.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:56:52.966851097Z | 26 | PC: 12e55 | Set disk transfer address |
| 2018-12-17T22:56:52.969304995Z | 37 | PC: 12e63 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:56:52.971322399Z | 37 | PC: 12e67 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:56:52.972990367Z | 78 | PC: 12eb6 | Find first file |
| 2018-12-17T22:56:52.98102938Z | 61 | PC: 12f52 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:56:53.010616677Z | 63 | PC: 12f61 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:56:53.027016108Z | 66 | PC: 12f71 | Move file pointer |
| 2018-12-17T22:56:53.028690416Z | 66 | PC: 12f81 | Move file pointer |
| 2018-12-17T22:56:53.05053638Z | 64 | PC: 12f8d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:56:53.054172888Z | 66 | PC: 12f9a | Move file pointer |
| 2018-12-17T22:56:53.055532796Z | 44 | PC: 12f9e | Get time 0x12f9e: mov byte ptr ds:[bp + 0x2a0], dl 0x12fa3: call 0x12fb9 0x12fa6: mov ah, 0x40 0x12fa8: mov cx, 0x1a0 0x12fab: lea dx, word ptr [bp + 0x106] 0x12faf: int 0x21 0x12fb1: call 0x12fb9 0x12fb4: mov ah, 0x3e 0x12fb6: int 0x21 0x12fb8: ret 0x12fb9: lea si, word ptr [bp + 0x120] 0x12fbd: mov cx, 0x161 0x12fc0: xor byte ptr [si], 0xd 0x12fc3: inc si 0x12fc4: dec cx 0x12fc5: jne 0x12fc0 0x12fc7: ret 0x12fc8: add word ptr [bx], di 0x12fca: aas 0x12fcb: aas |
| 2018-12-17T22:56:53.059575536Z | 64 | PC: 12fb1 | Write file or device (Write 416 bytes on handle 5) |
| 2018-12-17T22:56:53.080419553Z | 62 | PC: 12fb8 | Close file |
| 2018-12-17T22:56:53.092139344Z | 79 | PC: 12eb6 | Find next file |
| 2018-12-17T22:56:53.097755873Z | 61 | PC: 12f52 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:56:53.106629452Z | 63 | PC: 12f61 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:56:53.11541382Z | 66 | PC: 12f71 | Move file pointer |
| 2018-12-17T22:56:53.117896627Z | 66 | PC: 12f81 | Move file pointer |
| 2018-12-17T22:56:53.119540178Z | 64 | PC: 12f8d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:56:53.123320188Z | 66 | PC: 12f9a | Move file pointer |
| 2018-12-17T22:56:53.125516996Z | 44 | PC: 12f9e | Get time 0x12f9e: mov byte ptr ds:[bp + 0x2a0], dl 0x12fa3: call 0x12fb9 0x12fa6: mov ah, 0x40 0x12fa8: mov cx, 0x1a0 0x12fab: lea dx, word ptr [bp + 0x106] 0x12faf: int 0x21 0x12fb1: call 0x12fb9 0x12fb4: mov ah, 0x3e 0x12fb6: int 0x21 0x12fb8: ret 0x12fb9: lea si, word ptr [bp + 0x120] 0x12fbd: mov cx, 0x161 0x12fc0: xor byte ptr [si], 0x47 0x12fc3: inc si 0x12fc4: dec cx 0x12fc5: jne 0x12fc0 0x12fc7: ret 0x12fc8: add word ptr [bx], di 0x12fca: aas 0x12fcb: aas |
| 2018-12-17T22:56:53.128426094Z | 64 | PC: 12fb1 | Write file or device (Write 416 bytes on handle 5) |
| 2018-12-17T22:56:53.131588977Z | 62 | PC: 12fb8 | Close file |
| 2018-12-17T22:56:53.140732487Z | 79 | PC: 12eb6 | Find next file |
| 2018-12-17T22:56:53.144029016Z | 61 | PC: 12f52 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:56:53.151706109Z | 63 | PC: 12f61 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:56:53.159178577Z | 66 | PC: 12f71 | Move file pointer |
| 2018-12-17T22:56:53.161449709Z | 66 | PC: 12f81 | Move file pointer |
| 2018-12-17T22:56:53.16306918Z | 64 | PC: 12f8d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:56:53.16603185Z | 66 | PC: 12f9a | Move file pointer |
