.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:01:12.269616923Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T23:01:12.271747117Z | 37 | PC: 12a80 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T23:01:12.273056938Z | 37 | PC: 12a84 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T23:01:12.274337585Z | 78 | PC: 12acf | Find first file |
| 2018-12-17T23:01:12.281598277Z | 61 | PC: 12c0f | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:01:12.28896449Z | 63 | PC: 12c1e | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:12.296290175Z | 66 | PC: 12c2d | Move file pointer |
| 2018-12-17T23:01:12.302574744Z | 66 | PC: 12c3c | Move file pointer |
| 2018-12-17T23:01:12.304832686Z | 64 | PC: 12c48 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:12.318264165Z | 66 | PC: 12c54 | Move file pointer |
| 2018-12-17T23:01:12.320132275Z | 44 | PC: 12c58 | Get time 0x12c58: mov byte ptr [bp + 0x23b], dl 0x12c5c: call 0x12c72 0x12c5f: mov ah, 0x40 0x12c61: mov cx, 0x23b 0x12c64: lea dx, word ptr [bp + 6] 0x12c68: int 0x21 0x12c6a: call 0x12c72 0x12c6d: mov ah, 0x3e 0x12c6f: int 0x21 0x12c71: ret 0x12c72: lea si, word ptr [bp + 0x1f] 0x12c76: mov cx, 0x1fd 0x12c79: xor byte ptr [si], 0 0x12c7c: inc si 0x12c7d: dec cx 0x12c7e: jne 0x12c79 0x12c80: ret 0x12c81: add word ptr [bx], di 0x12c83: aas 0x12c84: aas |
| 2018-12-17T23:01:12.323545619Z | 64 | PC: 12c6a | Write file or device (Write 571 bytes on handle 5) |
| 2018-12-17T23:01:12.340885101Z | 62 | PC: 12c71 | Close file |
| 2018-12-17T23:01:12.3493938Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:01:12.354197987Z | 61 | PC: 12c0f | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:01:12.361492273Z | 63 | PC: 12c1e | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:12.369208062Z | 66 | PC: 12c2d | Move file pointer |
| 2018-12-17T23:01:12.371791847Z | 66 | PC: 12c3c | Move file pointer |
| 2018-12-17T23:01:12.373743675Z | 64 | PC: 12c48 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:12.377010213Z | 66 | PC: 12c54 | Move file pointer |
| 2018-12-17T23:01:12.379544865Z | 44 | PC: 12c58 | Get time 0x12c58: mov byte ptr [bp + 0x23b], dl 0x12c5c: call 0x12c72 0x12c5f: mov ah, 0x40 0x12c61: mov cx, 0x23b 0x12c64: lea dx, word ptr [bp + 6] 0x12c68: int 0x21 0x12c6a: call 0x12c72 0x12c6d: mov ah, 0x3e 0x12c6f: int 0x21 0x12c71: ret 0x12c72: lea si, word ptr [bp + 0x1f] 0x12c76: mov cx, 0x1fd 0x12c79: xor byte ptr [si], 0x3e 0x12c7c: inc si 0x12c7d: dec cx 0x12c7e: jne 0x12c79 0x12c80: ret 0x12c81: add word ptr [bx], di 0x12c83: aas 0x12c84: aas |
| 2018-12-17T23:01:12.382324649Z | 64 | PC: 12c6a | Write file or device (Write 571 bytes on handle 5) |
| 2018-12-17T23:01:12.391022152Z | 62 | PC: 12c71 | Close file |
| 2018-12-17T23:01:12.401431994Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:01:12.404766299Z | 61 | PC: 12c0f | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:01:12.412474112Z | 63 | PC: 12c1e | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:12.419489895Z | 66 | PC: 12c2d | Move file pointer |
