.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:53:47.537508721Z | 250 | PC: 12a82 | UNKNOWN! |
| 2018-12-17T22:53:47.539021763Z | 255 | PC: 12ab2 | UNKNOWN! |
| 2018-12-17T22:53:47.540899109Z | 65 | PC: 12abf | Delete file (Filename = '') |
| 2018-12-17T22:53:47.54290653Z | 78 | PC: 12ae5 | Find first file |
| 2018-12-17T22:53:47.54933219Z | 61 | PC: 12aef | Open file (Filename = '') |
| 2018-12-17T22:53:47.558168158Z | 44 | PC: 12af7 | Get time 0x12af7: xor dh, dh 0x12af9: rcr dl, 2 0x12afc: push dx 0x12afd: sub cx, cx 0x12aff: mov ah, 0x3f 0x12b01: mov cx, 0xffff 0x12b04: mov dx, 0x124 0x12b07: int 0x21 0x12b09: cmp ax, 0x3e9 0x12b0c: jb 0x12b4d 0x12b0e: cmp ax, 0xfa00 0x12b11: ja 0x12b4d 0x12b13: add ax, 0x124 0x12b16: pop cx 0x12b17: add ax, cx 0x12b19: mov word ptr cs:[0x115], ax 0x12b1d: cmp word ptr [0x126], 0x614e 0x12b23: je 0x12b4d 0x12b25: mov ax, 0x4200 0x12b28: sub cx, cx |
| 2018-12-17T22:53:47.560668545Z | 63 | PC: 12b09 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:53:47.57318747Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:53:47.576223353Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:53:47.57973517Z | 61 | PC: 12aef | Open file (Filename = '') |
| 2018-12-17T22:53:47.588266745Z | 44 | PC: 12af7 | Get time 0x12af7: xor dh, dh 0x12af9: rcr dl, 2 0x12afc: push dx 0x12afd: sub cx, cx 0x12aff: mov ah, 0x3f 0x12b01: mov cx, 0xffff 0x12b04: mov dx, 0x124 0x12b07: int 0x21 0x12b09: cmp ax, 0x3e9 0x12b0c: jb 0x12b4d 0x12b0e: cmp ax, 0xfa00 0x12b11: ja 0x12b4d 0x12b13: add ax, 0x124 0x12b16: pop cx 0x12b17: add ax, cx 0x12b19: mov word ptr cs:[0x115], ax 0x12b1d: cmp word ptr [0x126], 0x614e 0x12b23: je 0x12b4d 0x12b25: mov ax, 0x4200 0x12b28: sub cx, cx |
| 2018-12-17T22:53:47.591157526Z | 63 | PC: 12b09 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:53:47.599158655Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:53:47.601505413Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:53:47.604737074Z | 61 | PC: 12aef | Open file (Filename = '') |
| 2018-12-17T22:53:47.613102618Z | 44 | PC: 12af7 | Get time 0x12af7: xor dh, dh 0x12af9: rcr dl, 2 0x12afc: push dx 0x12afd: sub cx, cx 0x12aff: mov ah, 0x3f 0x12b01: mov cx, 0xffff 0x12b04: mov dx, 0x124 0x12b07: int 0x21 0x12b09: cmp ax, 0x3e9 0x12b0c: jb 0x12b4d 0x12b0e: cmp ax, 0xfa00 0x12b11: ja 0x12b4d 0x12b13: add ax, 0x124 0x12b16: pop cx 0x12b17: add ax, cx 0x12b19: mov word ptr cs:[0x115], ax 0x12b1d: cmp word ptr [0x126], 0x614e 0x12b23: je 0x12b4d 0x12b25: mov ax, 0x4200 0x12b28: sub cx, cx |
| 2018-12-17T22:53:47.615696209Z | 63 | PC: 12b09 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:53:47.623102562Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:53:47.626634276Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:53:47.629815271Z | 61 | PC: 12aef | Open file (Filename = '') |
| 2018-12-17T22:53:47.637060381Z | 44 | PC: 12af7 | Get time 0x12af7: xor dh, dh 0x12af9: rcr dl, 2 0x12afc: push dx 0x12afd: sub cx, cx 0x12aff: mov ah, 0x3f 0x12b01: mov cx, 0xffff 0x12b04: mov dx, 0x124 0x12b07: int 0x21 0x12b09: cmp ax, 0x3e9 0x12b0c: jb 0x12b4d 0x12b0e: cmp ax, 0xfa00 0x12b11: ja 0x12b4d 0x12b13: add ax, 0x124 0x12b16: pop cx 0x12b17: add ax, cx 0x12b19: mov word ptr cs:[0x115], ax 0x12b1d: cmp word ptr [0x126], 0x614e 0x12b23: je 0x12b4d 0x12b25: mov ax, 0x4200 0x12b28: sub cx, cx |
