.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:10:08.402998374Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T23:10:08.406407466Z | 37 | PC: 12a80 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T23:10:08.40738342Z | 37 | PC: 12a84 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T23:10:08.408433536Z | 78 | PC: 12acf | Find first file |
| 2018-12-17T23:10:08.414619959Z | 61 | PC: 12c2d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:10:08.421301478Z | 63 | PC: 12c3c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:08.42766946Z | 66 | PC: 12c4b | Move file pointer |
| 2018-12-17T23:10:08.429723648Z | 66 | PC: 12c5a | Move file pointer |
| 2018-12-17T23:10:08.431660737Z | 64 | PC: 12c66 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:08.434589175Z | 66 | PC: 12c72 | Move file pointer |
| 2018-12-17T23:10:08.436321004Z | 44 | PC: 12c76 | Get time 0x12c76: mov byte ptr [bp + 0x259], dl 0x12c7a: call 0x12c90 0x12c7d: mov ah, 0x40 0x12c7f: mov cx, 0x259 0x12c82: lea dx, word ptr [bp + 6] 0x12c86: int 0x21 0x12c88: call 0x12c90 0x12c8b: mov ah, 0x3e 0x12c8d: int 0x21 0x12c8f: ret 0x12c90: lea si, word ptr [bp + 0x1f] 0x12c94: mov cx, 0x21b 0x12c97: xor byte ptr [si], 0 0x12c9a: inc si 0x12c9b: dec cx 0x12c9c: jne 0x12c97 0x12c9e: ret 0x12c9f: add word ptr [bx], di 0x12ca1: aas 0x12ca2: aas |
| 2018-12-17T23:10:08.439907273Z | 64 | PC: 12c88 | Write file or device (Write 601 bytes on handle 5) |
| 2018-12-17T23:10:08.454701244Z | 62 | PC: 12c8f | Close file |
| 2018-12-17T23:10:08.463400237Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:10:08.466432105Z | 61 | PC: 12c2d | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:10:08.47292498Z | 63 | PC: 12c3c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:08.479470779Z | 66 | PC: 12c4b | Move file pointer |
| 2018-12-17T23:10:08.48182045Z | 66 | PC: 12c5a | Move file pointer |
| 2018-12-17T23:10:08.483172003Z | 64 | PC: 12c66 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:08.485758123Z | 66 | PC: 12c72 | Move file pointer |
| 2018-12-17T23:10:08.488131332Z | 44 | PC: 12c76 | Get time 0x12c76: mov byte ptr [bp + 0x259], dl 0x12c7a: call 0x12c90 0x12c7d: mov ah, 0x40 0x12c7f: mov cx, 0x259 0x12c82: lea dx, word ptr [bp + 6] 0x12c86: int 0x21 0x12c88: call 0x12c90 0x12c8b: mov ah, 0x3e 0x12c8d: int 0x21 0x12c8f: ret 0x12c90: lea si, word ptr [bp + 0x1f] 0x12c94: mov cx, 0x21b 0x12c97: xor byte ptr [si], 0x3a 0x12c9a: inc si 0x12c9b: dec cx 0x12c9c: jne 0x12c97 0x12c9e: ret 0x12c9f: add word ptr [bx], di 0x12ca1: aas 0x12ca2: aas |
| 2018-12-17T23:10:08.490851172Z | 64 | PC: 12c88 | Write file or device (Write 601 bytes on handle 5) |
| 2018-12-17T23:10:08.505129878Z | 62 | PC: 12c8f | Close file |
| 2018-12-17T23:10:08.513996726Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:10:08.516755256Z | 61 | PC: 12c2d | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:10:08.523944433Z | 63 | PC: 12c3c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:08.531326902Z | 66 | PC: 12c4b | Move file pointer |
