.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:07:36.094857042Z | 78 | PC: 12aeb | Find first file |
| 2018-12-17T23:07:36.10001625Z | 67 | PC: 12aeb | Get or set file attributes |
| 2018-12-17T23:07:36.116496012Z | 61 | PC: 12aeb | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:07:36.12356148Z | 64 | PC: 12aeb | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T23:07:36.136564486Z | 64 | PC: 12aeb | Write file or device (Write 500 bytes on handle 5) |
| 2018-12-17T23:07:36.144352353Z | 62 | PC: 12aeb | Close file |
| 2018-12-17T23:07:36.149802983Z | 79 | PC: 12aeb | Find next file |
| 2018-12-17T23:07:36.163771412Z | 67 | PC: 12aeb | Get or set file attributes |
| 2018-12-17T23:07:36.173549213Z | 61 | PC: 12aeb | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:07:36.180486473Z | 64 | PC: 12aeb | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T23:07:36.187472874Z | 64 | PC: 12aeb | Write file or device (Write 500 bytes on handle 5) |
| 2018-12-17T23:07:36.19515288Z | 62 | PC: 12aeb | Close file |
| 2018-12-17T23:07:36.2033814Z | 79 | PC: 12aeb | Find next file |
| 2018-12-17T23:07:36.206357191Z | 67 | PC: 12aeb | Get or set file attributes |
| 2018-12-17T23:07:36.223014432Z | 61 | PC: 12aeb | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:07:36.230324853Z | 64 | PC: 12aeb | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T23:07:36.237102313Z | 64 | PC: 12aeb | Write file or device (Write 500 bytes on handle 5) |
| 2018-12-17T23:07:36.246000043Z | 62 | PC: 12aeb | Close file |
| 2018-12-17T23:07:36.254503474Z | 79 | PC: 12aeb | Find next file |
| 2018-12-17T23:07:36.257368201Z | 67 | PC: 12aeb | Get or set file attributes |
| 2018-12-17T23:07:36.267541701Z | 61 | PC: 12aeb | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:07:36.274578644Z | 64 | PC: 12aeb | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T23:07:36.28137814Z | 64 | PC: 12aeb | Write file or device (Write 500 bytes on handle 5) |
| 2018-12-17T23:07:36.297805193Z | 62 | PC: 12aeb | Close file |
| 2018-12-17T23:07:36.30572058Z | 79 | PC: 12aeb | Find next file |
| 2018-12-17T23:07:36.308380842Z | 67 | PC: 12aeb | Get or set file attributes |
| 2018-12-17T23:07:36.31999192Z | 61 | PC: 12aeb | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:07:36.326863816Z | 64 | PC: 12aeb | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T23:07:36.333415017Z | 64 | PC: 12aeb | Write file or device (Write 500 bytes on handle 5) |
| 2018-12-17T23:07:36.341934986Z | 62 | PC: 12aeb | Close file |
| 2018-12-17T23:07:36.350052299Z | 79 | PC: 12aeb | Find next file |
| 2018-12-17T23:07:36.3526326Z | 67 | PC: 12aeb | Get or set file attributes |
| 2018-12-17T23:07:36.3816394Z | 61 | PC: 12aeb | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:07:36.38864642Z | 64 | PC: 12aeb | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T23:07:36.395029308Z | 64 | PC: 12aeb | Write file or device (Write 500 bytes on handle 5) |
| 2018-12-17T23:07:36.404111307Z | 62 | PC: 12aeb | Close file |
| 2018-12-17T23:07:36.412516323Z | 79 | PC: 12aeb | Find next file |
| 2018-12-17T23:07:36.415088681Z | 67 | PC: 12aeb | Get or set file attributes |
| 2018-12-17T23:07:36.42624337Z | 61 | PC: 12aeb | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:07:36.430937918Z | 64 | PC: 12aeb | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T23:07:36.435310742Z | 64 | PC: 12aeb | Write file or device (Write 500 bytes on handle 5) |
| 2018-12-17T23:07:36.441360214Z | 62 | PC: 12aeb | Close file |
| 2018-12-17T23:07:36.448135487Z | 79 | PC: 12aeb | Find next file |
| 2018-12-17T23:07:36.45002671Z | 67 | PC: 12aeb | Get or set file attributes |
| 2018-12-17T23:07:36.457267151Z | 61 | PC: 12aeb | Open file (Filename = 'TEST.COM') |
| 2018-12-17T23:07:36.463958581Z | 64 | PC: 12aeb | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T23:07:36.47034269Z | 64 | PC: 12aeb | Write file or device (Write 500 bytes on handle 5) |
| 2018-12-17T23:07:36.479846872Z | 62 | PC: 12aeb | Close file |
| 2018-12-17T23:07:36.487543497Z | 79 | PC: 12aeb | Find next file |
| 2018-12-17T23:07:36.489824606Z | 59 | PC: 12aeb | Change current directory |
| 2018-12-17T23:07:36.495358765Z | 42 | PC: 12aeb | Get date 0x12aeb: ret 0x12aec: or cl, byte ptr [di] 0x12aee: inc cx 0x12aef: arpl word ptr [di + 0x72], si 0x12af2: jbe 0x12b15 0x12af5: jbe 0x12b28 0x12af7: cmp byte ptr cs:[bx + si], ah 0x12afa: arpl word ptr [bx + 0x64], bp 0x12afd: and byte ptr fs:[bp + si + 0x79], ah 0x12b02: and byte ptr [bp + di + 0x69], cl 0x12b05: insb byte ptr es:[di], dx 0x12b06: dec dx 0x12b07: popaw 0x12b08: outsb dx, byte ptr gs:[si] 0x12b0c: and byte ptr [bx + 0x66], ch 0x12b0f: and byte ptr [si + 0x68], dh 0x12b12: and byte ptr gs:[bp + di + 0x6f], al 0x12b16: bound si, dword ptr gs:[bp + si + 0x65] 0x12b1b: popaw 0x12b1c: imul sp, word ptr [di + 0x72], 0x73 |
| 2018-12-17T23:07:36.498378999Z | 42 | PC: 12aeb | Get date 0x12aeb: ret 0x12aec: or cl, byte ptr [di] 0x12aee: inc cx 0x12aef: arpl word ptr [di + 0x72], si 0x12af2: jbe 0x12b15 0x12af5: jbe 0x12b28 0x12af7: cmp byte ptr cs:[bx + si], ah 0x12afa: arpl word ptr [bx + 0x64], bp 0x12afd: and byte ptr fs:[bp + si + 0x79], ah 0x12b02: and byte ptr [bp + di + 0x69], cl 0x12b05: insb byte ptr es:[di], dx 0x12b06: dec dx 0x12b07: popaw 0x12b08: outsb dx, byte ptr gs:[si] 0x12b0c: and byte ptr [bx + 0x66], ch 0x12b0f: and byte ptr [si + 0x68], dh 0x12b12: and byte ptr gs:[bp + di + 0x6f], al 0x12b16: bound si, dword ptr gs:[bp + si + 0x65] 0x12b1b: popaw 0x12b1c: imul sp, word ptr [di + 0x72], 0x73 |