.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:10:18.251192444Z | 26 | PC: 12e54 | Set disk transfer address |
| 2018-12-17T23:10:18.253914967Z | 37 | PC: 12e62 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T23:10:18.255135231Z | 37 | PC: 12e66 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T23:10:18.256445168Z | 78 | PC: 12eb4 | Find first file |
| 2018-12-17T23:10:18.263795883Z | 61 | PC: 12f50 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:10:18.274840374Z | 63 | PC: 12f5f | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:18.283916577Z | 66 | PC: 12f6f | Move file pointer |
| 2018-12-17T23:10:18.285706898Z | 66 | PC: 12f7f | Move file pointer |
| 2018-12-17T23:10:18.287954762Z | 64 | PC: 12f8b | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:18.290591682Z | 66 | PC: 12f98 | Move file pointer |
| 2018-12-17T23:10:18.291793019Z | 44 | PC: 12f9c | Get time 0x12f9c: mov byte ptr ds:[bp + 0x29e], dl 0x12fa1: call 0x12fb7 0x12fa4: mov ah, 0x40 0x12fa6: mov cx, 0x19e 0x12fa9: lea dx, word ptr [bp + 0x106] 0x12fad: int 0x21 0x12faf: call 0x12fb7 0x12fb2: mov ah, 0x3e 0x12fb4: int 0x21 0x12fb6: ret 0x12fb7: lea si, word ptr [bp + 0x11f] 0x12fbb: mov cx, 0x160 0x12fbe: xor byte ptr [si], 0x35 0x12fc1: inc si 0x12fc2: dec cx 0x12fc3: jne 0x12fbe 0x12fc5: ret 0x12fc6: add word ptr [bx], di 0x12fc8: aas 0x12fc9: aas |
| 2018-12-17T23:10:18.295081204Z | 64 | PC: 12faf | Write file or device (Write 414 bytes on handle 5) |
| 2018-12-17T23:10:18.309751947Z | 62 | PC: 12fb6 | Close file |
| 2018-12-17T23:10:18.31766382Z | 79 | PC: 12eb4 | Find next file |
| 2018-12-17T23:10:18.32122574Z | 61 | PC: 12f50 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:10:18.327558007Z | 63 | PC: 12f5f | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:18.333553614Z | 66 | PC: 12f6f | Move file pointer |
| 2018-12-17T23:10:18.335226206Z | 66 | PC: 12f7f | Move file pointer |
| 2018-12-17T23:10:18.33639924Z | 64 | PC: 12f8b | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:18.3386758Z | 66 | PC: 12f98 | Move file pointer |
| 2018-12-17T23:10:18.34060245Z | 44 | PC: 12f9c | Get time 0x12f9c: mov byte ptr ds:[bp + 0x29e], dl 0x12fa1: call 0x12fb7 0x12fa4: mov ah, 0x40 0x12fa6: mov cx, 0x19e 0x12fa9: lea dx, word ptr [bp + 0x106] 0x12fad: int 0x21 0x12faf: call 0x12fb7 0x12fb2: mov ah, 0x3e 0x12fb4: int 0x21 0x12fb6: ret 0x12fb7: lea si, word ptr [bp + 0x11f] 0x12fbb: mov cx, 0x160 0x12fbe: xor byte ptr [si], 0x3f 0x12fc1: inc si 0x12fc2: dec cx 0x12fc3: jne 0x12fbe 0x12fc5: ret 0x12fc6: add word ptr [bx], di 0x12fc8: aas 0x12fc9: aas |
| 2018-12-17T23:10:18.342774042Z | 64 | PC: 12faf | Write file or device (Write 414 bytes on handle 5) |
| 2018-12-17T23:10:18.3458995Z | 62 | PC: 12fb6 | Close file |
| 2018-12-17T23:10:18.353814288Z | 79 | PC: 12eb4 | Find next file |
| 2018-12-17T23:10:18.356027287Z | 61 | PC: 12f50 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:10:18.35999527Z | 63 | PC: 12f5f | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:18.366917465Z | 66 | PC: 12f6f | Move file pointer |
| 2018-12-17T23:10:18.368213152Z | 66 | PC: 12f7f | Move file pointer |
| 2018-12-17T23:10:18.369448098Z | 64 | PC: 12f8b | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:18.372070184Z | 66 | PC: 12f98 | Move file pointer |
