.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:02:54.889854715Z | 44 | PC: 12a53 | Get time 0x12a53: mov byte ptr [0x104], dl 0x12a57: mov ax, cs 0x12a59: mov es, ax 0x12a5b: mov bx, ax 0x12a5d: mov ds, bx 0x12a5f: mov word ptr [0x102], 0 0x12a65: mov si, 0x10f 0x12a68: mov cx, word ptr [0x106] 0x12a6c: cmp cx, 0x14b4 0x12a70: jbe 0x12a87 0x12a72: mov ax, cs 0x12a74: add ax, 0x1000 0x12a77: mov es, ax 0x12a79: xor di, di 0x12a7b: mov si, 0x10f 0x12a7e: rep movsb byte ptr es:[di], byte ptr [si] 0x12a80: mov di, word ptr [0x106] 0x12a84: jmp 0x13445 0x12a87: push cx 0x12a88: lodsw ax, word ptr [si] |
| 2018-12-17T23:02:54.907897745Z | 78 | PC: 1344f | Find first file |
| 2018-12-17T23:02:54.914793902Z | 60 | PC: 13458 | Create or truncate file |
| 2018-12-17T23:02:55.213300497Z | 64 | PC: 13469 | Write file or device (Write 15 bytes on handle 5) |
| 2018-12-17T23:02:55.218005056Z | 64 | PC: 13473 | Write file or device (Write 2897 bytes on handle 5) |
| 2018-12-17T23:02:55.226912692Z | 62 | PC: 13478 | Close file |
| 2018-12-17T23:02:55.235156692Z | 79 | PC: 1344f | Find next file |
| 2018-12-17T23:02:55.237809236Z | 60 | PC: 13458 | Create or truncate file |
| 2018-12-17T23:02:55.25103207Z | 64 | PC: 13469 | Write file or device (Write 15 bytes on handle 5) |
| 2018-12-17T23:02:55.25482144Z | 64 | PC: 13473 | Write file or device (Write 0 bytes on handle 5) |
| 2018-12-17T23:02:55.262216704Z | 62 | PC: 13478 | Close file |
| 2018-12-17T23:02:55.27347133Z | 79 | PC: 1344f | Find next file |
| 2018-12-17T23:02:55.277208762Z | 60 | PC: 13458 | Create or truncate file |
| 2018-12-17T23:02:55.291188779Z | 64 | PC: 13469 | Write file or device (Write 15 bytes on handle 5) |
| 2018-12-17T23:02:55.296023122Z | 64 | PC: 13473 | Write file or device (Write 8397 bytes on handle 5) |
| 2018-12-17T23:02:55.305738556Z | 62 | PC: 13478 | Close file |
| 2018-12-17T23:02:55.315206655Z | 79 | PC: 1344f | Find next file |
| 2018-12-17T23:02:55.318486297Z | 60 | PC: 13458 | Create or truncate file |
| 2018-12-17T23:02:55.333242732Z | 64 | PC: 13469 | Write file or device (Write 15 bytes on handle 5) |
| 2018-12-17T23:02:55.33769081Z | 64 | PC: 13473 | Write file or device (Write 40896 bytes on handle 5) |
| 2018-12-17T23:02:55.350563416Z | 62 | PC: 2d678 | Close file |
| 2018-12-17T23:02:55.360275654Z | 79 | PC: 2d64f | Find next file |
| 2018-12-17T23:02:55.363196973Z | 60 | PC: 2d658 | Create or truncate file |
| 2018-12-17T23:02:55.376167934Z | 64 | PC: 2d669 | Write file or device (Write 15 bytes on handle 5) |
| 2018-12-17T23:02:55.381427406Z | 64 | PC: 2d673 | Write file or device (Write 39424 bytes on handle 5) |
| 2018-12-17T23:02:55.393666551Z | 62 | PC: 13478 | Close file |
| 2018-12-17T23:02:55.402805282Z | 79 | PC: 1344f | Find next file |
| 2018-12-17T23:02:55.406979545Z | 60 | PC: 13458 | Create or truncate file |
| 2018-12-17T23:02:55.420617479Z | 64 | PC: 13469 | Write file or device (Write 15 bytes on handle 5) |
| 2018-12-17T23:02:55.425001676Z | 64 | PC: 13473 | Write file or device (Write 65264 bytes on handle 5) |
| 2018-12-17T23:02:55.441012749Z | 62 | PC: 13478 | Close file |
| 2018-12-17T23:02:55.450541081Z | 79 | PC: 1344f | Find next file |
| 2018-12-17T23:02:55.453881487Z | 60 | PC: 13458 | Create or truncate file |
| 2018-12-17T23:02:55.467522857Z | 64 | PC: 13469 | Write file or device (Write 15 bytes on handle 5) |
| 2018-12-17T23:02:55.47179268Z | 64 | PC: 13473 | Write file or device (Write 61469 bytes on handle 5) |
| 2018-12-17T23:02:55.486087819Z | 62 | PC: 13478 | Close file |
| 2018-12-17T23:02:55.495898402Z | 79 | PC: 1344f | Find next file |
| 2018-12-17T23:02:55.49961262Z | 60 | PC: 13458 | Create or truncate file |
| 2018-12-17T23:02:55.513381449Z | 64 | PC: 13469 | Write file or device (Write 15 bytes on handle 5) |
| 2018-12-17T23:02:55.517747152Z | 64 | PC: 13473 | Write file or device (Write 689 bytes on handle 5) |
| 2018-12-17T23:02:55.538371423Z | 62 | PC: 13478 | Close file |
| 2018-12-17T23:02:55.54775836Z | 79 | PC: 1344f | Find next file |