.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:10:44.271325459Z | 78 | PC: 12a70 | Find first file |
| 2018-12-17T23:10:44.278611377Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T23:10:44.282353163Z | 61 | PC: 12a54 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:10:44.290118353Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T23:10:44.297889679Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T23:10:44.315702277Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T23:10:44.318843472Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T23:10:44.321929234Z | 61 | PC: 12a54 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:10:44.331433449Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T23:10:44.33992144Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T23:10:44.351966452Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T23:10:44.356188131Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T23:10:44.359460049Z | 61 | PC: 12a54 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:10:44.367363023Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T23:10:44.376108311Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T23:10:44.38658096Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T23:10:44.389943347Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T23:10:44.392831161Z | 61 | PC: 12a54 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:10:44.401250251Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T23:10:44.409787405Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T23:10:44.419261857Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T23:10:44.423628562Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T23:10:44.426124975Z | 61 | PC: 12a54 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:10:44.433638776Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T23:10:44.442714197Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T23:10:44.451605959Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T23:10:44.454434918Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T23:10:44.457268404Z | 61 | PC: 12a54 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:10:44.465628262Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T23:10:44.473648091Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T23:10:44.680249222Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T23:10:44.684661741Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T23:10:44.689282249Z | 61 | PC: 12a54 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:10:44.69751272Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T23:10:44.705908574Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T23:10:44.801652798Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T23:10:44.804765191Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T23:10:44.808683815Z | 61 | PC: 12a54 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T23:10:44.816230361Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T23:10:44.819152539Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T23:10:44.828883577Z | 79 | PC: 12a7f | Find next file |