| 2018-12-17T22:53:47.640490243Z | 63 | PC: 12b09 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:53:47.647180249Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:53:47.648754216Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:53:47.652045799Z | 61 | PC: 12aef | Open file (Filename = '') |
| 2018-12-17T22:53:47.657501267Z | 44 | PC: 12af7 | Get time 0x12af7: xor dh, dh 0x12af9: rcr dl, 2 0x12afc: push dx 0x12afd: sub cx, cx 0x12aff: mov ah, 0x3f 0x12b01: mov cx, 0xffff 0x12b04: mov dx, 0x124 0x12b07: int 0x21 0x12b09: cmp ax, 0x3e9 0x12b0c: jb 0x12b4d 0x12b0e: cmp ax, 0xfa00 0x12b11: ja 0x12b4d 0x12b13: add ax, 0x124 0x12b16: pop cx 0x12b17: add ax, cx 0x12b19: mov word ptr cs:[0x115], ax 0x12b1d: cmp word ptr [0x126], 0x614e 0x12b23: je 0x12b4d 0x12b25: mov ax, 0x4200 0x12b28: sub cx, cx |
| 2018-12-17T22:53:47.659421674Z | 63 | PC: 12b09 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:53:47.664715157Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:53:47.666544213Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:53:47.668786495Z | 61 | PC: 12aef | Open file (Filename = '') |
| 2018-12-17T22:53:47.674228638Z | 44 | PC: 12af7 | Get time 0x12af7: xor dh, dh 0x12af9: rcr dl, 2 0x12afc: push dx 0x12afd: sub cx, cx 0x12aff: mov ah, 0x3f 0x12b01: mov cx, 0xffff 0x12b04: mov dx, 0x124 0x12b07: int 0x21 0x12b09: cmp ax, 0x3e9 0x12b0c: jb 0x12b4d 0x12b0e: cmp ax, 0xfa00 0x12b11: ja 0x12b4d 0x12b13: add ax, 0x124 0x12b16: pop cx 0x12b17: add ax, cx 0x12b19: mov word ptr cs:[0x115], ax 0x12b1d: cmp word ptr [0x126], 0x614e 0x12b23: je 0x12b4d 0x12b25: mov ax, 0x4200 0x12b28: sub cx, cx |
| 2018-12-17T22:53:47.676763238Z | 63 | PC: 12b09 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:53:47.681851627Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:53:47.683407129Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:53:47.686260629Z | 61 | PC: 12aef | Open file (Filename = '') |
| 2018-12-17T22:53:47.691444496Z | 44 | PC: 12af7 | Get time 0x12af7: xor dh, dh 0x12af9: rcr dl, 2 0x12afc: push dx 0x12afd: sub cx, cx 0x12aff: mov ah, 0x3f 0x12b01: mov cx, 0xffff 0x12b04: mov dx, 0x124 0x12b07: int 0x21 0x12b09: cmp ax, 0x3e9 0x12b0c: jb 0x12b4d 0x12b0e: cmp ax, 0xfa00 0x12b11: ja 0x12b4d 0x12b13: add ax, 0x124 0x12b16: pop cx 0x12b17: add ax, cx 0x12b19: mov word ptr cs:[0x115], ax 0x12b1d: cmp word ptr [0x126], 0x614e 0x12b23: je 0x12b4d 0x12b25: mov ax, 0x4200 0x12b28: sub cx, cx |
| 2018-12-17T22:53:47.693322914Z | 63 | PC: 12b09 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:53:47.698912945Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:53:47.700667401Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:53:47.702860129Z | 61 | PC: 12aef | Open file (Filename = '') |
| 2018-12-17T22:53:47.708638814Z | 44 | PC: 12af7 | Get time 0x12af7: xor dh, dh 0x12af9: rcr dl, 2 0x12afc: push dx 0x12afd: sub cx, cx 0x12aff: mov ah, 0x3f 0x12b01: mov cx, 0xffff 0x12b04: mov dx, 0x124 0x12b07: int 0x21 0x12b09: cmp ax, 0x3e9 0x12b0c: jb 0x12b4d 0x12b0e: cmp ax, 0xfa00 0x12b11: ja 0x12b4d 0x12b13: add ax, 0x124 0x12b16: pop cx 0x12b17: add ax, cx 0x12b19: mov word ptr cs:[0x115], ax 0x12b1d: cmp word ptr [0x126], 0x614e 0x12b23: je 0x12b4d 0x12b25: mov ax, 0x4200 0x12b28: sub cx, cx |
| 2018-12-17T22:53:47.710559953Z | 63 | PC: 12b09 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:53:47.712727364Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:53:47.714978372Z | 79 | PC: 12b57 | Find next file |