.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:01:17.678958337Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T23:01:17.680748922Z | 78 | PC: 12a8b | Find first file |
| 2018-12-17T23:01:17.685602371Z | 61 | PC: 12b22 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:01:17.691150547Z | 63 | PC: 12b31 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:17.696286468Z | 66 | PC: 12b40 | Move file pointer |
| 2018-12-17T23:01:17.698402744Z | 66 | PC: 12b4f | Move file pointer |
| 2018-12-17T23:01:17.700059207Z | 64 | PC: 12b5b | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:17.703257767Z | 66 | PC: 12b67 | Move file pointer |
| 2018-12-17T23:01:17.706363242Z | 44 | PC: 12b6b | Get time 0x12b6b: mov byte ptr [bp + 0x14e], dl 0x12b6f: call 0x12b85 0x12b72: mov ah, 0x40 0x12b74: mov cx, 0x14e 0x12b77: lea dx, word ptr [bp + 6] 0x12b7b: int 0x21 0x12b7d: call 0x12b85 0x12b80: mov ah, 0x3e 0x12b82: int 0x21 0x12b84: ret 0x12b85: lea si, word ptr [bp + 0x1f] 0x12b89: mov cx, 0x110 0x12b8c: xor byte ptr [si], 0 0x12b8f: inc si 0x12b90: dec cx 0x12b91: jne 0x12b8c 0x12b93: ret 0x12b94: add word ptr [bx], di 0x12b96: aas 0x12b97: aas |
| 2018-12-17T23:01:17.70959789Z | 64 | PC: 12b7d | Write file or device (Write 334 bytes on handle 5) |
| 2018-12-17T23:01:17.727280728Z | 62 | PC: 12b84 | Close file |
| 2018-12-17T23:01:17.736795135Z | 79 | PC: 12a8b | Find next file |
| 2018-12-17T23:01:17.73970325Z | 61 | PC: 12b22 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:01:17.747348326Z | 63 | PC: 12b31 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:17.758621228Z | 66 | PC: 12b40 | Move file pointer |
| 2018-12-17T23:01:17.760244909Z | 66 | PC: 12b4f | Move file pointer |
| 2018-12-17T23:01:17.761646192Z | 64 | PC: 12b5b | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:17.766053032Z | 66 | PC: 12b67 | Move file pointer |
| 2018-12-17T23:01:17.76768531Z | 44 | PC: 12b6b | Get time 0x12b6b: mov byte ptr [bp + 0x14e], dl 0x12b6f: call 0x12b85 0x12b72: mov ah, 0x40 0x12b74: mov cx, 0x14e 0x12b77: lea dx, word ptr [bp + 6] 0x12b7b: int 0x21 0x12b7d: call 0x12b85 0x12b80: mov ah, 0x3e 0x12b82: int 0x21 0x12b84: ret 0x12b85: lea si, word ptr [bp + 0x1f] 0x12b89: mov cx, 0x110 0x12b8c: xor byte ptr [si], 0x43 0x12b8f: inc si 0x12b90: dec cx 0x12b91: jne 0x12b8c 0x12b93: ret 0x12b94: add word ptr [bx], di 0x12b96: aas 0x12b97: aas |
| 2018-12-17T23:01:17.770130595Z | 64 | PC: 12b7d | Write file or device (Write 334 bytes on handle 5) |
| 2018-12-17T23:01:17.773293268Z | 62 | PC: 12b84 | Close file |
| 2018-12-17T23:01:17.782424946Z | 79 | PC: 12a8b | Find next file |
| 2018-12-17T23:01:17.785438709Z | 61 | PC: 12b22 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:01:17.792289152Z | 63 | PC: 12b31 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:01:17.80014319Z | 66 | PC: 12b40 | Move file pointer |
| 2018-12-17T23:01:17.801924397Z | 66 | PC: 12b4f | Move file pointer |
| 2018-12-17T23:01:17.803737113Z | 64 | PC: 12b5b | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:01:17.809582637Z | 66 | PC: 12b67 | Move file pointer |
| 2018-12-17T23:01:17.811107332Z | 44 | PC: 12b6b | Get time 0x12b6b: mov byte ptr [bp + 0x14e], dl 0x12b6f: call 0x12b85 0x12b72: mov ah, 0x40 0x12b74: mov cx, 0x14e 0x12b77: lea dx, word ptr [bp + 6] 0x12b7b: int 0x21 0x12b7d: call 0x12b85 0x12b80: mov ah, 0x3e 0x12b82: int 0x21 0x12b84: ret 0x12b85: lea si, word ptr [bp + 0x1f] 0x12b89: mov cx, 0x110 0x12b8c: xor byte ptr [si], 0x43 0x12b8f: inc si 0x12b90: dec cx 0x12b91: jne 0x12b8c 0x12b93: ret 0x12b94: add word ptr [bx], di 0x12b96: aas 0x12b97: aas |
| 2018-12-17T23:01:17.813412554Z | 64 | PC: 12b7d | Write file or device (Write 334 bytes on handle 5) |
| 2018-12-17T23:01:17.817361364Z | 62 | PC: 12b84 | Close file |
| 2018-12-17T23:01:17.82575191Z | 26 | PC: 12aa5 | Set disk transfer address |