.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:04:35.279996895Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:04:35.282601548Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T23:04:35.285650684Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:04:35.287501554Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:04:35.289262031Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:04:35.29076226Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:35.292516968Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T23:04:35.296433142Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T23:04:35.298049795Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T23:04:35.299650947Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T23:04:35.303158552Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T23:04:35.313805601Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T23:04:35.315033513Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T23:04:35.316754152Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T23:04:35.317781657Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T23:04:35.320214897Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T23:04:35.321743388Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T23:04:35.322737957Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:04:35.323816745Z | 53 | PC: 147b2 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T23:04:35.325536391Z | 37 | PC: 147c7 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:04:35.326389943Z | 37 | PC: 147cf | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:04:35.327241795Z | 37 | PC: 147d7 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:35.328593357Z | 37 | PC: 147df | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:04:35.329744646Z | 68 | PC: 14b4f | I/O control for devices (Set for = '') |
| 2018-12-17T23:04:35.384505456Z | 37 | PC: 141d5 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:04:35.387416401Z | 67 | PC: 13fc7 | Get or set file attributes |
| 2018-12-17T23:04:35.393637552Z | 67 | PC: 13fc7 | Get or set file attributes |
| 2018-12-17T23:04:35.400048269Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.403704251Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.405225665Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.408744098Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.411430094Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.412902639Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.417270485Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.421424098Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.428848443Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.430251593Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.434278885Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.435558242Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.438716857Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.440939906Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.447410945Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.44894575Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.451047502Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.455545948Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:35.462270286Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.465645299Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.468502565Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.471364651Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.474985089Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.480345947Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:35.481735959Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.483802138Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.484844129Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.487034665Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.488600637Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.489572518Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.492278924Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.4935626Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.498136044Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.499037747Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.501591331Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.502450863Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.504141499Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.505648172Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.509675789Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.510720178Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.51208719Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.514878593Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:35.519085547Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.523890919Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.525662616Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.527406198Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.529728358Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.531903354Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:35.533225727Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.535552217Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.536443172Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.538578888Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.540086047Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.541068422Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.5437363Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.54544708Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.549503069Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.55036632Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.553332894Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.554215812Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.556399915Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.557903126Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.564805667Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.565774794Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.568165919Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.574065088Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:35.580102783Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.58482376Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.586648022Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.588455394Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.590820204Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.595330475Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:35.596751375Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.598979954Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.599899553Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.602020554Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.603602545Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.604585518Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.607274814Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.608718876Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.612574251Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.61351342Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.618992308Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.619898747Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.623869405Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.625350894Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.632172515Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.633156233Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.634681009Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.6404653Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:35.647143156Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.651924576Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.653832684Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.655883402Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.658201234Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.662635733Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:35.663954368Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.666058729Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.666920708Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.668996572Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.670497348Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.671338141Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.674103152Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.675328Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.679154406Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.68055325Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.683609935Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.684990844Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.688353865Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.690024586Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.699718735Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.701135963Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.702363247Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.709096808Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:35.