.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:04:01.225034041Z | 42 | PC: 12a7a | Get date 0x12a7a: mov word ptr [0xf2], dx 0x12a7e: mov word ptr [0xf4], cx 0x12a82: stc 0x12a83: mov dx, 0x25d 0x12a86: mov cx, 0x20 0x12a89: mov ah, 0x4e 0x12a8b: int 0x21 0x12a8d: or ax, ax 0x12a8f: je 0x12a94 0x12a91: jmp 0x12b5e 0x12a94: mov ah, 0x2f 0x12a96: int 0x21 0x12a98: mov ax, word ptr es:[bx + 0x1a] 0x12a9c: mov word ptr [0xfc], ax 0x12a9f: add bx, 0x1e 0x12aa2: mov word ptr [0xfe], bx 0x12aa6: mov ax, 0x4f43 0x12aa9: sub ax, word ptr [0x9e] 0x12aad: jne 0x12ab2 0x12aaf: jmp 0x12b52 |
| 2018-12-17T23:04:01.22789384Z | 78 | PC: 12a8d | Find first file |
| 2018-12-17T23:04:01.235731653Z | 47 | PC: 12a98 | Get disk transfer address |
| 2018-12-17T23:04:01.237716747Z | 43 | PC: 12aee | Set date |
| 2018-12-17T23:04:01.241811209Z | 61 | PC: 12af6 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:04:01.25544232Z | 63 | PC: 12b04 | Read file or device (Read 407 bytes on handle 5) |
| 2018-12-17T23:04:01.263424345Z | 60 | PC: 12b36 | Create or truncate file |
| 2018-12-17T23:04:01.28410714Z | 64 | PC: 12b48 | Write file or device (Write 765 bytes on handle 6) |
| 2018-12-17T23:04:01.294912065Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:04:01.304017643Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T23:04:01.307112244Z | 47 | PC: 12a98 | Get disk transfer address |
| 2018-12-17T23:04:01.308968075Z | 43 | PC: 12aee | Set date |
| 2018-12-17T23:04:01.313006401Z | 61 | PC: 12af6 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:04:01.325511364Z | 63 | PC: 12b04 | Read file or device (Read 27 bytes on handle 6) |
| 2018-12-17T23:04:01.332534936Z | 60 | PC: 12b36 | Create or truncate file |
| 2018-12-17T23:04:01.346565688Z | 64 | PC: 12b48 | Write file or device (Write 385 bytes on handle 7) |
| 2018-12-17T23:04:01.350885965Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:04:01.360496202Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T23:04:01.364783437Z | 47 | PC: 12a98 | Get disk transfer address |
| 2018-12-17T23:04:01.366408604Z | 43 | PC: 12aee | Set date |
| 2018-12-17T23:04:01.370565152Z | 61 | PC: 12af6 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:04:01.384056911Z | 63 | PC: 12b04 | Read file or device (Read 92 bytes on handle 7) |
| 2018-12-17T23:04:01.392239503Z | 60 | PC: 12b36 | Create or truncate file |
| 2018-12-17T23:04:01.406196076Z | 64 | PC: 12b48 | Write file or device (Write 450 bytes on handle 8) |
| 2018-12-17T23:04:01.411385989Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:04:01.420626951Z | 43 | PC: 12b6a | Set date |
| 2018-12-17T23:04:01.424586189Z | 76 | PC: 12a45 | Terminate with return code (Return code = '0') |