{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14696,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:41:22.412765988Z | 26 | PC: 12a9a | Set disk transfer address |
| 2018-12-25T12:41:22.415175769Z | 78 | PC: 12aa5 | Find first file |
| 2018-12-25T12:41:22.421429454Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T12:41:22.45047499Z | 61 | PC: 12b21 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T12:41:22.457139054Z | 87 | PC: 12b27 | Get or set file date and time |
| 2018-12-25T12:41:22.459113235Z | 63 | PC: 12b34 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T12:41:22.466608668Z | 87 | PC: 12b9d | Get or set file date and time |
| 2018-12-25T12:41:22.4683541Z | 62 | PC: 12ba1 | Close file |
| 2018-12-25T12:41:22.477696417Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.480665448Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.492919783Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.50079843Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.50218892Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.508164124Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.511422572Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.518585434Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.52166719Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.539450272Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.545816799Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.547612104Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.565174564Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.567329536Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.577091197Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.579684865Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.59173571Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.598519208Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.600230576Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.608318479Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.609797032Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.61677535Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.619934847Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.629570573Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.636210515Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.640649953Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.647269682Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.64875154Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.656079007Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.658881383Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.671417763Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.679666155Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.680959151Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.68731356Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.689852827Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.697066591Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.699960075Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.708979541Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.715768776Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.716976264Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.721188572Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.722608634Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.727227626Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.730254565Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.739425868Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.744178893Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.745293316Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.75117384Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.75236954Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.757161649Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.759866757Z | 59 | PC: 12aaf | Change current directory |
| 2018-12-25T12:41:22.76278929Z | 42 | PC: 12ab5 | Get date 0x12ab5: cmp al, 6 0x12ab7: je 0x12ac5 0x12ab9: cmp al, 0 0x12abb: je 0x12ac5 0x12abd: mov dx, 0x80 0x12ac0: mov ah, 0x1a 0x12ac2: int 0x21 0x12ac4: ret 0x12ac5: mov ah, 0xe 0x12ac7: mov dl, 2 0x12ac9: int 0x21 0x12acb: mov ah, 0x3b 0x12acd: lea dx, word ptr [bp + 0x28f] 0x12ad1: int 0x21 0x12ad3: mov ah, 0x4e 0x12ad5: lea dx, word ptr [bp + 0x291] 0x12ad9: mov cx, 3 0x12adc: int 0x21 0x12ade: jb 0x12abd 0x12ae0: lea dx, word ptr [bp + 0x2c6] |
| 2018-12-25T12:41:22.764341672Z | 26 | PC: 12ac4 | Set disk transfer address |
{"DateBased":true,"Day":5,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14696,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:41:22.462029523Z | 26 | PC: 12a9a | Set disk transfer address |
| 2018-12-25T12:41:22.463833345Z | 78 | PC: 12aa5 | Find first file |
| 2018-12-25T12:41:22.469665896Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T12:41:22.4851975Z | 61 | PC: 12b21 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T12:41:22.492824123Z | 87 | PC: 12b27 | Get or set file date and time |
| 2018-12-25T12:41:22.494737512Z | 63 | PC: 12b34 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T12:41:22.501193277Z | 87 | PC: 12b9d | Get or set file date and time |
| 2018-12-25T12:41:22.503294311Z | 62 | PC: 12ba1 | Close file |
| 2018-12-25T12:41:22.510915556Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.513614027Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.523931326Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.534429154Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.535818763Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.543659319Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.54651625Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.557471734Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.560407652Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.570894986Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.600316501Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.60175441Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.619949936Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.621673044Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.62873464Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.636402919Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.646201181Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.652955783Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.655383473Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.662270054Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.664017341Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.672165715Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.675449225Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.685406399Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.692136794Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.696304709Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.703050727Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.705141706Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.713248526Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.716147988Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.729182657Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.736306871Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.741933992Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.748311639Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.750529252Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.757498032Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.760300167Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.778035575Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.785859875Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.787243248Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.794631715Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.796179613Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.805345879Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.809624842Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:22.819441717Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:22.826273182Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.828924384Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:22.836017183Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:22.837833077Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:22.845794741Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:22.848804134Z | 59 | PC: 12aaf | Change current directory |