| 2018-12-17T23:01:12.421412548Z | 66 | PC: 12c3c | Move file pointer |
| 2018-12-17T23:01:12.422959505Z | 64 | PC: 12c48 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:12.425787439Z | 66 | PC: 12c54 | Move file pointer |
| 2018-12-17T23:01:12.427822092Z | 44 | PC: 12c58 | Get time 0x12c58: mov byte ptr [bp + 0x23b], dl 0x12c5c: call 0x12c72 0x12c5f: mov ah, 0x40 0x12c61: mov cx, 0x23b 0x12c64: lea dx, word ptr [bp + 6] 0x12c68: int 0x21 0x12c6a: call 0x12c72 0x12c6d: mov ah, 0x3e 0x12c6f: int 0x21 0x12c71: ret 0x12c72: lea si, word ptr [bp + 0x1f] 0x12c76: mov cx, 0x1fd 0x12c79: xor byte ptr [si], 0x43 0x12c7c: inc si 0x12c7d: dec cx 0x12c7e: jne 0x12c79 0x12c80: ret 0x12c81: add word ptr [bx], di 0x12c83: aas 0x12c84: aas |
| 2018-12-17T23:01:12.430547453Z | 64 | PC: 12c6a | Write file or device (Write 571 bytes on handle 5) |
| 2018-12-17T23:01:12.439362658Z | 62 | PC: 12c71 | Close file |
| 2018-12-17T23:01:12.448815961Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:01:12.451671867Z | 61 | PC: 12c0f | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:01:12.458498626Z | 63 | PC: 12c1e | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:12.468614233Z | 66 | PC: 12c2d | Move file pointer |
| 2018-12-17T23:01:12.470481792Z | 66 | PC: 12c3c | Move file pointer |
| 2018-12-17T23:01:12.472437838Z | 64 | PC: 12c48 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:12.476607914Z | 66 | PC: 12c54 | Move file pointer |
| 2018-12-17T23:01:12.478182914Z | 44 | PC: 12c58 | Get time 0x12c58: mov byte ptr [bp + 0x23b], dl 0x12c5c: call 0x12c72 0x12c5f: mov ah, 0x40 0x12c61: mov cx, 0x23b 0x12c64: lea dx, word ptr [bp + 6] 0x12c68: int 0x21 0x12c6a: call 0x12c72 0x12c6d: mov ah, 0x3e 0x12c6f: int 0x21 0x12c71: ret 0x12c72: lea si, word ptr [bp + 0x1f] 0x12c76: mov cx, 0x1fd 0x12c79: xor byte ptr [si], 0x49 0x12c7c: inc si 0x12c7d: dec cx 0x12c7e: jne 0x12c79 0x12c80: ret 0x12c81: add word ptr [bx], di 0x12c83: aas 0x12c84: aas |
| 2018-12-17T23:01:12.48126243Z | 64 | PC: 12c6a | Write file or device (Write 571 bytes on handle 5) |
| 2018-12-17T23:01:12.490694503Z | 62 | PC: 12c71 | Close file |
| 2018-12-17T23:01:12.499535967Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:01:12.502435085Z | 61 | PC: 12c0f | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:01:12.512561944Z | 63 | PC: 12c1e | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:12.520346011Z | 66 | PC: 12c2d | Move file pointer |
| 2018-12-17T23:01:12.522204903Z | 66 | PC: 12c3c | Move file pointer |
| 2018-12-17T23:01:12.524253062Z | 64 | PC: 12c48 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:12.527958605Z | 66 | PC: 12c54 | Move file pointer |
| 2018-12-17T23:01:12.529788553Z | 44 | PC: 12c58 | Get time 0x12c58: mov byte ptr [bp + 0x23b], dl 0x12c5c: call 0x12c72 0x12c5f: mov ah, 0x40 0x12c61: mov cx, 0x23b 0x12c64: lea dx, word ptr [bp + 6] 0x12c68: int 0x21 0x12c6a: call 0x12c72 0x12c6d: mov ah, 0x3e 0x12c6f: int 0x21 0x12c71: ret 0x12c72: lea si, word ptr [bp + 0x1f] 0x12c76: mov cx, 0x1fd 0x12c79: xor byte ptr [si], 0x49 0x12c7c: inc si 0x12c7d: dec cx 0x12c7e: jne 0x12c79 0x12c80: ret 0x12c81: add word ptr [bx], di 0x12c83: aas 0x12c84: aas |
