.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:00:11.014602673Z | 74 | PC: 12a57 | Reallocate memory |
| 2018-12-17T23:00:11.019894203Z | 75 | PC: 12a64 | Execute program |
| 2018-12-17T23:00:11.026260642Z | 78 | PC: 12a79 | Find first file |
| 2018-12-17T23:00:11.032623069Z | 47 | PC: 12a7f | Get disk transfer address |
| 2018-12-17T23:00:11.034234312Z | 47 | PC: 12a95 | Get disk transfer address |
| 2018-12-17T23:00:11.035878819Z | 61 | PC: 12ab4 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T23:00:11.047263595Z | 60 | PC: 12ac5 | Create or truncate file |
| 2018-12-17T23:00:11.066080195Z | 44 | PC: 12b6c | Get time 0x12b6c: or dh, dh 0x12b6e: je 0x12b68 0x12b70: mov byte ptr [0x255], dh 0x12b74: call 0x12b8d 0x12b77: mov ah, 0x40 0x12b79: mov cx, 0x15a 0x12b7c: mov dx, 0x100 0x12b7f: call 0x12b86 0x12b82: call 0x12b8d 0x12b85: ret 0x12b86: mov bx, word ptr [0x25a] 0x12b8a: int 0x21 0x12b8c: ret 0x12b8d: mov di, 0x105 0x12b90: mov cx, 0x123 0x12b93: xor byte ptr [di], 0x17 0x12b96: inc di 0x12b97: loop 0x12b93 0x12b99: ret 0x12b9a: add ax, 0xb400 |
| 2018-12-17T23:00:11.068555171Z | 64 | PC: 12b8c | Write file or device (Write 346 bytes on handle 5) |
| 2018-12-17T23:00:11.072571553Z | 62 | PC: 12b8c | Close file |
| 2018-12-17T23:00:11.080426301Z | 76 | PC: 12a6f | Terminate with return code (Return code = '2') |