.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:57:53.788261829Z | 26 | PC: 14459 | Set disk transfer address |
| 2018-12-17T22:57:53.789631914Z | 71 | PC: 14464 | Get current directory |
| 2018-12-17T22:57:53.794093Z | 78 | PC: 14471 | Find first file |
| 2018-12-17T22:57:53.801059786Z | 61 | PC: 1447c | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:57:53.808486637Z | 66 | PC: 14490 | Move file pointer |
| 2018-12-17T22:57:53.811754339Z | 63 | PC: 1449b | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:57:53.81928253Z | 67 | PC: 144d1 | Get or set file attributes |
| 2018-12-17T22:57:53.837008381Z | 62 | PC: 144d5 | Close file |
| 2018-12-17T22:57:53.840583351Z | 61 | PC: 144da | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:57:53.862475343Z | 66 | PC: 144e5 | Move file pointer |
| 2018-12-17T22:57:53.864533973Z | 63 | PC: 14505 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:57:53.868618911Z | 66 | PC: 14518 | Move file pointer |
| 2018-12-17T22:57:53.871716535Z | 64 | PC: 14522 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:57:53.874995939Z | 66 | PC: 1452b | Move file pointer |
| 2018-12-17T22:57:53.876992482Z | 64 | PC: 1454c | Write file or device (Write 353 bytes on handle 5) |
| 2018-12-17T22:57:53.888217643Z | 87 | PC: 14559 | Get or set file date and time |
| 2018-12-17T22:57:53.900816837Z | 67 | PC: 14566 | Get or set file attributes |
| 2018-12-17T22:57:53.913493285Z | 59 | PC: 14573 | Change current directory |
| 2018-12-17T22:57:53.919393316Z | 47 | PC: 142cc | Get disk transfer address |
| 2018-12-17T22:57:53.921129029Z | 26 | PC: 142d9 | Set disk transfer address |
| 2018-12-17T22:57:53.922771747Z | 78 | PC: 14303 | Find first file |
| 2018-12-17T22:57:53.93031198Z | 61 | PC: 14339 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:57:53.943251434Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:53.964889799Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:53.967654867Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:53.970651429Z | 66 | PC: 143e6 | Move file pointer |
| 2018-12-17T22:57:53.972453126Z | 64 | PC: 14387 | Write file or device (Write 4 bytes on handle 6) |
| 2018-12-17T22:57:53.975904093Z | 66 | PC: 14392 | Move file pointer |
| 2018-12-17T22:57:53.980935942Z | 64 | PC: 143ad | Write file or device (Write 373 bytes on handle 6) |
| 2018-12-17T22:57:53.984719945Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:53.993403037Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:53.997042579Z | 61 | PC: 14339 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:57:54.004548888Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.011760295Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.014510845Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.017442496Z | 66 | PC: 143e6 | Move file pointer |
| 2018-12-17T22:57:54.019235616Z | 64 | PC: 14387 | Write file or device (Write 4 bytes on handle 6) |
| 2018-12-17T22:57:54.023045528Z | 66 | PC: 14392 | Move file pointer |
| 2018-12-17T22:57:54.024773877Z | 64 | PC: 143ad | Write file or device (Write 373 bytes on handle 6) |
| 2018-12-17T22:57:54.027969544Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.037691199Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.04077192Z | 61 | PC: 14339 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:57:54.048067894Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.056396811Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.057992631Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.060706412Z | 66 | PC: 143e6 | Move file pointer |
| 2018-12-17T22:57:54.062368066Z | 64 | PC: 14387 | Write file or device (Write 4 bytes on handle 6) |
| 2018-12-17T22:57:54.066026763Z | 66 | PC: 14392 | Move file pointer |
| 2018-12-17T22:57:54.067704106Z | 64 | PC: 143ad | Write file or device (Write 373 bytes on handle 6) |
| 2018-12-17T22:57:54.070668979Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.079559762Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.082914088Z | 61 | PC: 14339 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:57:54.090347029Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.098599001Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.101630499Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.10463118Z | 66 | PC: 143e6 | Move file pointer |
