.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:09:15.694804897Z | 26 | PC: 12a93 | Set disk transfer address |
| 2018-12-17T23:09:15.696830781Z | 53 | PC: 12a98 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:09:15.699249323Z | 37 | PC: 12aa9 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:09:15.70115604Z | 78 | PC: 12d6d | Find first file |
| 2018-12-17T23:09:15.708302439Z | 78 | PC: 12d6d | Find first file |
| 2018-12-17T23:09:15.712416454Z | 61 | PC: 12ef0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:09:15.718826715Z | 63 | PC: 12d80 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T23:09:15.726228642Z | 62 | PC: 12d85 | Close file |
| 2018-12-17T23:09:15.7283728Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:15.744465428Z | 61 | PC: 12ef0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:09:15.748647186Z | 64 | PC: 12e6f | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:09:15.751023205Z | 66 | PC: 12e77 | Move file pointer |
| 2018-12-17T23:09:15.752029489Z | 44 | PC: 12e7b | Get time 0x12e7b: mov word ptr [bp + 0x10d], dx 0x12e7f: lea di, word ptr [bp + 0x5dd] 0x12e83: mov ax, 0x5355 0x12e86: stosw word ptr es:[di], ax 0x12e87: lea si, word ptr [bp + 0x103] 0x12e8b: mov cx, 0x12 0x12e8e: push si 0x12e8f: push cx 0x12e90: rep movsb byte ptr es:[di], byte ptr [si] 0x12e92: xor byte ptr [bp + 0x10c], 0x28 0x12e97: lea si, word ptr [bp + 0x5bc] 0x12e9b: mov cx, 0x11 0x12e9e: rep movsb byte ptr es:[di], byte ptr [si] 0x12ea0: pop cx 0x12ea1: pop si 0x12ea2: pop dx 0x12ea3: int3 0x12ea4: push di 0x12ea5: push si 0x12ea6: push cx |
| 2018-12-17T23:09:15.753938921Z | 64 | PC: 12f40 | Write file or device (Write 1242 bytes on handle 5) |
| 2018-12-17T23:09:15.76042659Z | 87 | PC: 12ecd | Get or set file date and time |
| 2018-12-17T23:09:15.761865339Z | 62 | PC: 12ed2 | Close file |
| 2018-12-17T23:09:15.769690192Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:15.781331763Z | 79 | PC: 12d6d | Find next file |
| 2018-12-17T23:09:15.784047962Z | 61 | PC: 12ef0 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:09:15.790685117Z | 63 | PC: 12d80 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T23:09:15.797658659Z | 62 | PC: 12d85 | Close file |
| 2018-12-17T23:09:15.800094527Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:15.810012571Z | 61 | PC: 12ef0 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:09:15.816697169Z | 64 | PC: 12e6f | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:09:15.819727826Z | 66 | PC: 12e77 | Move file pointer |
| 2018-12-17T23:09:15.820975559Z | 44 | PC: 12e7b | Get time 0x12e7b: mov word ptr [bp + 0x10d], dx 0x12e7f: lea di, word ptr [bp + 0x5dd] 0x12e83: mov ax, 0x5355 0x12e86: stosw word ptr es:[di], ax 0x12e87: lea si, word ptr [bp + 0x103] 0x12e8b: mov cx, 0x12 0x12e8e: push si 0x12e8f: push cx 0x12e90: rep movsb byte ptr es:[di], byte ptr [si] 0x12e92: xor byte ptr [bp + 0x10c], 0x28 0x12e97: lea si, word ptr [bp + 0x5bc] 0x12e9b: mov cx, 0x11 0x12e9e: rep movsb byte ptr es:[di], byte ptr [si] 0x12ea0: pop cx 0x12ea1: pop si 0x12ea2: pop dx 0x12ea3: int3 0x12ea4: push di 0x12ea5: push si 0x12ea6: push cx |
| 2018-12-17T23:09:15.823726116Z | 64 | PC: 12f40 | Write file or device (Write 1242 bytes on handle 5) |
| 2018-12-17T23:09:15.833059637Z | 87 | PC: 12ecd | Get or set file date and time |
| 2018-12-17T23:09:15.834575025Z | 62 | PC: 12ed2 | Close file |
| 2018-12-17T23:09:15.842105249Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:15.852435767Z | 79 | PC: 12d6d | Find next file |
| 2018-12-17T23:09:15.855057061Z | 61 | PC: 12ef0 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:09:15.861543152Z | 63 | PC: 12d80 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T23:09:15.868349815Z | 62 | PC: 12d85 | Close file |
| 2018-12-17T23:09:15.870180956Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:15.879869221Z | 61 | PC: 12ef0 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:09:15.887259893Z | 64 | PC: 12e6f | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:09:15.88997085Z | 66 | PC: 12e77 | Move file pointer |