| 2018-12-17T23:10:18.374067293Z | 44 | PC: 12f9c | Get time 0x12f9c: mov byte ptr ds:[bp + 0x29e], dl 0x12fa1: call 0x12fb7 0x12fa4: mov ah, 0x40 0x12fa6: mov cx, 0x19e 0x12fa9: lea dx, word ptr [bp + 0x106] 0x12fad: int 0x21 0x12faf: call 0x12fb7 0x12fb2: mov ah, 0x3e 0x12fb4: int 0x21 0x12fb6: ret 0x12fb7: lea si, word ptr [bp + 0x11f] 0x12fbb: mov cx, 0x160 0x12fbe: xor byte ptr [si], 0x3f 0x12fc1: inc si 0x12fc2: dec cx 0x12fc3: jne 0x12fbe 0x12fc5: ret 0x12fc6: add word ptr [bx], di 0x12fc8: aas 0x12fc9: aas |
| 2018-12-17T23:10:18.376309177Z | 64 | PC: 12faf | Write file or device (Write 414 bytes on handle 5) |
| 2018-12-17T23:10:18.378968624Z | 62 | PC: 12fb6 | Close file |
| 2018-12-17T23:10:18.386812639Z | 79 | PC: 12eb4 | Find next file |
| 2018-12-17T23:10:18.389294563Z | 61 | PC: 12f50 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:10:18.395548063Z | 63 | PC: 12f5f | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:18.402465906Z | 66 | PC: 12f6f | Move file pointer |
| 2018-12-17T23:10:18.40378826Z | 66 | PC: 12f7f | Move file pointer |
| 2018-12-17T23:10:18.405045315Z | 64 | PC: 12f8b | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:18.408965202Z | 66 | PC: 12f98 | Move file pointer |
| 2018-12-17T23:10:18.410440545Z | 44 | PC: 12f9c | Get time 0x12f9c: mov byte ptr ds:[bp + 0x29e], dl 0x12fa1: call 0x12fb7 0x12fa4: mov ah, 0x40 0x12fa6: mov cx, 0x19e 0x12fa9: lea dx, word ptr [bp + 0x106] 0x12fad: int 0x21 0x12faf: call 0x12fb7 0x12fb2: mov ah, 0x3e 0x12fb4: int 0x21 0x12fb6: ret 0x12fb7: lea si, word ptr [bp + 0x11f] 0x12fbb: mov cx, 0x160 0x12fbe: xor byte ptr [si], 0x45 0x12fc1: inc si 0x12fc2: dec cx 0x12fc3: jne 0x12fbe 0x12fc5: ret 0x12fc6: add word ptr [bx], di 0x12fc8: aas 0x12fc9: aas |
| 2018-12-17T23:10:18.412699031Z | 64 | PC: 12faf | Write file or device (Write 414 bytes on handle 5) |
| 2018-12-17T23:10:18.433733548Z | 62 | PC: 12fb6 | Close file |
| 2018-12-17T23:10:18.441979267Z | 79 | PC: 12eb4 | Find next file |
| 2018-12-17T23:10:18.44479513Z | 61 | PC: 12f50 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:10:18.452537655Z | 63 | PC: 12f5f | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:10:18.458810641Z | 66 | PC: 12f6f | Move file pointer |
| 2018-12-17T23:10:18.460564663Z | 66 | PC: 12f7f | Move file pointer |
| 2018-12-17T23:10:18.473054761Z | 64 | PC: 12f8b | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:10:18.476653047Z | 66 | PC: 12f98 | Move file pointer |
| 2018-12-17T23:10:18.478360614Z | 44 | PC: 12f9c | Get time 0x12f9c: mov byte ptr ds:[bp + 0x29e], dl 0x12fa1: call 0x12fb7 0x12fa4: mov ah, 0x40 0x12fa6: mov cx, 0x19e 0x12fa9: lea dx, word ptr [bp + 0x106] 0x12fad: int 0x21 0x12faf: call 0x12fb7 0x12fb2: mov ah, 0x3e 0x12fb4: int 0x21 0x12fb6: ret 0x12fb7: lea si, word ptr [bp + 0x11f] 0x12fbb: mov cx, 0x160 0x12fbe: xor byte ptr [si], 0x45 0x12fc1: inc si 0x12fc2: dec cx 0x12fc3: jne 0x12fbe 0x12fc5: ret 0x12fc6: add word ptr [bx], di 0x12fc8: aas 0x12fc9: aas |
| 2018-12-17T23:10:18.482092249Z | 64 | PC: 12faf | Write file or device (Write 414 bytes on handle 5) |
| 2018-12-17T23:10:18.485119856Z | 62 | PC: 12fb6 | Close file |
| 2018-12-17T23:10:18.49276136Z | 26 | PC: 12ece | Set disk transfer address |