.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:03:23.298843462Z | 26 | PC: 12da1 | Set disk transfer address |
| 2018-12-17T22:03:23.300395395Z | 53 | PC: 12ad0 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:03:23.301704196Z | 37 | PC: 12ae6 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:03:23.302888348Z | 71 | PC: 12af6 | Get current directory |
| 2018-12-17T22:03:23.306127198Z | 78 | PC: 12b90 | Find first file |
| 2018-12-17T22:03:23.312156157Z | 78 | PC: 12b90 | Find first file |
| 2018-12-17T22:03:23.32250007Z | 61 | PC: 12dac | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:03:23.336298207Z | 63 | PC: 12bb3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:03:23.342912497Z | 62 | PC: 12bb7 | Close file |
| 2018-12-17T22:03:23.344609812Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.361071387Z | 61 | PC: 12dac | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:03:23.369672023Z | 64 | PC: 12cc4 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:03:23.372474808Z | 66 | PC: 12d9a | Move file pointer |
| 2018-12-17T22:03:23.374025281Z | 44 | PC: 12cd5 | Get time 0x12cd5: cmp dh, 0
0x12cd8: xchg ax, dx
0x12cd9: xchg ax, dx
0x12cda: je 0x12ccf
0x12cdc: mov byte ptr cs:[bp + 0x518], dh
0x12ce1: xchg ax, dx
0x12ce2: xchg ax, dx
0x12ce3: call 0x12e14
0x12ce6: xchg ax, dx
0x12ce7: xchg ax, dx
0x12ce8: inc byte ptr cs:[bp + 0x519]
0x12ced: mov ax, 0x5701
0x12cf0: xchg ax, dx
0x12cf1: xchg ax, dx
0x12cf2: mov cx, word ptr cs:[bp + 0x58c]
0x12cf7: mov dx, word ptr cs:[bp + 0x58e]
0x12cfc: xchg ax, dx
0x12cfd: xchg ax, dx
0x12cfe: int 0x21
0x12d00: mov ah, 0x3e
|
| 2018-12-17T22:03:23.377657074Z | 64 | PC: 12e6d | Write file or device (Write 1029 bytes on handle 5) |
| 2018-12-17T22:03:23.386528666Z | 87 | PC: 12d00 | Get or set file date and time |
| 2018-12-17T22:03:23.387983664Z | 62 | PC: 12d06 | Close file |
| 2018-12-17T22:03:23.397048119Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.416478488Z | 79 | PC: 12b90 | Find next file |
| 2018-12-17T22:03:23.418862586Z | 61 | PC: 12dac | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:03:23.426057747Z | 63 | PC: 12bb3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:03:23.432472118Z | 62 | PC: 12bb7 | Close file |
| 2018-12-17T22:03:23.434324573Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.445469151Z | 61 | PC: 12dac | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:03:23.452482537Z | 64 | PC: 12cc4 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:03:23.455152237Z | 66 | PC: 12d9a | Move file pointer |
| 2018-12-17T22:03:23.457352219Z | 44 | PC: 12cd5 | Get time 0x12cd5: cmp dh, 0
0x12cd8: xchg ax, dx
0x12cd9: xchg ax, dx
0x12cda: je 0x12ccf
0x12cdc: mov byte ptr cs:[bp + 0x518], dh
0x12ce1: xchg ax, dx
0x12ce2: xchg ax, dx
0x12ce3: call 0x12e14
0x12ce6: xchg ax, dx
0x12ce7: xchg ax, dx
0x12ce8: inc byte ptr cs:[bp + 0x519]
0x12ced: mov ax, 0x5701
0x12cf0: xchg ax, dx
0x12cf1: xchg ax, dx
0x12cf2: mov cx, word ptr cs:[bp + 0x58c]
0x12cf7: mov dx, word ptr cs:[bp + 0x58e]
0x12cfc: xchg ax, dx
0x12cfd: xchg ax, dx
0x12cfe: int 0x21
0x12d00: mov ah, 0x3e
|
| 2018-12-17T22:03:23.460672255Z | 64 | PC: 12e6d | Write file or device (Write 1029 bytes on handle 5) |
| 2018-12-17T22:03:23.469724793Z | 87 | PC: 12d00 | Get or set file date and time |
