.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:53:33.795479067Z | 26 | PC: 12a5f | Set disk transfer address |
| 2018-12-17T22:53:33.798158139Z | 71 | PC: 12a69 | Get current directory |
| 2018-12-17T22:53:33.801326811Z | 78 | PC: 12a91 | Find first file |
| 2018-12-17T22:53:33.807610967Z | 61 | PC: 12b44 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:53:33.819763086Z | 63 | PC: 12aab | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:53:33.82659078Z | 62 | PC: 12aaf | Close file |
| 2018-12-17T22:53:33.828474304Z | 67 | PC: 12aef | Get or set file attributes |
| 2018-12-17T22:53:33.849383299Z | 61 | PC: 12b44 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:53:33.856637642Z | 64 | PC: 12aff | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:53:33.863641817Z | 66 | PC: 12b08 | Move file pointer |
| 2018-12-17T22:53:33.866470431Z | 64 | PC: 12b13 | Write file or device (Write 304 bytes on handle 5) |
| 2018-12-17T22:53:33.874571299Z | 44 | PC: 12b17 | Get time 0x12b17: mov word ptr [bp + 0x235], dx
0x12b1b: mov ax, 0x5701
0x12b1e: mov cx, word ptr [bp + 0x28c]
0x12b22: mov dx, word ptr [bp + 0x28e]
0x12b26: int 0x21
0x12b28: mov ah, 0x3e
0x12b2a: int 0x21
0x12b2c: xor cx, cx
0x12b2e: mov cl, byte ptr [bp + 0x28b]
0x12b32: mov ax, 0x4301
0x12b35: lea dx, word ptr [bp + 0x294]
0x12b39: int 0x21
0x12b3b: ret
0x12b3c: mov ah, 0x3d
0x12b3e: lea dx, word ptr [bp + 0x294]
0x12b42: int 0x21
0x12b44: xchg ax, bx
0x12b45: ret
0x12b46: sub ch, byte ptr [0x4f43]
0x12b4a: dec bp
|
| 2018-12-17T22:53:33.876762155Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:53:33.878780068Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:53:33.886992787Z | 67 | PC: 12b3b | Get or set file attributes |
| 2018-12-17T22:53:33.896747991Z | 79 | PC: 12a91 | Find next file |
| 2018-12-17T22:53:33.899320138Z | 61 | PC: 12b44 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:53:33.913617821Z | 63 | PC: 12aab | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:53:33.92038794Z | 62 | PC: 12aaf | Close file |
| 2018-12-17T22:53:33.922228999Z | 67 | PC: 12aef | Get or set file attributes |
| 2018-12-17T22:53:33.933294859Z | 61 | PC: 12b44 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:53:33.939827138Z | 64 | PC: 12aff | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:53:33.94255572Z | 66 | PC: 12b08 | Move file pointer |
| 2018-12-17T22:53:33.945487691Z | 64 | PC: 12b13 | Write file or device (Write 304 bytes on handle 5) |
| 2018-12-17T22:53:33.948272802Z | 44 | PC: 12b17 | Get time 0x12b17: mov word ptr [bp + 0x235], dx
0x12b1b: mov ax, 0x5701
0x12b1e: mov cx, word ptr [bp + 0x28c]
0x12b22: mov dx, word ptr [bp + 0x28e]
0x12b26: int 0x21
0x12b28: mov ah, 0x3e
0x12b2a: int 0x21
0x12b2c: xor cx, cx
0x12b2e: mov cl, byte ptr [bp + 0x28b]
0x12b32: mov ax, 0x4301
0x12b35: lea dx, word ptr [bp + 0x294]
0x12b39: int 0x21
0x12b3b: ret
0x12b3c: mov ah, 0x3d
0x12b3e: lea dx, word ptr [bp + 0x294]
0x12b42: int 0x21
0x12b44: xchg ax, bx
0x12b45: ret
0x12b46: sub ch, byte ptr [0x4f43]
0x12b4a: dec bp
|
| 2018-12-17T22:53:33.950383992Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:53:33.952886745Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:53:33.960183191Z | 67 | PC: 12b3b | Get or set file attributes |
| 2018-12-17T22:53:34.063450779Z | 79 | PC: 12a91 | Find next file |
| 2018-12-17T22:53:34.067848518Z | 61 | PC: 12b44 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:53:34.086260058Z | 63 | PC: 12aab | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:53:34.096456129Z | 62 | PC: 12aaf | Close file |
| 2018-12-17T22:53:34.100004726Z | 67 | PC: 12aef | Get or set file attributes |
| 2018-12-17T22:53:34.211266206Z | 61 | PC: 12b44 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:53:34.217519507Z | 64 | PC: 12aff | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:53:34.221547794Z | 66 | PC: 12b08 | Move file pointer |
