.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:04:21.063194896Z | 48 | PC: 13452 | Get DOS version |
| 2018-12-17T23:04:21.06497697Z | 105 | PC: 13464 | Get or set media id |
| 2018-12-17T23:04:21.069782205Z | 26 | PC: 13481 | Set disk transfer address |
| 2018-12-17T23:04:21.070746697Z | 44 | PC: 13485 | Get time 0x13485: mov ax, word ptr [0x22] 0x13488: mov word ptr [0x4ef], ax 0x1348b: mov word ptr [0x22], dx 0x1348f: xor ax, ax 0x13491: mov al, dl 0x13493: and al, 0xf 0x13495: push ax 0x13496: pop si 0x13497: mov al, byte ptr [si + 0x3b1] 0x1349b: mov byte ptr [0x1a], al 0x1349e: mov byte ptr [0x28], al 0x134a1: xor ax, ax 0x134a3: mov al, dh 0x134a5: and al, 0xf 0x134a7: push ax 0x134a8: pop si 0x134a9: mov al, byte ptr [si + 0x3b1] 0x134ad: mov byte ptr [0x1e], al 0x134b0: mov byte ptr [0x2d], al 0x134b3: and dh, 0xf |
| 2018-12-17T23:04:21.073807734Z | 71 | PC: 134ca | Get current directory |
| 2018-12-17T23:04:21.076414899Z | 59 | PC: 134d7 | Change current directory |
| 2018-12-17T23:04:21.08029045Z | 78 | PC: 134e7 | Find first file |
| 2018-12-17T23:04:21.090751928Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.093983275Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.096440692Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.098672972Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.101335851Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.103650304Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.107974154Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.111185457Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.119739857Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.122178196Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.124878348Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.127586128Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.130035522Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.132738266Z | 59 | PC: 13503 | Change current directory |
| 2018-12-17T23:04:21.138224967Z | 78 | PC: 134e7 | Find first file |
| 2018-12-17T23:04:21.143588148Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.147582995Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.149972664Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.15218539Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.154916203Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.157186428Z | 79 | PC: 134f8 | Find next file |
| 2018-12-17T23:04:21.15949931Z | 59 | PC: 13503 | Change current directory |
| 2018-12-17T23:04:21.165256909Z | 78 | PC: 13519 | Find first file |
| 2018-12-17T23:04:21.171570642Z | 67 | PC: 13562 | Get or set file attributes |
| 2018-12-17T23:04:21.19328849Z | 61 | PC: 1356a | Open file |
| 2018-12-17T23:04:21.200219055Z | 66 | PC: 1357d | Move file pointer |
| 2018-12-17T23:04:21.201555419Z | 63 | PC: 13587 | Read file or device (Read 24 bytes on handle 5) |
| 2018-12-17T23:04:21.207644337Z | 66 | PC: 13632 | Move file pointer |
| 2018-12-17T23:04:21.208798122Z | 64 | PC: 1363c | Write file or device (Write 24 bytes on handle 5) |
| 2018-12-17T23:04:21.211406054Z | 66 | PC: 13645 | Move file pointer |
| 2018-12-17T23:04:21.212641582Z | 42 | PC: 1364e | Get date 0x1364e: mov byte ptr [0x4ee], dh 0x13652: push cs 0x13653: pop ax 0x13654: mov word ptr [0x2bf], ax 0x13657: mov ax, 0x2c1 0x1365a: mov word ptr [0x2bd], ax 0x1365d: push ds 0x1365e: pop es 0x1365f: cld 0x13660: mov di, 0x58e 0x13663: mov si, 0x298 0x13666: mov cx, 0x29 0x13669: nop 0x1366a: rep movsb byte ptr es:[di], byte ptr [si] 0x1366c: mov si, 0x32 0x1366f: mov di, 0x32 0x13672: mov cx, 0x25e 0x13675: mov dx, word ptr [0x22] 0x13679: not dx 0x1367b: push dx |
| 2018-12-17T23:04:21.214927741Z | 64 | PC: 13994 | Write file or device (Write 1264 bytes on handle 5) |
| 2018-12-17T23:04:21.224054752Z | 87 | PC: 136c4 | Get or set file date and time |
| 2018-12-17T23:04:21.22551259Z | 62 | PC: 136cc | Close file |
| 2018-12-17T23:04:21.233196474Z | 67 | PC: 136da | Get or set file attributes |
| 2018-12-17T23:04:21.243757564Z | 59 | PC: 136e1 | Change current directory |
| 2018-12-17T23:04:21.247942943Z | 42 | PC: 136e5 | Get date 0x136e5: cli 0x136e6: xor dh, byte ptr [0x4ee] 0x136ea: je 0x1374f 0x136ec: and dl, 1 0x136ef: je 0x1374f 0x136f1: and al, 1 0x136f3: jne 0x1374f 0x136f5: mov ax, 0x3508 0x136f8: int 0x21 0x136fa: mov word ptr [0x4a9], bx 0x136fe: mov word ptr [0x4ab], es 0x13702: mov cx, 0x8e3 0x13705: mov bx, 0xa000 0x13708: mov es, word ptr [0x58c] 0x1370c: clc 0x1370d: push bx 0x1370e: mov ah, 0x4a 0x13710: int 0x21 0x13712: pop bx 0x13713: jae 0x1371e |
| 2018-12-17T23:04:21.250689424Z | 9 | PC: 133f2 | Display string (Could not find end pointer) |
| 2018-12-17T23:04:21.255394024Z | 76 | PC: 133f8 | Terminate with return code (Return code = '0') |