| 2018-12-17T22:57:54.107215418Z | 64 | PC: 14387 | Write file or device (Write 4 bytes on handle 6) |
| 2018-12-17T22:57:54.110539998Z | 66 | PC: 14392 | Move file pointer |
| 2018-12-17T22:57:54.112462041Z | 64 | PC: 143ad | Write file or device (Write 373 bytes on handle 6) |
| 2018-12-17T22:57:54.115883562Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.125310522Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.128510477Z | 61 | PC: 14339 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:57:54.135822112Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.143381692Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.145229756Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.148226389Z | 66 | PC: 143e6 | Move file pointer |
| 2018-12-17T22:57:54.151119176Z | 64 | PC: 14387 | Write file or device (Write 4 bytes on handle 6) |
| 2018-12-17T22:57:54.15428117Z | 66 | PC: 14392 | Move file pointer |
| 2018-12-17T22:57:54.156208103Z | 64 | PC: 143ad | Write file or device (Write 373 bytes on handle 6) |
| 2018-12-17T22:57:54.160546839Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.168815692Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.1716131Z | 61 | PC: 14339 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:57:54.179809147Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.186830616Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.188452886Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.192586936Z | 66 | PC: 143e6 | Move file pointer |
| 2018-12-17T22:57:54.19425381Z | 64 | PC: 14387 | Write file or device (Write 4 bytes on handle 6) |
| 2018-12-17T22:57:54.197060345Z | 66 | PC: 14392 | Move file pointer |
| 2018-12-17T22:57:54.19865876Z | 64 | PC: 143ad | Write file or device (Write 373 bytes on handle 6) |
| 2018-12-17T22:57:54.207748066Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.216790193Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.219961955Z | 61 | PC: 14339 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:57:54.228144185Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.235320796Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.237246516Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.241647218Z | 66 | PC: 143e6 | Move file pointer |
| 2018-12-17T22:57:54.243556908Z | 64 | PC: 14387 | Write file or device (Write 4 bytes on handle 6) |
| 2018-12-17T22:57:54.247584539Z | 66 | PC: 14392 | Move file pointer |
| 2018-12-17T22:57:54.250363723Z | 64 | PC: 143ad | Write file or device (Write 373 bytes on handle 6) |
| 2018-12-17T22:57:54.25374009Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.262620473Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.266805751Z | 61 | PC: 14339 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:57:54.2742535Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.277347777Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.280047632Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.283526872Z | 66 | PC: 143e6 | Move file pointer |
| 2018-12-17T22:57:54.285328379Z | 64 | PC: 14387 | Write file or device (Write 4 bytes on handle 6) |
| 2018-12-17T22:57:54.289388711Z | 66 | PC: 14392 | Move file pointer |
| 2018-12-17T22:57:54.291813149Z | 64 | PC: 143ad | Write file or device (Write 373 bytes on handle 6) |
| 2018-12-17T22:57:54.300732044Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.309788138Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.312532586Z | 78 | PC: 14303 | Find first file |
| 2018-12-17T22:57:54.320033586Z | 61 | PC: 14339 | Open file (Filename = '\SLEEP.COM') |
| 2018-12-17T22:57:54.32713766Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.336001272Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.3375002Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.339943823Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.342680026Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.344983536Z | 61 | PC: 14339 | Open file (Filename = '\PRINT.COM') |
| 2018-12-17T22:57:54.350194261Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.353402221Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.35464132Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.356669042Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.358163181Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.360903001Z | 61 | PC: 14339 | Open file (Filename = '\HELLO.COM') |