| 2018-12-17T23:10:08.535835075Z | 66 | PC: 12c5a | Move file pointer |
| 2018-12-17T23:10:08.537667352Z | 64 | PC: 12c66 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:08.541774493Z | 66 | PC: 12c72 | Move file pointer |
| 2018-12-17T23:10:08.543305285Z | 44 | PC: 12c76 | Get time 0x12c76: mov byte ptr [bp + 0x259], dl 0x12c7a: call 0x12c90 0x12c7d: mov ah, 0x40 0x12c7f: mov cx, 0x259 0x12c82: lea dx, word ptr [bp + 6] 0x12c86: int 0x21 0x12c88: call 0x12c90 0x12c8b: mov ah, 0x3e 0x12c8d: int 0x21 0x12c8f: ret 0x12c90: lea si, word ptr [bp + 0x1f] 0x12c94: mov cx, 0x21b 0x12c97: xor byte ptr [si], 0x40 0x12c9a: inc si 0x12c9b: dec cx 0x12c9c: jne 0x12c97 0x12c9e: ret 0x12c9f: add word ptr [bx], di 0x12ca1: aas 0x12ca2: aas |
| 2018-12-17T23:10:08.545848915Z | 64 | PC: 12c88 | Write file or device (Write 601 bytes on handle 5) |
| 2018-12-17T23:10:08.554197482Z | 62 | PC: 12c8f | Close file |
| 2018-12-17T23:10:08.563194724Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:10:08.565914067Z | 61 | PC: 12c2d | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:10:08.572319835Z | 63 | PC: 12c3c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:08.579411855Z | 66 | PC: 12c4b | Move file pointer |
| 2018-12-17T23:10:08.581068663Z | 66 | PC: 12c5a | Move file pointer |
| 2018-12-17T23:10:08.582713015Z | 64 | PC: 12c66 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:08.586159022Z | 66 | PC: 12c72 | Move file pointer |
| 2018-12-17T23:10:08.587790236Z | 44 | PC: 12c76 | Get time 0x12c76: mov byte ptr [bp + 0x259], dl 0x12c7a: call 0x12c90 0x12c7d: mov ah, 0x40 0x12c7f: mov cx, 0x259 0x12c82: lea dx, word ptr [bp + 6] 0x12c86: int 0x21 0x12c88: call 0x12c90 0x12c8b: mov ah, 0x3e 0x12c8d: int 0x21 0x12c8f: ret 0x12c90: lea si, word ptr [bp + 0x1f] 0x12c94: mov cx, 0x21b 0x12c97: xor byte ptr [si], 0x45 0x12c9a: inc si 0x12c9b: dec cx 0x12c9c: jne 0x12c97 0x12c9e: ret 0x12c9f: add word ptr [bx], di 0x12ca1: aas 0x12ca2: aas |
| 2018-12-17T23:10:08.590328213Z | 64 | PC: 12c88 | Write file or device (Write 601 bytes on handle 5) |
| 2018-12-17T23:10:08.599468377Z | 62 | PC: 12c8f | Close file |
| 2018-12-17T23:10:08.607344346Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:10:08.609818048Z | 61 | PC: 12c2d | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:10:08.616425241Z | 63 | PC: 12c3c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:08.622465875Z | 66 | PC: 12c4b | Move file pointer |
| 2018-12-17T23:10:08.623792503Z | 66 | PC: 12c5a | Move file pointer |
| 2018-12-17T23:10:08.625989957Z | 64 | PC: 12c66 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:08.628396326Z | 66 | PC: 12c72 | Move file pointer |
| 2018-12-17T23:10:08.629552869Z | 44 | PC: 12c76 | Get time 0x12c76: mov byte ptr [bp + 0x259], dl 0x12c7a: call 0x12c90 0x12c7d: mov ah, 0x40 0x12c7f: mov cx, 0x259 0x12c82: lea dx, word ptr [bp + 6] 0x12c86: int 0x21 0x12c88: call 0x12c90 0x12c8b: mov ah, 0x3e 0x12c8d: int 0x21 0x12c8f: ret 0x12c90: lea si, word ptr [bp + 0x1f] 0x12c94: mov cx, 0x21b 0x12c97: xor byte ptr [si], 0x45 0x12c9a: inc si 0x12c9b: dec cx 0x12c9c: jne 0x12c97 0x12c9e: ret 0x12c9f: add word ptr [bx], di 0x12ca1: aas 0x12ca2: aas |