| 2018-12-17T22:03:23.471514461Z | 62 | PC: 12d06 | Close file |
| 2018-12-17T22:03:23.480277041Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.490167057Z | 79 | PC: 12b90 | Find next file |
| 2018-12-17T22:03:23.493032141Z | 61 | PC: 12dac | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:03:23.499840985Z | 63 | PC: 12bb3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:03:23.506080629Z | 62 | PC: 12bb7 | Close file |
| 2018-12-17T22:03:23.507775891Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.51754884Z | 61 | PC: 12dac | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:03:23.529166323Z | 64 | PC: 12cc4 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:03:23.535669594Z | 66 | PC: 12d9a | Move file pointer |
| 2018-12-17T22:03:23.537876967Z | 44 | PC: 12cd5 | Get time 0x12cd5: cmp dh, 0
0x12cd8: xchg ax, dx
0x12cd9: xchg ax, dx
0x12cda: je 0x12ccf
0x12cdc: mov byte ptr cs:[bp + 0x518], dh
0x12ce1: xchg ax, dx
0x12ce2: xchg ax, dx
0x12ce3: call 0x12e14
0x12ce6: xchg ax, dx
0x12ce7: xchg ax, dx
0x12ce8: inc byte ptr cs:[bp + 0x519]
0x12ced: mov ax, 0x5701
0x12cf0: xchg ax, dx
0x12cf1: xchg ax, dx
0x12cf2: mov cx, word ptr cs:[bp + 0x58c]
0x12cf7: mov dx, word ptr cs:[bp + 0x58e]
0x12cfc: xchg ax, dx
0x12cfd: xchg ax, dx
0x12cfe: int 0x21
0x12d00: mov ah, 0x3e
|
| 2018-12-17T22:03:23.540373728Z | 64 | PC: 12e6d | Write file or device (Write 1029 bytes on handle 5) |
| 2018-12-17T22:03:23.548968676Z | 87 | PC: 12d00 | Get or set file date and time |
| 2018-12-17T22:03:23.551802604Z | 62 | PC: 12d06 | Close file |
| 2018-12-17T22:03:23.566179568Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.575776826Z | 79 | PC: 12b90 | Find next file |
| 2018-12-17T22:03:23.579233194Z | 61 | PC: 12dac | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:03:23.585553972Z | 63 | PC: 12bb3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:03:23.592236753Z | 62 | PC: 12bb7 | Close file |
| 2018-12-17T22:03:23.594992961Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.605258902Z | 61 | PC: 12dac | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:03:23.611942801Z | 64 | PC: 12cc4 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:03:23.614748311Z | 66 | PC: 12d9a | Move file pointer |
| 2018-12-17T22:03:23.616512563Z | 44 | PC: 12cd5 | Get time 0x12cd5: cmp dh, 0
0x12cd8: xchg ax, dx
0x12cd9: xchg ax, dx
0x12cda: je 0x12ccf
0x12cdc: mov byte ptr cs:[bp + 0x518], dh
0x12ce1: xchg ax, dx
0x12ce2: xchg ax, dx
0x12ce3: call 0x12e14
0x12ce6: xchg ax, dx
0x12ce7: xchg ax, dx
0x12ce8: inc byte ptr cs:[bp + 0x519]
0x12ced: mov ax, 0x5701
0x12cf0: xchg ax, dx
0x12cf1: xchg ax, dx
0x12cf2: mov cx, word ptr cs:[bp + 0x58c]
0x12cf7: mov dx, word ptr cs:[bp + 0x58e]
0x12cfc: xchg ax, dx
0x12cfd: xchg ax, dx
0x12cfe: int 0x21
0x12d00: mov ah, 0x3e
|
| 2018-12-17T22:03:23.618989741Z | 64 | PC: 12e6d | Write file or device (Write 1029 bytes on handle 5) |
| 2018-12-17T22:03:23.627741562Z | 87 | PC: 12d00 | Get or set file date and time |
| 2018-12-17T22:03:23.6301813Z | 62 | PC: 12d06 | Close file |
| 2018-12-17T22:03:23.637785645Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.647588528Z | 79 | PC: 12b90 | Find next file |
| 2018-12-17T22:03:23.65143729Z | 61 | PC: 12dac | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:03:23.658889071Z | 63 | PC: 12bb3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:03:23.665471857Z | 62 | PC: 12bb7 | Close file |