| 2018-12-17T22:57:54.36656786Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.369060786Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.371516983Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.374349237Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.376365667Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.38013887Z | 61 | PC: 14339 | Open file (Filename = '\PHANG.COM') |
| 2018-12-17T22:57:54.387919216Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.391903295Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.394819837Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.397938119Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.400315267Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.405021002Z | 61 | PC: 14339 | Open file (Filename = '\PRINTA~1.COM') |
| 2018-12-17T22:57:54.412869105Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.416097394Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.418338587Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.42147907Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.423683614Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.42737364Z | 61 | PC: 14339 | Open file (Filename = '\MANDEL.COM') |
| 2018-12-17T22:57:54.43462463Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.441862386Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.444555318Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.448160385Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.450476959Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.453917206Z | 61 | PC: 14339 | Open file (Filename = '\PAH.COM') |
| 2018-12-17T22:57:54.461442522Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.465275357Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.467014737Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.470517671Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.472558798Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.475923543Z | 61 | PC: 14339 | Open file (Filename = '\TEST.COM') |
| 2018-12-17T22:57:54.48282691Z | 63 | PC: 14349 | Read file or device (Read 4 bytes on handle 6) |
| 2018-12-17T22:57:54.485761376Z | 66 | PC: 14355 | Move file pointer |
| 2018-12-17T22:57:54.487114009Z | 63 | PC: 14363 | Read file or device (Read 6 bytes on handle 6) |
| 2018-12-17T22:57:54.491658151Z | 62 | PC: 14374 | Close file |
| 2018-12-17T22:57:54.495368475Z | 79 | PC: 14303 | Find next file |
| 2018-12-17T22:57:54.498263276Z | 26 | PC: 143ca | Set disk transfer address |
| 2018-12-17T22:57:54.500832496Z | 26 | PC: 14165 | Set disk transfer address |
| 2018-12-17T22:57:54.50257952Z | 71 | PC: 1416f | Get current directory |
| 2018-12-17T22:57:54.507153598Z | 78 | PC: 14188 | Find first file |
| 2018-12-17T22:57:54.514836601Z | 67 | PC: 141a5 | Get or set file attributes |
| 2018-12-17T22:57:54.526091607Z | 61 | PC: 141aa | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:57:54.533984704Z | 63 | PC: 141b6 | Read file or device (Read 3 bytes on handle 6) |
| 2018-12-17T22:57:54.537855631Z | 66 | PC: 141f2 | Move file pointer |
| 2018-12-17T22:57:54.539583379Z | 64 | PC: 1420e | Write file or device (Write 3 bytes on handle 6) |
| 2018-12-17T22:57:54.542364877Z | 66 | PC: 14217 | Move file pointer |
| 2018-12-17T22:57:54.544258827Z | 44 | PC: 1421b | Get time 0x1421b: mov word ptr [bp + 0x274], dx 0x1421f: mov ax, cs 0x14221: add ax, 0x100 0x14224: mov es, ax 0x14226: mov cx, 0xbd 0x14229: lea si, word ptr [bp + 0x103] 0x1422d: xor di, di 0x1422f: rep movsd dword ptr es:[di], dword ptr [si] 0x14231: inc word ptr es:[0xb2] 0x14236: push bx 0x14237: mov bx, 0xf 0x1423a: push es 0x1423b: pop ds 0x1423c: call 0x142a1 0x1423f: pop bx 0x14240: xor dx, dx 0x14242: mov cx, 0x179 0x14245: mov ah, 0x40 0x14247: int 0x21 0x14249: mov ax, 0x5701 |
| 2018-12-17T22:57:54.546204815Z | 64 | PC: 14249 | Write file or device (Write 377 bytes on handle 6) |
| 2018-12-17T22:57:54.552514666Z | 87 | PC: 14256 | Get or set file date and time |
| 2018-12-17T22:57:54.554510969Z | 62 | PC: 1425a | Close file |
| 2018-12-17T22:57:54.560913094Z | 67 | PC: 1426d | Get or set file attributes |
| 2018-12-17T22:57:54.568664504Z | 59 | PC: 1417f | Change current directory |