| 2018-12-17T23:10:08.632806568Z | 64 | PC: 12c88 | Write file or device (Write 601 bytes on handle 5) |
| 2018-12-17T23:10:08.640821402Z | 62 | PC: 12c8f | Close file |
| 2018-12-17T23:10:08.648987289Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:10:08.652465643Z | 61 | PC: 12c2d | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:10:08.658931331Z | 63 | PC: 12c3c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:08.665538647Z | 66 | PC: 12c4b | Move file pointer |
| 2018-12-17T23:10:08.667412496Z | 66 | PC: 12c5a | Move file pointer |
| 2018-12-17T23:10:08.668701183Z | 64 | PC: 12c66 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:08.67119657Z | 66 | PC: 12c72 | Move file pointer |
| 2018-12-17T23:10:08.672907718Z | 44 | PC: 12c76 | Get time 0x12c76: mov byte ptr [bp + 0x259], dl 0x12c7a: call 0x12c90 0x12c7d: mov ah, 0x40 0x12c7f: mov cx, 0x259 0x12c82: lea dx, word ptr [bp + 6] 0x12c86: int 0x21 0x12c88: call 0x12c90 0x12c8b: mov ah, 0x3e 0x12c8d: int 0x21 0x12c8f: ret 0x12c90: lea si, word ptr [bp + 0x1f] 0x12c94: mov cx, 0x21b 0x12c97: xor byte ptr [si], 0x4b 0x12c9a: inc si 0x12c9b: dec cx 0x12c9c: jne 0x12c97 0x12c9e: ret 0x12c9f: add word ptr [bx], di 0x12ca1: aas 0x12ca2: aas |
| 2018-12-17T23:10:08.675212487Z | 64 | PC: 12c88 | Write file or device (Write 601 bytes on handle 5) |
| 2018-12-17T23:10:08.68387409Z | 62 | PC: 12c8f | Close file |
| 2018-12-17T23:10:08.692340816Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T23:10:08.694874555Z | 61 | PC: 12c2d | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:10:08.701233527Z | 63 | PC: 12c3c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:08.708620257Z | 66 | PC: 12c4b | Move file pointer |
| 2018-12-17T23:10:08.710259066Z | 66 | PC: 12c5a | Move file pointer |
| 2018-12-17T23:10:08.711809857Z | 64 | PC: 12c66 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:08.715101781Z | 66 | PC: 12c72 | Move file pointer |
| 2018-12-17T23:10:08.71685848Z | 44 | PC: 12c76 | Get time 0x12c76: mov byte ptr [bp + 0x259], dl 0x12c7a: call 0x12c90 0x12c7d: mov ah, 0x40 0x12c7f: mov cx, 0x259 0x12c82: lea dx, word ptr [bp + 6] 0x12c86: int 0x21 0x12c88: call 0x12c90 0x12c8b: mov ah, 0x3e 0x12c8d: int 0x21 0x12c8f: ret 0x12c90: lea si, word ptr [bp + 0x1f] 0x12c94: mov cx, 0x21b 0x12c97: xor byte ptr [si], 0x50 0x12c9a: inc si 0x12c9b: dec cx 0x12c9c: jne 0x12c97 0x12c9e: ret 0x12c9f: add word ptr [bx], di 0x12ca1: aas 0x12ca2: aas |
| 2018-12-17T23:10:08.719315507Z | 64 | PC: 12c88 | Write file or device (Write 601 bytes on handle 5) |
| 2018-12-17T23:10:08.728894983Z | 62 | PC: 12c8f | Close file |
| 2018-12-17T23:10:08.737740565Z | 26 | PC: 12ae9 | Set disk transfer address |
| 2018-12-17T23:10:08.738995512Z | 19 | PC: 12afb | Delete file |
| 2018-12-17T23:10:08.746207638Z | 9 | PC: 12b2d | Display string (String= 'Seize the Day! While I seize your files!!!! ') |