| 2018-12-17T22:03:23.668377382Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.672973169Z | 61 | PC: 12dac | Open file (Filename = 'PRINTA~1.COM��') |
| 2018-12-17T22:03:23.685216997Z | 64 | PC: 12cc4 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:03:23.688886942Z | 66 | PC: 12d9a | Move file pointer |
| 2018-12-17T22:03:23.69040621Z | 44 | PC: 12cd5 | Get time 0x12cd5: cmp dh, 0
0x12cd8: xchg ax, dx
0x12cd9: xchg ax, dx
0x12cda: je 0x12ccf
0x12cdc: mov byte ptr cs:[bp + 0x518], dh
0x12ce1: xchg ax, dx
0x12ce2: xchg ax, dx
0x12ce3: call 0x12e14
0x12ce6: xchg ax, dx
0x12ce7: xchg ax, dx
0x12ce8: inc byte ptr cs:[bp + 0x519]
0x12ced: mov ax, 0x5701
0x12cf0: xchg ax, dx
0x12cf1: xchg ax, dx
0x12cf2: mov cx, word ptr cs:[bp + 0x58c]
0x12cf7: mov dx, word ptr cs:[bp + 0x58e]
0x12cfc: xchg ax, dx
0x12cfd: xchg ax, dx
0x12cfe: int 0x21
0x12d00: mov ah, 0x3e
|
| 2018-12-17T22:03:23.6930423Z | 64 | PC: 12e6d | Write file or device (Write 1029 bytes on handle 2) |
| 2018-12-17T22:03:23.704597151Z | 87 | PC: 12d00 | Get or set file date and time |
| 2018-12-17T22:03:23.706643785Z | 62 | PC: 12d06 | Close file |
| 2018-12-17T22:03:23.708826475Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.714238643Z | 79 | PC: 12b90 | Find next file |
| 2018-12-17T22:03:23.717065079Z | 61 | PC: 12dac | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:03:23.723849505Z | 63 | PC: 12bb3 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:03:23.731557208Z | 62 | PC: 12bb7 | Close file |
| 2018-12-17T22:03:23.733351595Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.743028874Z | 61 | PC: 12dac | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:03:23.750034698Z | 64 | PC: 12cc4 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:03:23.756452344Z | 66 | PC: 12d9a | Move file pointer |
| 2018-12-17T22:03:23.757863205Z | 44 | PC: 12cd5 | Get time 0x12cd5: cmp dh, 0
0x12cd8: xchg ax, dx
0x12cd9: xchg ax, dx
0x12cda: je 0x12ccf
0x12cdc: mov byte ptr cs:[bp + 0x518], dh
0x12ce1: xchg ax, dx
0x12ce2: xchg ax, dx
0x12ce3: call 0x12e14
0x12ce6: xchg ax, dx
0x12ce7: xchg ax, dx
0x12ce8: inc byte ptr cs:[bp + 0x519]
0x12ced: mov ax, 0x5701
0x12cf0: xchg ax, dx
0x12cf1: xchg ax, dx
0x12cf2: mov cx, word ptr cs:[bp + 0x58c]
0x12cf7: mov dx, word ptr cs:[bp + 0x58e]
0x12cfc: xchg ax, dx
0x12cfd: xchg ax, dx
0x12cfe: int 0x21
0x12d00: mov ah, 0x3e
|
| 2018-12-17T22:03:23.761361866Z | 64 | PC: 12e6d | Write file or device (Write 1029 bytes on handle 2) |
| 2018-12-17T22:03:23.77170301Z | 87 | PC: 12d00 | Get or set file date and time |
| 2018-12-17T22:03:23.773496925Z | 62 | PC: 12d06 | Close file |
| 2018-12-17T22:03:23.78275322Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.792329898Z | 79 | PC: 12b90 | Find next file |
| 2018-12-17T22:03:23.795680867Z | 61 | PC: 12dac | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:03:23.802262131Z | 63 | PC: 12bb3 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:03:23.808873685Z | 62 | PC: 12bb7 | Close file |
| 2018-12-17T22:03:23.810677392Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.821247836Z | 61 | PC: 12dac | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:03:23.828414209Z | 64 | PC: 12cc4 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:03:23.831169056Z | 66 | PC: 12d9a | Move file pointer |