| 2018-12-17T22:56:53.194593267Z | 44 | PC: 12f9e | Get time 0x12f9e: mov byte ptr ds:[bp + 0x2a0], dl 0x12fa3: call 0x12fb9 0x12fa6: mov ah, 0x40 0x12fa8: mov cx, 0x1a0 0x12fab: lea dx, word ptr [bp + 0x106] 0x12faf: int 0x21 0x12fb1: call 0x12fb9 0x12fb4: mov ah, 0x3e 0x12fb6: int 0x21 0x12fb8: ret 0x12fb9: lea si, word ptr [bp + 0x120] 0x12fbd: mov cx, 0x161 0x12fc0: xor byte ptr [si], 0x4d 0x12fc3: inc si 0x12fc4: dec cx 0x12fc5: jne 0x12fc0 0x12fc7: ret 0x12fc8: add word ptr [bx], di 0x12fca: aas 0x12fcb: aas |
| 2018-12-17T22:56:53.201713629Z | 64 | PC: 12fb1 | Write file or device (Write 416 bytes on handle 5) |
| 2018-12-17T22:56:53.209117379Z | 62 | PC: 12fb8 | Close file |
| 2018-12-17T22:56:53.238585106Z | 79 | PC: 12eb6 | Find next file |
| 2018-12-17T22:56:53.242023929Z | 61 | PC: 12f52 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:56:53.249778156Z | 63 | PC: 12f61 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:56:53.271938835Z | 66 | PC: 12f71 | Move file pointer |
| 2018-12-17T22:56:53.274568111Z | 66 | PC: 12f81 | Move file pointer |
| 2018-12-17T22:56:53.276289166Z | 64 | PC: 12f8d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:56:53.280433031Z | 66 | PC: 12f9a | Move file pointer |
| 2018-12-17T22:56:53.282048552Z | 44 | PC: 12f9e | Get time 0x12f9e: mov byte ptr ds:[bp + 0x2a0], dl 0x12fa3: call 0x12fb9 0x12fa6: mov ah, 0x40 0x12fa8: mov cx, 0x1a0 0x12fab: lea dx, word ptr [bp + 0x106] 0x12faf: int 0x21 0x12fb1: call 0x12fb9 0x12fb4: mov ah, 0x3e 0x12fb6: int 0x21 0x12fb8: ret 0x12fb9: lea si, word ptr [bp + 0x120] 0x12fbd: mov cx, 0x161 0x12fc0: xor byte ptr [si], 0x52 0x12fc3: inc si 0x12fc4: dec cx 0x12fc5: jne 0x12fc0 0x12fc7: ret 0x12fc8: add word ptr [bx], di 0x12fca: aas 0x12fcb: aas |
| 2018-12-17T22:56:53.284632157Z | 64 | PC: 12fb1 | Write file or device (Write 416 bytes on handle 5) |
| 2018-12-17T22:56:53.287930828Z | 62 | PC: 12fb8 | Close file |
| 2018-12-17T22:56:53.297508008Z | 79 | PC: 12eb6 | Find next file |
| 2018-12-17T22:56:53.300537094Z | 61 | PC: 12f52 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:56:53.308622157Z | 63 | PC: 12f61 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:56:53.316369405Z | 66 | PC: 12f71 | Move file pointer |
| 2018-12-17T22:56:53.318546874Z | 66 | PC: 12f81 | Move file pointer |
| 2018-12-17T22:56:53.320187153Z | 64 | PC: 12f8d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:56:53.324213641Z | 66 | PC: 12f9a | Move file pointer |
| 2018-12-17T22:56:53.325981731Z | 44 | PC: 12f9e | Get time 0x12f9e: mov byte ptr ds:[bp + 0x2a0], dl 0x12fa3: call 0x12fb9 0x12fa6: mov ah, 0x40 0x12fa8: mov cx, 0x1a0 0x12fab: lea dx, word ptr [bp + 0x106] 0x12faf: int 0x21 0x12fb1: call 0x12fb9 0x12fb4: mov ah, 0x3e 0x12fb6: int 0x21 0x12fb8: ret 0x12fb9: lea si, word ptr [bp + 0x120] 0x12fbd: mov cx, 0x161 0x12fc0: xor byte ptr [si], 0x58 0x12fc3: inc si 0x12fc4: dec cx 0x12fc5: jne 0x12fc0 0x12fc7: ret 0x12fc8: add word ptr [bx], di 0x12fca: aas 0x12fcb: aas |
| 2018-12-17T22:56:53.328626899Z | 64 | PC: 12fb1 | Write file or device (Write 416 bytes on handle 5) |
| 2018-12-17T22:56:53.333235998Z | 62 | PC: 12fb8 | Close file |
| 2018-12-17T22:56:53.342129871Z | 26 | PC: 12ed0 | Set disk transfer address |