72032122Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.727397823Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.730324184Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.733994722Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.735861377Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.740317034Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:35.742255169Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.743816581Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.74469667Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.747366895Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.748294899Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.749177087Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.752363204Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.753202202Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.756986587Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.758395391Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.760424979Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.761300148Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.763487395Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.76433935Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.770923278Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.772392001Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.773625146Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.78205828Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:35.79070476Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.795085641Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.797237012Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.799474315Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.801344364Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.806300785Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:35.808301336Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.80981573Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.811484834Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.813907875Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.814973731Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.816459432Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.819113253Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.820048959Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.825030079Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.826398277Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.829830048Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.832017508Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.835047455Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.836356644Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.848014182Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.849964582Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.851419592Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.85801545Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:35.864895281Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.869433558Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.871892298Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.873812183Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.875677964Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.880911621Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:35.882750736Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.884800038Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.886842959Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.890342513Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.891927599Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.893739225Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.897956123Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.899137203Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.905733051Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.907302064Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.910600964Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.912189231Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.914693137Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.916020117Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.926275737Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.927411428Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.929039247Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.931999949Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:35.936352083Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.941566936Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.943402753Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.945375306Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.948477816Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:35.953591282Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:35.954913654Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:35.957069084Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:35.95802647Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:35.960212449Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.961838258Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.962677744Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.965263647Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.966588277Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.973293201Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:35.974238959Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:35.980242633Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:35.981133074Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:35.985165242Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:35.98649517Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:35.993060896Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:35.994550815Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:35.995420372Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:35.9984952Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:36.002992724Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.00730136Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.009088206Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.01149499Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.013272271Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.018024931Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:36.019879075Z | 44 | PC: 15198 | Get time 0x15198: mov word ptr [0x3e], cx 0x1519c: mov word ptr [0x40], dx 0x151a0: retf 0x151a1: mov bx, sp 0x151a3: push ds 0x151a4: les di, ptr ss:[bx + 8] 0x151a8: lds si, ptr ss:[bx + 4] 0x151ac: cld 0x151ad: xor ax, ax 0x151af: stosw word ptr es:[di], ax 0x151b0: mov ax, 0xd7b0 0x151b3: stosw word ptr es:[di], ax 0x151b4: xor ax, ax 0x151b6: mov cx, 0x16 0x151b9: rep stosd dword ptr es:[di], eax 0x151bb: lodsb al, byte ptr [si] 0x151bc: cmp al, 0x4f 0x151be: jbe 0x151c2 0x151c0: mov al, 0x4f 0x151c2: mov cl, al |
| 2018-12-17T23:04:36.02151848Z | 25 | PC: 154e4 | Get default drive |
| 2018-12-17T23:04:36.022421469Z | 71 | PC: 154f7 | Get current directory |
| 2018-12-17T23:04:36.024981399Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:36.026009477Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:36.027458979Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:36.030138616Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:36.031000965Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:36.035438165Z | 25 | PC: 14033 | Get default drive |
| 2018-12-17T23:04:36.036400459Z | 71 | PC: 14052 | Get current directory |
| 2018-12-17T23:04:36.038586645Z | 26 | PC: 13e97 | Set disk transfer address |
| 2018-12-17T23:04:36.040135576Z | 79 | PC: 13e9c | Find next file |
| 2018-12-17T23:04:36.041959885Z | 26 | PC: 13e73 | Set disk transfer address |
| 2018-12-17T23:04:36.043096937Z | 78 | PC: 13e7f | Find first file |
| 2018-12-17T23:04:36.051206366Z | 14 | PC: 1553d | Set default drive (Drive = 'A') |
| 2018-12-17T23:04:36.052240418Z | 25 | PC: 15541 | Get default drive |
| 2018-12-17T23:04:36.053335819Z | 59 | PC: 155ab | Change current directory |
| 2018-12-17T23:04:36.059342638Z | 61 | PC: 14b36 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:36.06692875Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.07197873Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.073961049Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.075782041Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.079466692Z | 63 | PC: 14bfb | Read file or device (Read 128 bytes on handle 5) |
| 2018-12-17T23:04:36.084083058Z | 62 | PC: 14c6c | Close file |
| 2018-12-17T23:04:36.085585242Z | 42 | PC: 13de3 | Get date 0x13de3: xor ah, ah 0x13de5: les di, ptr [bp + 6] 0x13de8: stosw word ptr es:[di], ax 0x13de9: mov al, dl 0x13deb: les di, ptr [bp + 0xa] 0x13dee: stosw word ptr es:[di], ax 0x13def: mov al, dh 0x13df1: les di, ptr [bp + 0xe] 0x13df4: stosw word ptr es:[di], ax 0x13df5: xchg ax, cx 0x13df6: les di, ptr [bp + 0x12] 0x13df9: stosw word ptr es:[di], ax 0x13dfa: pop bp 0x13dfb: retf 0x10 0x13dfe: push bp 0x13dff: mov bp, sp 0x13e01: mov cx, word ptr [bp + 0xa] 0x13e04: mov dh, byte ptr [bp + 8] 0x13e07: mov dl, byte ptr [bp + 6] 0x13e0a: mov ah, 0x2b |