| 2018-12-17T23:01:12.532539814Z | 64 | PC: 12c6a | Write file or device (Write 571 bytes on handle 5) |
| 2018-12-17T23:01:12.542054011Z | 62 | PC: 12c71 | Close file |
| 2018-12-17T23:01:12.551425732Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:01:12.55446351Z | 61 | PC: 12c0f | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:01:12.562461258Z | 63 | PC: 12c1e | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:12.569479566Z | 66 | PC: 12c2d | Move file pointer |
| 2018-12-17T23:01:12.570968183Z | 66 | PC: 12c3c | Move file pointer |
| 2018-12-17T23:01:12.573049254Z | 64 | PC: 12c48 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:12.57580948Z | 66 | PC: 12c54 | Move file pointer |
| 2018-12-17T23:01:12.577487613Z | 44 | PC: 12c58 | Get time 0x12c58: mov byte ptr [bp + 0x23b], dl 0x12c5c: call 0x12c72 0x12c5f: mov ah, 0x40 0x12c61: mov cx, 0x23b 0x12c64: lea dx, word ptr [bp + 6] 0x12c68: int 0x21 0x12c6a: call 0x12c72 0x12c6d: mov ah, 0x3e 0x12c6f: int 0x21 0x12c71: ret 0x12c72: lea si, word ptr [bp + 0x1f] 0x12c76: mov cx, 0x1fd 0x12c79: xor byte ptr [si], 0x4e 0x12c7c: inc si 0x12c7d: dec cx 0x12c7e: jne 0x12c79 0x12c80: ret 0x12c81: add word ptr [bx], di 0x12c83: aas 0x12c84: aas |
| 2018-12-17T23:01:12.580561289Z | 64 | PC: 12c6a | Write file or device (Write 571 bytes on handle 5) |
| 2018-12-17T23:01:12.590335486Z | 62 | PC: 12c71 | Close file |
| 2018-12-17T23:01:12.599162642Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:01:12.603237249Z | 61 | PC: 12c0f | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:01:12.610454781Z | 63 | PC: 12c1e | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:12.61791534Z | 66 | PC: 12c2d | Move file pointer |
| 2018-12-17T23:01:12.620819116Z | 66 | PC: 12c3c | Move file pointer |
| 2018-12-17T23:01:12.622905156Z | 64 | PC: 12c48 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:12.62639302Z | 66 | PC: 12c54 | Move file pointer |
| 2018-12-17T23:01:12.628546196Z | 44 | PC: 12c58 | Get time 0x12c58: mov byte ptr [bp + 0x23b], dl 0x12c5c: call 0x12c72 0x12c5f: mov ah, 0x40 0x12c61: mov cx, 0x23b 0x12c64: lea dx, word ptr [bp + 6] 0x12c68: int 0x21 0x12c6a: call 0x12c72 0x12c6d: mov ah, 0x3e 0x12c6f: int 0x21 0x12c71: ret 0x12c72: lea si, word ptr [bp + 0x1f] 0x12c76: mov cx, 0x1fd 0x12c79: xor byte ptr [si], 0x54 0x12c7c: inc si 0x12c7d: dec cx 0x12c7e: jne 0x12c79 0x12c80: ret 0x12c81: add word ptr [bx], di 0x12c83: aas 0x12c84: aas |
| 2018-12-17T23:01:12.632864791Z | 64 | PC: 12c6a | Write file or device (Write 571 bytes on handle 5) |
| 2018-12-17T23:01:12.642607177Z | 62 | PC: 12c71 | Close file |
| 2018-12-17T23:01:12.651749346Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:01:12.656239674Z | 59 | PC: 12ae0 | Change current directory |
| 2018-12-17T23:01:12.661251492Z | 26 | PC: 12ae9 | Set disk transfer address |
| 2018-12-17T23:01:12.66301739Z | 9 | PC: 12afb | Display string (String= 'Your System DNA is mutating! ') |