.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:08:34.728249733Z | 42 | PC: 13b02 | Get date 0x13b02: cmp dh, 4 0x13b05: jne 0x13b34 0x13b07: mov al, byte ptr [0x183] 0x13b0a: call 0x13b1a 0x13b0d: cmp byte ptr [0x183], 0x19 0x13b12: je 0x13b29 0x13b14: inc byte ptr [0x183] 0x13b18: loop 0x13b07 0x13b1a: mov ah, 5 0x13b1c: mov ch, byte ptr [0x188] 0x13b20: mov dh, 0 0x13b22: mov dl, byte ptr [0x183] 0x13b26: int 0x13 0x13b28: ret 0x13b29: mov byte ptr [0x183], 2 0x13b2e: inc byte ptr [0x188] 0x13b32: jmp 0x13b07 0x13b34: mov ah, 0x47 0x13b36: xor dl, dl 0x13b38: add si, 0xa |
| 2018-12-17T23:08:34.730640002Z | 71 | PC: 13b3e | Get current directory |
| 2018-12-17T23:08:34.733363537Z | 59 | PC: 13b4a | Change current directory |
| 2018-12-17T23:08:34.737228632Z | 26 | PC: 13bea | Set disk transfer address |
| 2018-12-17T23:08:34.738535196Z | 78 | PC: 13bf8 | Find first file |
| 2018-12-17T23:08:34.744957169Z | 61 | PC: 13c1f | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:08:34.751794431Z | 63 | PC: 13c32 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:08:34.759081176Z | 44 | PC: 13c60 | Get time 0x13c60: add dl, dh 0x13c62: je 0x13c5c 0x13c64: mov si, 0x115 0x13c67: add si, word ptr [0x106] 0x13c6b: mov byte ptr [si], dl 0x13c6d: mov ax, 0x4301 0x13c70: xor cx, cx 0x13c72: mov dx, si 0x13c74: add dx, 0x94 0x13c78: int 0x21 0x13c7a: mov ah, 0x3e 0x13c7c: int 0x21 0x13c7e: mov ax, 0x3d02 0x13c81: int 0x21 0x13c83: jb 0x13c41 0x13c85: mov di, dx 0x13c87: add di, 0x83 0x13c8b: stosw word ptr es:[di], ax 0x13c8c: xchg ax, bx 0x13c8d: mov ah, 0x40 |
| 2018-12-17T23:08:34.762161317Z | 67 | PC: 13c7a | Get or set file attributes |
| 2018-12-17T23:08:34.782652139Z | 62 | PC: 13c7e | Close file |
| 2018-12-17T23:08:34.784741477Z | 61 | PC: 13c83 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:08:34.797373577Z | 64 | PC: 13c98 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:08:34.807022404Z | 64 | PC: 13cab | Write file or device (Write 2 bytes on handle 5) |
| 2018-12-17T23:08:34.810068797Z | 64 | PC: 13cc0 | Write file or device (Write 2 bytes on handle 5) |
| 2018-12-17T23:08:34.814694069Z | 66 | PC: 13cc9 | Move file pointer |
| 2018-12-17T23:08:34.816957375Z | 64 | PC: 13a85 | Write file or device (Write 899 bytes on handle 5) |
| 2018-12-17T23:08:34.826084112Z | 87 | PC: 13ce3 | Get or set file date and time |
| 2018-12-17T23:08:34.828650777Z | 62 | PC: 13ce7 | Close file |
| 2018-12-17T23:08:34.836471736Z | 67 | PC: 13cfa | Get or set file attributes |
| 2018-12-17T23:08:34.846154426Z | 79 | PC: 13c0c | Find next file |
| 2018-12-17T23:08:34.849112831Z | 61 | PC: 13c1f | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:08:34.855746017Z | 63 | PC: 13c32 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:08:34.862047118Z | 62 | PC: 13c45 | Close file |
| 2018-12-17T23:08:34.867223079Z | 79 | PC: 13c0c | Find next file |
| 2018-12-17T23:08:34.869022235Z | 61 | PC: 13c1f | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:08:34.873580068Z | 63 | PC: 13c32 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:08:34.878006594Z | 62 | PC: 13c45 | Close file |
| 2018-12-17T23:08:34.879372787Z | 79 | PC: 13c0c | Find next file |
| 2018-12-17T23:08:34.881277644Z | 61 | PC: 13c1f | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:08:34.885910376Z | 63 | PC: 13c32 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:08:34.890239798Z | 62 | PC: 13c45 | Close file |
| 2018-12-17T23:08:34.892058347Z | 79 | PC: 13c0c | Find next file |
| 2018-12-17T23:08:34.894899495Z | 61 | PC: 13c1f | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:08:34.902041132Z | 63 | PC: 13c32 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:08:34.906318583Z | 62 | PC: 13c45 | Close file |
| 2018-12-17T23:08:34.913976515Z | 79 | PC: 13c0c | Find next file |
| 2018-12-17T23:08:34.915983957Z | 61 | PC: 13c1f | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:08:34.920058963Z | 63 | PC: 13c32 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:08:34.924727656Z | 44 | PC: 13c60 | Get time 0x13c60: add dl, dh 0x13c62: je 0x13c5c 0x13c64: mov si, 0x115 0x13c67: add si, word ptr [0x106] 0x13c6b: mov byte ptr [si], dl 0x13c6d: mov ax, 0x4301 0x13c70: xor cx, cx 0x13c72: mov dx, si 0x13c74: add dx, 0x94 0x13c78: int 0x21 0x13c7a: mov ah, 0x3e 0x13c7c: int 0x21 0x13c7e: mov ax, 0x3d02 0x13c81: int 0x21 0x13c83: jb 0x13c41 0x13c85: mov di, dx 0x13c87: add di, 0x83 0x13c8b: stosw word ptr es:[di], ax 0x13c8c: xchg ax, bx 0x13c8d: mov ah, 0x40 |
