17T22:53:18.856747206Z | 47 | PC: 12b37 | Get disk transfer address |
| 2018-12-17T22:53:18.860497159Z | 61 | PC: 12b47 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:53:18.868598338Z | 87 | PC: 12b4d | Get or set file date and time |
| 2018-12-17T22:53:18.870772371Z | 63 | PC: 12b6d | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:53:18.880208105Z | 66 | PC: 12b7f | Move file pointer |
| 2018-12-17T22:53:18.882347163Z | 64 | PC: 12b8a | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:53:18.886458767Z | 66 | PC: 12b93 | Move file pointer |
| 2018-12-17T22:53:18.88956427Z | 44 | PC: 12ace | Get time 0x12ace: mov byte ptr [bp + 0x120], cl 0x12ad2: mov cx, 0xdd 0x12ad5: lea si, word ptr [bp + 0x16d] 0x12ad9: lea di, word ptr [bp + 0x232] 0x12add: movsb byte ptr es:[di], byte ptr [si] 0x12ade: mov al, byte ptr [bp + 0x232] 0x12ae2: xor al, byte ptr [bp + 0x120] 0x12ae6: mov byte ptr [bp + 0x232], al 0x12aea: lea di, word ptr [si - 1] 0x12aed: lea si, word ptr [bp + 0x232] 0x12af1: movsb byte ptr es:[di], byte ptr [si] 0x12af2: mov si, di 0x12af4: loop 0x12ad9 0x12af6: ret 0x12af7: jmp 0x12b11 0x12af9: call 0x22aca 0x12afc: mov ah, 0x40 0x12afe: mov cx, 0x14a 0x12b01: lea dx, word ptr [bp + 0x100] 0x12b05: int 0x21 |
| 2018-12-17T22:53:18.892293687Z | 64 | PC: 12b07 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T22:53:18.895484481Z | 87 | PC: 12ba5 | Get or set file date and time |
| 2018-12-17T22:53:18.897418595Z | 62 | PC: 12ba9 | Close file |
| 2018-12-17T22:53:18.906648102Z | 79 | PC: 12b2c | Find next file |
| 2018-12-17T22:53:18.910136384Z | 47 | PC: 12b37 | Get disk transfer address |
| 2018-12-17T22:53:18.911703448Z | 61 | PC: 12b47 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:53:18.921243328Z | 87 | PC: 12b4d | Get or set file date and time |
| 2018-12-17T22:53:18.923818175Z | 63 | PC: 12b6d | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:53:18.934030438Z | 66 | PC: 12b7f | Move file pointer |
| 2018-12-17T22:53:18.937474296Z | 64 | PC: 12b8a | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:53:18.943615663Z | 66 | PC: 12b93 | Move file pointer |
| 2018-12-17T22:53:18.94533851Z | 44 | PC: 12ace | Get time 0x12ace: mov byte ptr [bp + 0x120], cl 0x12ad2: mov cx, 0xdd 0x12ad5: lea si, word ptr [bp + 0x16d] 0x12ad9: lea di, word ptr [bp + 0x232] 0x12add: movsb byte ptr es:[di], byte ptr [si] 0x12ade: mov al, byte ptr [bp + 0x232] 0x12ae2: xor al, byte ptr [bp + 0x120] 0x12ae6: mov byte ptr [bp + 0x232], al 0x12aea: lea di, word ptr [si - 1] 0x12aed: lea si, word ptr [bp + 0x232] 0x12af1: movsb byte ptr es:[di], byte ptr [si] 0x12af2: mov si, di 0x12af4: loop 0x12ad9 0x12af6: ret 0x12af7: jmp 0x12b11 0x12af9: call 0x22aca 0x12afc: mov ah, 0x40 0x12afe: mov cx, 0x14a 0x12b01: lea dx, word ptr [bp + 0x100] 0x12b05: int 0x21 |
| 2018-12-17T22:53:18.949921217Z | 64 | PC: 12b07 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T22:53:18.956697005Z | 87 | PC: 12ba5 | Get or set file date and time |
| 2018-12-17T22:53:18.95986165Z | 62 | PC: 12ba9 | Close file |
| 2018-12-17T22:53:18.997024017Z | 26 | PC: 12bbd | Set disk transfer address |