| 2018-12-17T22:53:34.223454367Z | 64 | PC: 12b13 | Write file or device (Write 304 bytes on handle 5) |
| 2018-12-17T22:53:34.227444255Z | 44 | PC: 12b17 | Get time 0x12b17: mov word ptr [bp + 0x235], dx
0x12b1b: mov ax, 0x5701
0x12b1e: mov cx, word ptr [bp + 0x28c]
0x12b22: mov dx, word ptr [bp + 0x28e]
0x12b26: int 0x21
0x12b28: mov ah, 0x3e
0x12b2a: int 0x21
0x12b2c: xor cx, cx
0x12b2e: mov cl, byte ptr [bp + 0x28b]
0x12b32: mov ax, 0x4301
0x12b35: lea dx, word ptr [bp + 0x294]
0x12b39: int 0x21
0x12b3b: ret
0x12b3c: mov ah, 0x3d
0x12b3e: lea dx, word ptr [bp + 0x294]
0x12b42: int 0x21
0x12b44: xchg ax, bx
0x12b45: ret
0x12b46: sub ch, byte ptr [0x4f43]
0x12b4a: dec bp
|
| 2018-12-17T22:53:34.230767827Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:53:34.23281994Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:53:34.30914427Z | 67 | PC: 12b3b | Get or set file attributes |
| 2018-12-17T22:53:34.332780058Z | 79 | PC: 12a91 | Find next file |
| 2018-12-17T22:53:34.335875129Z | 61 | PC: 12b44 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:53:34.342561444Z | 63 | PC: 12aab | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:53:34.349391044Z | 62 | PC: 12aaf | Close file |
| 2018-12-17T22:53:34.352367797Z | 67 | PC: 12aef | Get or set file attributes |
| 2018-12-17T22:53:34.362687179Z | 61 | PC: 12b44 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:53:34.36909304Z | 64 | PC: 12aff | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:53:34.373699141Z | 66 | PC: 12b08 | Move file pointer |
| 2018-12-17T22:53:34.375046886Z | 64 | PC: 12b13 | Write file or device (Write 304 bytes on handle 5) |
| 2018-12-17T22:53:34.377676245Z | 44 | PC: 12b17 | Get time 0x12b17: mov word ptr [bp + 0x235], dx
0x12b1b: mov ax, 0x5701
0x12b1e: mov cx, word ptr [bp + 0x28c]
0x12b22: mov dx, word ptr [bp + 0x28e]
0x12b26: int 0x21
0x12b28: mov ah, 0x3e
0x12b2a: int 0x21
0x12b2c: xor cx, cx
0x12b2e: mov cl, byte ptr [bp + 0x28b]
0x12b32: mov ax, 0x4301
0x12b35: lea dx, word ptr [bp + 0x294]
0x12b39: int 0x21
0x12b3b: ret
0x12b3c: mov ah, 0x3d
0x12b3e: lea dx, word ptr [bp + 0x294]
0x12b42: int 0x21
0x12b44: xchg ax, bx
0x12b45: ret
0x12b46: sub ch, byte ptr [0x4f43]
0x12b4a: dec bp
|
| 2018-12-17T22:53:34.380180313Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:53:34.381821299Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:53:34.389067103Z | 67 | PC: 12b3b | Get or set file attributes |
| 2018-12-17T22:53:34.407752697Z | 79 | PC: 12a91 | Find next file |
| 2018-12-17T22:53:34.411454925Z | 61 | PC: 12b44 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:53:34.418240064Z | 63 | PC: 12aab | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:53:34.425466075Z | 62 | PC: 12aaf | Close file |
| 2018-12-17T22:53:34.42794026Z | 67 | PC: 12aef | Get or set file attributes |
| 2018-12-17T22:53:34.432448097Z | 61 | PC: 12b44 | Open file (Filename = 'PRINTA~1.COM��') |
| 2018-12-17T22:53:34.438732889Z | 64 | PC: 12aff | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:53:34.441987649Z | 66 | PC: 12b08 | Move file pointer |
| 2018-12-17T22:53:34.443664847Z | 64 | PC: 12b13 | Write file or device (Write 304 bytes on handle 2) |
| 2018-12-17T22:53:34.446954393Z | 44 | PC: 12b17 | Get time 0x12b17: mov word ptr [bp + 0x235], dx
0x12b1b: mov ax, 0x5701
0x12b1e: mov cx, word ptr [bp + 0x28c]
0x12b22: mov dx, word ptr [bp + 0x28e]
0x12b26: int 0x21
0x12b28: mov ah, 0x3e
0x12b2a: int 0x21
0x12b2c: xor cx, cx
0x12b2e: mov cl, byte ptr [bp + 0x28b]
0x12b32: mov ax, 0x4301
0x12b35: lea dx, word ptr [bp + 0x294]
0x12b39: int 0x21
0x12b3b: ret
0x12b3c: mov ah, 0x3d
0x12b3e: lea dx, word ptr [bp + 0x294]
0x12b42: int 0x21
0x12b44: xchg ax, bx
0x12b45: ret
0x12b46: sub ch, byte ptr [0x4f43]
0x12b4a: dec bp
|
