.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:03:05.361352119Z | 44 | PC: 12b1f | Get time 0x12b1f: cmp byte ptr [0x106], 0 0x12b24: je 0x12b26 0x12b26: cmp dl, 0 0x12b29: je 0x12b1b 0x12b2b: mov byte ptr [0x106], dl 0x12b2f: mov byte ptr [0x164], 0 0x12b34: mov byte ptr [0x165], 2 0x12b39: mov byte ptr [0x16e], 0 0x12b3e: mov cx, 0x27 0x12b41: mov dx, 0x141 0x12b44: mov ah, 0x4e 0x12b46: int 0x21 0x12b48: cmp ax, 0x12 0x12b4b: je 0x12b50 0x12b4d: call 0x12b72 0x12b50: mov cx, 0x27 0x12b53: mov dx, 0x147 0x12b56: mov ah, 0x4e 0x12b58: int 0x21 0x12b5a: cmp ax, 0x12 |
| 2018-12-17T23:03:05.364394806Z | 78 | PC: 12b48 | Find first file |
| 2018-12-17T23:03:05.371680123Z | 78 | PC: 12b5a | Find first file |
| 2018-12-17T23:03:05.378209421Z | 67 | PC: 12b93 | Get or set file attributes |
| 2018-12-17T23:03:05.400112023Z | 61 | PC: 12b99 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:03:05.41429989Z | 63 | PC: 12ba8 | Read file or device (Read 20 bytes on handle 5) |
| 2018-12-17T23:03:05.421526157Z | 62 | PC: 12bdc | Close file |
| 2018-12-17T23:03:05.423833823Z | 61 | PC: 12be5 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:03:05.432532677Z | 44 | PC: 12a55 | Get time 0x12a55: xor dh, dh 0x12a57: rcr dl, 1 0x12a59: rcr dl, 1 0x12a5b: mov cx, 0x217 0x12a5e: add cx, dx 0x12a60: mov ah, 0x20 0x12a62: add ah, 0x20 0x12a65: mov dx, 0x100 0x12a68: int 0x21 0x12a6a: call 0x12a6e 0x12a6d: ret 0x12a6e: mov bx, 0x141 0x12a71: mov ah, byte ptr [bx] 0x12a73: xor ah, byte ptr [0x106] 0x12a77: mov byte ptr [bx], ah 0x12a79: inc bx 0x12a7a: cmp bx, 0x358 0x12a7e: jle 0x12a71 0x12a80: ret 0x12a81: push ss |
| 2018-12-17T23:03:05.436694086Z | 64 | PC: 12a6a | Write file or device (Write 679 bytes on handle 5) |
| 2018-12-17T23:03:05.447157444Z | 87 | PC: 12c0d | Get or set file date and time |
| 2018-12-17T23:03:05.449887984Z | 62 | PC: 12c15 | Close file |
| 2018-12-17T23:03:05.458240538Z | 67 | PC: 12c22 | Get or set file attributes |
| 2018-12-17T23:03:05.463593455Z | 79 | PC: 12bcc | Find next file |
| 2018-12-17T23:03:05.466783138Z | 67 | PC: 12b93 | Get or set file attributes |
| 2018-12-17T23:03:05.478810125Z | 61 | PC: 12b99 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:03:05.486174842Z | 63 | PC: 12ba8 | Read file or device (Read 20 bytes on handle 5) |
| 2018-12-17T23:03:05.493360082Z | 62 | PC: 12bdc | Close file |
| 2018-12-17T23:03:05.49677608Z | 61 | PC: 12be5 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:03:05.504478863Z | 44 | PC: 12a55 | Get time 0x12a55: xor dh, dh 0x12a57: rcr dl, 1 0x12a59: rcr dl, 1 0x12a5b: mov cx, 0x217 0x12a5e: add cx, dx 0x12a60: mov ah, 0x20 0x12a62: add ah, 0x20 0x12a65: mov dx, 0x100 0x12a68: int 0x21 0x12a6a: call 0x12a6e 0x12a6d: ret 0x12a6e: mov bx, 0x141 0x12a71: mov ah, byte ptr [bx] 0x12a73: xor ah, byte ptr [0x106] 0x12a77: mov byte ptr [bx], ah 0x12a79: inc bx 0x12a7a: cmp bx, 0x358 0x12a7e: jle 0x12a71 0x12a80: ret 0x12a81: push ss |
| 2018-12-17T23:03:05.507153769Z | 64 | PC: 12a6a | Write file or device (Write 680 bytes on handle 5) |
| 2018-12-17T23:03:05.517957908Z | 87 | PC: 12c0d | Get or set file date and time |
| 2018-12-17T23:03:05.524630344Z | 62 | PC: 12c15 | Close file |
| 2018-12-17T23:03:05.540957341Z | 67 | PC: 12c22 | Get or set file attributes |