.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:11:01.105033026Z | 60 | PC: 12a67 | Create or truncate file |
| 2018-12-17T23:11:01.123819964Z | 44 | PC: 13090 | Get time 0x13090: in al, 0x40 0x13092: mov ah, al 0x13094: in al, 0x40 0x13096: xor ax, cx 0x13098: xor dx, ax 0x1309a: jmp 0x130b8 0x1309c: push dx 0x1309d: push cx 0x1309e: push bx 0x1309f: in al, 0x40 0x130a1: add ax, 0xc0d0 0x130a4: mov dx, 0xfc69 0x130a7: mov cx, 7 0x130aa: shl ax, 1 0x130ac: rcl dx, 1 0x130ae: mov bl, al 0x130b0: xor bl, dh 0x130b2: jns 0x130b6 0x130b4: inc al 0x130b6: loop 0x130aa |
| 2018-12-17T23:11:01.130098854Z | 44 | PC: 12c06 | Get time 0x12c06: mov word ptr [0x823], dx 0x12c0a: call 0x130c5 0x12c0d: cmp dl, 5 0x12c10: jg 0x12c39 0x12c12: mov word ptr [0x823], 0 0x12c18: mov si, 0x825 0x12c1b: mov cx, 0xc 0x12c1e: rep movsb byte ptr es:[di], byte ptr [si] 0x12c20: call 0x130c5 0x12c23: mov si, 0x825 0x12c26: mov cx, 0xc 0x12c29: rep movsb byte ptr es:[di], byte ptr [si] 0x12c2b: call 0x130c5 0x12c2e: mov si, 0x825 0x12c31: mov cx, 7 0x12c34: rep movsb byte ptr es:[di], byte ptr [si] 0x12c36: jmp 0x13077 0x12c39: cmp byte ptr [0x812], 0xa 0x12c3e: jg 0x12c4c 0x12c40: mov byte ptr [0x83e], 0 |
| 2018-12-17T23:11:01.134912438Z | 64 | PC: 12a8f | Write file or device (Write 1958 bytes on handle 5) |
| 2018-12-17T23:11:01.143888442Z | 62 | PC: 12a93 | Close file |
| 2018-12-17T23:11:01.153517393Z | 76 | PC: 12a97 | Terminate with return code (Return code = '5') |