| 2018-12-25T12:41:22.853097459Z | 42 | PC: 12ab5 | Get date 0x12ab5: cmp al, 6 0x12ab7: je 0x12ac5 0x12ab9: cmp al, 0 0x12abb: je 0x12ac5 0x12abd: mov dx, 0x80 0x12ac0: mov ah, 0x1a 0x12ac2: int 0x21 0x12ac4: ret 0x12ac5: mov ah, 0xe 0x12ac7: mov dl, 2 0x12ac9: int 0x21 0x12acb: mov ah, 0x3b 0x12acd: lea dx, word ptr [bp + 0x28f] 0x12ad1: int 0x21 0x12ad3: mov ah, 0x4e 0x12ad5: lea dx, word ptr [bp + 0x291] 0x12ad9: mov cx, 3 0x12adc: int 0x21 0x12ade: jb 0x12abd 0x12ae0: lea dx, word ptr [bp + 0x2c6] |
| 2018-12-25T12:41:22.856213993Z | 14 | PC: 12acb | Set default drive (Drive = 'C') |
| 2018-12-25T12:41:22.858044474Z | 59 | PC: 12ad3 | Change current directory |
| 2018-12-25T12:41:22.861760547Z | 78 | PC: 12ade | Find first file |
| 2018-12-25T12:41:22.867246597Z | 67 | PC: 12aec | Get or set file attributes |
| 2018-12-25T12:41:23.20027135Z | 61 | PC: 12af1 | Open file (Filename = 'AUTOEXEC.BAT') |
| 2018-12-25T12:41:23.207025095Z | 66 | PC: 12bae | Move file pointer |
| 2018-12-25T12:41:23.209048212Z | 64 | PC: 12b00 | Write file or device (Write 29 bytes on handle 5) |
| 2018-12-25T12:41:23.212288779Z | 67 | PC: 12b09 | Get or set file attributes |
| 2018-12-25T12:41:23.221526402Z | 62 | PC: 12b0d | Close file |
| 2018-12-25T12:41:23.230535037Z | 26 | PC: 12ac4 | Set disk transfer address |
{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14696,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:41:23.479418475Z | 26 | PC: 12a9a | Set disk transfer address |
| 2018-12-25T12:41:23.480951124Z | 78 | PC: 12aa5 | Find first file |
| 2018-12-25T12:41:23.487640132Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T12:41:23.503215463Z | 61 | PC: 12b21 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T12:41:23.514893364Z | 87 | PC: 12b27 | Get or set file date and time |
| 2018-12-25T12:41:23.517579405Z | 63 | PC: 12b34 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T12:41:23.524647159Z | 87 | PC: 12b9d | Get or set file date and time |
| 2018-12-25T12:41:23.526531103Z | 62 | PC: 12ba1 | Close file |
| 2018-12-25T12:41:23.534264333Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:23.537584345Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:23.547238265Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:23.554446452Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.555998945Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:23.56218387Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.564737032Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:23.571724341Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:23.574656206Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:23.591666442Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:23.59817794Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.599842103Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:23.606277919Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.611642583Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:23.618849439Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:23.621767791Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:23.639337204Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:23.646476987Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.648193427Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:23.656391113Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.65879821Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:23.666087555Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:23.672275359Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:23.681833186Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:23.688465806Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.690980737Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:23.6974781Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.699500194Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:23.707142336Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:23.710068563Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:23.719804828Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:23.732300032Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.734185252Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:23.740682046Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.743231182Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:23.750661978Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:23.753476253Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:23.763322019Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:23.770393617Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.772056445Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:23.778440813Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.781251395Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:23.788438067Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:23.791341611Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T12:41:23.802410997Z | 61 | PC: 12b21 | Open file (See above) |
| 2018-12-25T12:41:23.807101152Z | 87 | PC: 12b27 | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.808233995Z | 63 | PC: 12b34 | Read file or device (See above) |
| 2018-12-25T12:41:23.812731542Z | 87 | PC: 12b9d | Get or set file date and time (See above) |
| 2018-12-25T12:41:23.813788572Z | 62 | PC: 12ba1 | Close file (See above) |
| 2018-12-25T12:41:23.818362136Z | 79 | PC: 12aa5 | Find next file (See above) |
| 2018-12-25T12:41:23.820494305Z | 59 | PC: 12aaf | Change current directory |
| 2018-12-25T12:41:23.823521211Z | 42 | PC: 12ab5 | Get date 0x12ab5: cmp al, 6 0x12ab7: je 0x12ac5 0x12ab9: cmp al, 0 0x12abb: je 0x12ac5 0x12abd: mov dx, 0x80 0x12ac0: mov ah, 0x1a 0x12ac2: int 0x21 0x12ac4: ret 0x12ac5: mov ah, 0xe 0x12ac7: mov dl, 2 0x12ac9: int 0x21 0x12acb: mov ah, 0x3b 0x12acd: lea dx, word ptr [bp + 0x28f] 0x12ad1: int 0x21 0x12ad3: mov ah, 0x4e 0x12ad5: lea dx, word ptr [bp + 0x291] 0x12ad9: mov cx, 3 0x12adc: int 0x21 0x12ade: jb 0x12abd 0x12ae0: lea dx, word ptr [bp + 0x2c6] |
| 2018-12-25T12:41:23.826335071Z | 14 | PC: 12acb | Set default drive (Drive = 'C') |
| 2018-12-25T12:41:23.828676446Z | 59 | PC: 12ad3 | Change current directory |
| 2018-12-25T12:41:23.833026858Z | 78 | PC: 12ade | Find first file |
| 2018-12-25T12:41:23.843066514Z | 67 | PC: 12aec | Get or set file attributes |
| 2018-12-25T12:41:24.170666822Z | 61 | PC: 12af1 | Open file (Filename = 'AUTOEXEC.BAT') |
| 2018-12-25T12:41:24.176755031Z | 66 | PC: 12bae | Move file pointer |
| 2018-12-25T12:41:24.17812629Z | 64 | PC: 12b00 | Write file or device (Write 29 bytes on handle 5) |
| 2018-12-25T12:41:24.182095492Z | 67 | PC: 12b09 | Get or set file attributes |
| 2018-12-25T12:41:24.191153475Z | 62 | PC: 12b0d | Close file |
| 2018-12-25T12:41:24.198087441Z | 26 | PC: 12ac4 | Set disk transfer address |