| 2018-12-17T23:09:15.891400682Z | 44 | PC: 12e7b | Get time 0x12e7b: mov word ptr [bp + 0x10d], dx 0x12e7f: lea di, word ptr [bp + 0x5dd] 0x12e83: mov ax, 0x5355 0x12e86: stosw word ptr es:[di], ax 0x12e87: lea si, word ptr [bp + 0x103] 0x12e8b: mov cx, 0x12 0x12e8e: push si 0x12e8f: push cx 0x12e90: rep movsb byte ptr es:[di], byte ptr [si] 0x12e92: xor byte ptr [bp + 0x10c], 0x28 0x12e97: lea si, word ptr [bp + 0x5bc] 0x12e9b: mov cx, 0x11 0x12e9e: rep movsb byte ptr es:[di], byte ptr [si] 0x12ea0: pop cx 0x12ea1: pop si 0x12ea2: pop dx 0x12ea3: int3 0x12ea4: push di 0x12ea5: push si 0x12ea6: push cx |
| 2018-12-17T23:09:15.895610361Z | 64 | PC: 12f40 | Write file or device (Write 1242 bytes on handle 5) |
| 2018-12-17T23:09:15.904551293Z | 87 | PC: 12ecd | Get or set file date and time |
| 2018-12-17T23:09:15.905945425Z | 62 | PC: 12ed2 | Close file |
| 2018-12-17T23:09:15.914252305Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:15.923873768Z | 79 | PC: 12d6d | Find next file |
| 2018-12-17T23:09:15.926453478Z | 61 | PC: 12ef0 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:09:15.932946926Z | 63 | PC: 12d80 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T23:09:15.940063924Z | 62 | PC: 12d85 | Close file |
| 2018-12-17T23:09:15.942052963Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:15.951957402Z | 61 | PC: 12ef0 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:09:15.958494519Z | 64 | PC: 12e6f | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:09:15.96106332Z | 66 | PC: 12e77 | Move file pointer |
| 2018-12-17T23:09:15.962321752Z | 44 | PC: 12e7b | Get time 0x12e7b: mov word ptr [bp + 0x10d], dx 0x12e7f: lea di, word ptr [bp + 0x5dd] 0x12e83: mov ax, 0x5355 0x12e86: stosw word ptr es:[di], ax 0x12e87: lea si, word ptr [bp + 0x103] 0x12e8b: mov cx, 0x12 0x12e8e: push si 0x12e8f: push cx 0x12e90: rep movsb byte ptr es:[di], byte ptr [si] 0x12e92: xor byte ptr [bp + 0x10c], 0x28 0x12e97: lea si, word ptr [bp + 0x5bc] 0x12e9b: mov cx, 0x11 0x12e9e: rep movsb byte ptr es:[di], byte ptr [si] 0x12ea0: pop cx 0x12ea1: pop si 0x12ea2: pop dx 0x12ea3: int3 0x12ea4: push di 0x12ea5: push si 0x12ea6: push cx |
| 2018-12-17T23:09:15.965466186Z | 64 | PC: 12f40 | Write file or device (Write 1242 bytes on handle 5) |
| 2018-12-17T23:09:15.974793069Z | 87 | PC: 12ecd | Get or set file date and time |
| 2018-12-17T23:09:15.976159567Z | 62 | PC: 12ed2 | Close file |
| 2018-12-17T23:09:15.984290068Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:15.994028064Z | 79 | PC: 12d6d | Find next file |
| 2018-12-17T23:09:15.99674718Z | 61 | PC: 12ef0 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:09:16.00411811Z | 63 | PC: 12d80 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T23:09:16.010954306Z | 62 | PC: 12d85 | Close file |
| 2018-12-17T23:09:16.013097925Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:16.023819211Z | 61 | PC: 12ef0 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:09:16.030342871Z | 64 | PC: 12e6f | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:09:16.033015123Z | 66 | PC: 12e77 | Move file pointer |
| 2018-12-17T23:09:16.035334567Z | 44 | PC: 12e7b | Get time 0x12e7b: mov word ptr [bp + 0x10d], dx 0x12e7f: lea di, word ptr [bp + 0x5dd] 0x12e83: mov ax, 0x5355 0x12e86: stosw word ptr es:[di], ax 0x12e87: lea si, word ptr [bp + 0x103] 0x12e8b: mov cx, 0x12 0x12e8e: push si 0x12e8f: push cx 0x12e90: rep movsb byte ptr es:[di], byte ptr [si] 0x12e92: xor byte ptr [bp + 0x10c], 0x28 0x12e97: lea si, word ptr [bp + 0x5bc] 0x12e9b: mov cx, 0x11 0x12e9e: rep movsb byte ptr es:[di], byte ptr [si] 0x12ea0: pop cx 0x12ea1: pop si 0x12ea2: pop dx 0x12ea3: int3 0x12ea4: push di 0x12ea5: push si 0x12ea6: push cx |
| 2018-12-17T23:09:16.038786067Z | 64 | PC: 12f40 | Write file or device (Write 1242 bytes on handle 5) |
| 2018-12-17T23:09:16.047896008Z | 87 | PC: 12ecd | Get or set file date and time |
| 2018-12-17T23:09:16.050142251Z | 62 | PC: 12ed2 | Close file |
| 2018-12-17T23:09:16.057749827Z | 67 | PC: 12efb | Get or set file attributes |
| 2018-12-17T23:09:16.067480601Z | 42 | PC: 12ac2 | Get date 0x12ac2: cmp dh, 3 0x12ac5: int3 0x12ac6: jne 0x12adf 0x12ac8: cmp dl, 3 0x12acb: jb 0x12adf 0x12acd: cmp cx, 0x77c 0x12ad1: int3 0x12ad2: jb 0x12adf 0x12ad4: mov ah, 0x2c 0x12ad6: int 0x21 0x12ad8: int3 0x12ad9: cmp dl, 0x32 0x12adc: int3 0x12add: jmp 0x12b2c 0x12adf: mov ax, 0x2524 0x12ae2: lds dx, ptr [bp + 0x613] 0x12ae6: int 0x21 0x12ae8: int3 0x12ae9: push cs 0x12aea: pop ds |
| 2018-12-17T23:09:16.075308083Z | 37 | PC: 12ae8 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:09:16.077256481Z | 26 | PC: 12afa | Set disk transfer address |