.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:05:25.363653805Z | 25 | PC: 12a58 | Get default drive |
| 2018-12-17T23:05:25.366759225Z | 98 | PC: 1bb86 | Get current PSP |
| 2018-12-17T23:05:25.368861204Z | 44 | PC: 12b23 | Get time 0x12b23: xchg dx, cx 0x12b25: mov al, dh 0x12b27: mov ah, 0 0x12b29: mov bl, 0xa 0x12b2b: jmp 0x12b41 0x12b2d: div bl 0x12b2f: add al, 0x30 0x12b31: mov byte ptr [di], al 0x12b33: inc di 0x12b34: xchg al, ah 0x12b36: add al, 0x30 0x12b38: mov byte ptr [di], al 0x12b3a: inc di 0x12b3b: mov al, 0x3a 0x12b3d: mov byte ptr [di], al 0x12b3f: inc di 0x12b40: ret 0x12b41: call 0x22b2d 0x12b44: mov al, dl 0x12b46: mov ah, 0 |
| 2018-12-17T23:05:25.372979109Z | 71 | PC: 12de2 | Get current directory |
| 2018-12-17T23:05:25.377572591Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.385462982Z | 65 | PC: 138d7 | Delete file (Filename = 'anti-vir.dat') |
| 2018-12-17T23:05:25.393450503Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.401393034Z | 65 | PC: 138d7 | Delete file (Filename = 'chklist.ms') |
| 2018-12-17T23:05:25.409005945Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.417598393Z | 65 | PC: 138d7 | Delete file (Filename = 'chklist.cps') |
| 2018-12-17T23:05:25.42586184Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.433372833Z | 65 | PC: 138d7 | Delete file (Filename = 'vs.vsn') |
| 2018-12-17T23:05:25.450320281Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.456922767Z | 65 | PC: 138d7 | Delete file (Filename = 'ivb.ntz') |
| 2018-12-17T23:05:25.46370404Z | 26 | PC: 12ea3 | Set disk transfer address |
| 2018-12-17T23:05:25.465992639Z | 78 | PC: 12eb5 | Find first file |
| 2018-12-17T23:05:25.473072884Z | 67 | PC: 13fbd | Get or set file attributes |
| 2018-12-17T23:05:25.480350296Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.50184389Z | 61 | PC: 14139 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:05:25.510782615Z | 63 | PC: 141db | Read file or device (Read 7800 bytes on handle 5) |
| 2018-12-17T23:05:25.519948685Z | 62 | PC: 14221 | Close file |
| 2018-12-17T23:05:25.522780001Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.537143991Z | 47 | PC: 1b9c5 | Get disk transfer address |
| 2018-12-17T23:05:25.5391487Z | 26 | PC: 1b9d0 | Set disk transfer address |
| 2018-12-17T23:05:25.54121641Z | 78 | PC: 1b9dc | Find first file |
| 2018-12-17T23:05:25.549393145Z | 26 | PC: 1b9ee | Set disk transfer address |
| 2018-12-17T23:05:25.5535947Z | 26 | PC: 13788 | Set disk transfer address |
| 2018-12-17T23:05:25.555505005Z | 78 | PC: 1379a | Find first file |
| 2018-12-17T23:05:25.574465482Z | 67 | PC: 13fbd | Get or set file attributes |
| 2018-12-17T23:05:25.581299265Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.593571105Z | 61 | PC: 14139 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T23:05:25.602777654Z | 66 | PC: 1bcab | Move file pointer |
| 2018-12-17T23:05:25.605536664Z | 63 | PC: 141db | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:05:25.612076155Z | 62 | PC: 14221 | Close file |
| 2018-12-17T23:05:25.618419705Z | 67 | PC: 13ff4 | Get or set file attributes |
| 2018-12-17T23:05:25.865795092Z | 47 | PC: 1ba02 | Get disk transfer address |
| 2018-12-17T23:05:25.867566839Z | 26 | PC: 1ba0d | Set disk transfer address |
| 2018-12-17T23:05:25.870981188Z | 79 | PC: 1ba11 | Find next file |
| 2018-12-17T23:05:25.874190443Z | 26 | PC: 1ba21 | Set disk transfer address |
| 2018-12-17T23:05:25.883080516Z | 76 | PC: 12f63 | Terminate with return code (Return code = '0') |