| 2018-12-17T23:08:34.926636541Z | 67 | PC: 13c7a | Get or set file attributes |
| 2018-12-17T23:08:34.935734196Z | 62 | PC: 13c7e | Close file |
| 2018-12-17T23:08:34.938350749Z | 61 | PC: 13c83 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:08:34.945307475Z | 64 | PC: 13c98 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:08:34.952036126Z | 64 | PC: 13cab | Write file or device (Write 2 bytes on handle 5) |
| 2018-12-17T23:08:34.954922058Z | 64 | PC: 13cc0 | Write file or device (Write 2 bytes on handle 5) |
| 2018-12-17T23:08:34.957598135Z | 66 | PC: 13cc9 | Move file pointer |
| 2018-12-17T23:08:34.959364088Z | 64 | PC: 13a85 | Write file or device (Write 899 bytes on handle 5) |
| 2018-12-17T23:08:34.969618732Z | 87 | PC: 13ce3 | Get or set file date and time |
| 2018-12-17T23:08:34.97140047Z | 62 | PC: 13ce7 | Close file |
| 2018-12-17T23:08:35.185471398Z | 67 | PC: 13cfa | Get or set file attributes |
| 2018-12-17T23:08:35.304657053Z | 79 | PC: 13c0c | Find next file |
| 2018-12-17T23:08:35.307586164Z | 61 | PC: 13c1f | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:08:35.314059382Z | 63 | PC: 13c32 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:08:35.320379922Z | 62 | PC: 13c45 | Close file |
| 2018-12-17T23:08:35.322998278Z | 79 | PC: 13c0c | Find next file |
| 2018-12-17T23:08:35.325623058Z | 61 | PC: 13c1f | Open file (Filename = 'TEST.COM') |
| 2018-12-17T23:08:35.332802094Z | 63 | PC: 13c32 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:08:35.341076489Z | 62 | PC: 13c45 | Close file |
| 2018-12-17T23:08:35.34357345Z | 79 | PC: 13c0c | Find next file |
| 2018-12-17T23:08:35.346588405Z | 26 | PC: 13b77 | Set disk transfer address |
| 2018-12-17T23:08:35.349306552Z | 78 | PC: 13b85 | Find first file |
| 2018-12-17T23:08:35.355654871Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.362276065Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.364219045Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.366862699Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.373496147Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.375950332Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.379273868Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.385321232Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.387748929Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.39049807Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.401699679Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.403444309Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.405941498Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.411443507Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.413044678Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.415395359Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.43269271Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.434117782Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.436463721Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.441952513Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.443787449Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.446160127Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.45173739Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.453954857Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.456431391Z | 59 | PC: 13b94 | Change current directory |
| 2018-12-17T23:08:35.476366967Z | 26 | PC: 13ba9 | Set disk transfer address |
| 2018-12-17T23:08:35.478428951Z | 79 | PC: 13bad | Find next file |
| 2018-12-17T23:08:35.481038827Z | 59 | PC: 13bc8 | Change current directory |
| 2018-12-17T23:08:35.485332077Z | 42 | PC: 13b53 | Get date 0x13b53: cmp al, 2 0x13b55: je 0x13b5a 0x13b57: jmp 0x13d6d 0x13b5a: jmp 0x13d00 0x13b5d: and byte ptr [bp + si], bl 0x13b5f: lea cx, word ptr [bx + si + 0x1d4d] 0x13b63: add byte ptr [di], al 0x13b65: add byte ptr [di - 0x75], dl 0x13b68: in al, dx 0x13b69: sub sp, 0x2c 0x13b6c: push si 0x13b6d: jmp 0x13bdf 0x13b6f: nop 0x13b70: mov ah, 0x1a 0x13b72: lea dx, word ptr [bp - 0x2c] 0x13b75: int 0x21 0x13b77: mov ah, 0x4e 0x13b79: mov cx, 0x10 0x13b7c: mov dx, 0x17c 0x13b7f: add dx, word ptr [0x106] |
| 2018-12-17T23:08:35.489307367Z | 59 | PC: 13d78 | Change current directory |
| 2018-12-17T23:08:35.493461193Z | 59 | PC: 13d80 | Change current directory |
| 2018-12-17T23:08:35.495356385Z | 76 | PC: 12a48 | Terminate with return code (Return code = '0') |