| 2018-12-17T22:03:23.83255604Z | 44 | PC: 12cd5 | Get time 0x12cd5: cmp dh, 0
0x12cd8: xchg ax, dx
0x12cd9: xchg ax, dx
0x12cda: je 0x12ccf
0x12cdc: mov byte ptr cs:[bp + 0x518], dh
0x12ce1: xchg ax, dx
0x12ce2: xchg ax, dx
0x12ce3: call 0x12e14
0x12ce6: xchg ax, dx
0x12ce7: xchg ax, dx
0x12ce8: inc byte ptr cs:[bp + 0x519]
0x12ced: mov ax, 0x5701
0x12cf0: xchg ax, dx
0x12cf1: xchg ax, dx
0x12cf2: mov cx, word ptr cs:[bp + 0x58c]
0x12cf7: mov dx, word ptr cs:[bp + 0x58e]
0x12cfc: xchg ax, dx
0x12cfd: xchg ax, dx
0x12cfe: int 0x21
0x12d00: mov ah, 0x3e
|
| 2018-12-17T22:03:23.835895545Z | 64 | PC: 12e6d | Write file or device (Write 1029 bytes on handle 2) |
| 2018-12-17T22:03:23.859823633Z | 87 | PC: 12d00 | Get or set file date and time |
| 2018-12-17T22:03:23.861704843Z | 62 | PC: 12d06 | Close file |
| 2018-12-17T22:03:23.869926091Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.879554785Z | 79 | PC: 12b90 | Find next file |
| 2018-12-17T22:03:23.882181452Z | 61 | PC: 12dac | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:03:23.889018063Z | 63 | PC: 12bb3 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:03:23.905765825Z | 62 | PC: 12bb7 | Close file |
| 2018-12-17T22:03:23.907541993Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.91688363Z | 61 | PC: 12dac | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:03:23.928500078Z | 64 | PC: 12cc4 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:03:23.935561607Z | 66 | PC: 12d9a | Move file pointer |
| 2018-12-17T22:03:23.938046865Z | 44 | PC: 12cd5 | Get time 0x12cd5: cmp dh, 0
0x12cd8: xchg ax, dx
0x12cd9: xchg ax, dx
0x12cda: je 0x12ccf
0x12cdc: mov byte ptr cs:[bp + 0x518], dh
0x12ce1: xchg ax, dx
0x12ce2: xchg ax, dx
0x12ce3: call 0x12e14
0x12ce6: xchg ax, dx
0x12ce7: xchg ax, dx
0x12ce8: inc byte ptr cs:[bp + 0x519]
0x12ced: mov ax, 0x5701
0x12cf0: xchg ax, dx
0x12cf1: xchg ax, dx
0x12cf2: mov cx, word ptr cs:[bp + 0x58c]
0x12cf7: mov dx, word ptr cs:[bp + 0x58e]
0x12cfc: xchg ax, dx
0x12cfd: xchg ax, dx
0x12cfe: int 0x21
0x12d00: mov ah, 0x3e
|
| 2018-12-17T22:03:23.940642617Z | 64 | PC: 12e6d | Write file or device (Write 1029 bytes on handle 2) |
| 2018-12-17T22:03:23.949883082Z | 87 | PC: 12d00 | Get or set file date and time |
| 2018-12-17T22:03:23.952180672Z | 62 | PC: 12d06 | Close file |
| 2018-12-17T22:03:23.959733291Z | 67 | PC: 12dbd | Get or set file attributes |
| 2018-12-17T22:03:23.96955228Z | 79 | PC: 12b90 | Find next file |
| 2018-12-17T22:03:23.972778921Z | 59 | PC: 12b16 | Change current directory |
| 2018-12-17T22:03:23.97695254Z | 42 | PC: 12d19 | Get date 0x12d19: xchg ax, dx
0x12d1a: xchg ax, dx
0x12d1b: cmp cx, 0x7cb
0x12d1f: jb 0x12d8d
0x12d21: cmp dh, 6
0x12d24: jb 0x12d8d
0x12d26: cmp dl, 5
0x12d29: jb 0x12d8d
0x12d2b: cmp al, 2
0x12d2d: jb 0x12d8d
0x12d2f: xchg ax, dx
0x12d30: xchg ax, dx
0x12d31: mov ah, 0x2c
0x12d33: int 0x21
0x12d35: xchg ax, dx
0x12d36: xchg ax, dx
0x12d37: cmp ch, 9
0x12d3a: jb 0x12d8d
0x12d3c: cmp cl, 1
0x12d3f: jb 0x12d8d
|
| 2018-12-17T22:03:23.979204339Z | 37 | PC: 12b29 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:03:23.981502167Z | 59 | PC: 12b37 | Change current directory |
| 2018-12-17T22:03:23.983405444Z | 26 | PC: 12da1 | Set disk transfer address |