| 2018-12-17T22:53:34.45020438Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:53:34.451968393Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:53:34.454002313Z | 67 | PC: 12b3b | Get or set file attributes |
| 2018-12-17T22:53:34.458894521Z | 79 | PC: 12a91 | Find next file |
| 2018-12-17T22:53:34.46164088Z | 61 | PC: 12b44 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:53:34.467987912Z | 63 | PC: 12aab | Read file or device (Read 5 bytes on handle 2) |
| 2018-12-17T22:53:34.475564862Z | 62 | PC: 12aaf | Close file |
| 2018-12-17T22:53:34.477529844Z | 67 | PC: 12aef | Get or set file attributes |
| 2018-12-17T22:53:34.486845192Z | 61 | PC: 12b44 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:53:34.494510083Z | 64 | PC: 12aff | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:53:34.497516364Z | 66 | PC: 12b08 | Move file pointer |
| 2018-12-17T22:53:34.499231004Z | 64 | PC: 12b13 | Write file or device (Write 304 bytes on handle 2) |
| 2018-12-17T22:53:34.5090257Z | 44 | PC: 12b17 | Get time 0x12b17: mov word ptr [bp + 0x235], dx
0x12b1b: mov ax, 0x5701
0x12b1e: mov cx, word ptr [bp + 0x28c]
0x12b22: mov dx, word ptr [bp + 0x28e]
0x12b26: int 0x21
0x12b28: mov ah, 0x3e
0x12b2a: int 0x21
0x12b2c: xor cx, cx
0x12b2e: mov cl, byte ptr [bp + 0x28b]
0x12b32: mov ax, 0x4301
0x12b35: lea dx, word ptr [bp + 0x294]
0x12b39: int 0x21
0x12b3b: ret
0x12b3c: mov ah, 0x3d
0x12b3e: lea dx, word ptr [bp + 0x294]
0x12b42: int 0x21
0x12b44: xchg ax, bx
0x12b45: ret
0x12b46: sub ch, byte ptr [0x4f43]
0x12b4a: dec bp
|
| 2018-12-17T22:53:34.511488573Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:53:34.513307476Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:53:34.521738405Z | 67 | PC: 12b3b | Get or set file attributes |
| 2018-12-17T22:53:34.532300549Z | 79 | PC: 12a91 | Find next file |
| 2018-12-17T22:53:34.534966252Z | 61 | PC: 12b44 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:53:34.542590839Z | 63 | PC: 12aab | Read file or device (Read 5 bytes on handle 2) |
| 2018-12-17T22:53:34.549354542Z | 62 | PC: 12aaf | Close file |
| 2018-12-17T22:53:34.551452453Z | 67 | PC: 12aef | Get or set file attributes |
| 2018-12-17T22:53:34.562660352Z | 61 | PC: 12b44 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:53:34.575422398Z | 64 | PC: 12aff | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:53:34.582216889Z | 66 | PC: 12b08 | Move file pointer |
| 2018-12-17T22:53:34.584650723Z | 64 | PC: 12b13 | Write file or device (Write 304 bytes on handle 2) |
| 2018-12-17T22:53:34.587527851Z | 44 | PC: 12b17 | Get time 0x12b17: mov word ptr [bp + 0x235], dx
0x12b1b: mov ax, 0x5701
0x12b1e: mov cx, word ptr [bp + 0x28c]
0x12b22: mov dx, word ptr [bp + 0x28e]
0x12b26: int 0x21
0x12b28: mov ah, 0x3e
0x12b2a: int 0x21
0x12b2c: xor cx, cx
0x12b2e: mov cl, byte ptr [bp + 0x28b]
0x12b32: mov ax, 0x4301
0x12b35: lea dx, word ptr [bp + 0x294]
0x12b39: int 0x21
0x12b3b: ret
0x12b3c: mov ah, 0x3d
0x12b3e: lea dx, word ptr [bp + 0x294]
0x12b42: int 0x21
0x12b44: xchg ax, bx
0x12b45: ret
0x12b46: sub ch, byte ptr [0x4f43]
0x12b4a: dec bp
|
| 2018-12-17T22:53:34.590016173Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:53:34.592648875Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:53:34.600598027Z | 67 | PC: 12b3b | Get or set file attributes |
| 2018-12-17T22:53:34.610508579Z | 79 | PC: 12a91 | Find next file |
| 2018-12-17T22:53:34.614338648Z | 61 | PC: 12b44 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:53:34.621686726Z | 63 | PC: 12aab | Read file or device (Read 5 bytes on handle 2) |
| 2018-12-17T22:53:34.628865901Z | 62 | PC: 12aaf | Close file |
| 2018-12-17T22:53:34.631969162Z | 79 | PC: 12a91 | Find next file |
| 2018-12-17T22:53:34.634587952Z | 59 | PC: 12a78 | Change current directory |
| 2018-12-17T22:53:34.639679873Z | 59 | PC: 12a82 | Change current directory |
| 2018-12-17T22:53:34.646045919Z | 26 | PC: 12a89 | Set disk transfer address |
