.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:11:43.44472555Z | 26 | PC: 12a73 | Set disk transfer address |
| 2018-12-17T23:11:43.447050623Z | 37 | PC: 12a81 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T23:11:43.448890302Z | 37 | PC: 12a85 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T23:11:43.450724021Z | 78 | PC: 12ad1 | Find first file |
| 2018-12-17T23:11:43.45825267Z | 61 | PC: 12b95 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:11:43.466809061Z | 63 | PC: 12ba4 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.473868678Z | 66 | PC: 12bb3 | Move file pointer |
| 2018-12-17T23:11:43.475588212Z | 66 | PC: 12bc2 | Move file pointer |
| 2018-12-17T23:11:43.478017721Z | 64 | PC: 12bce | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.480967047Z | 66 | PC: 12bda | Move file pointer |
| 2018-12-17T23:11:43.482685399Z | 44 | PC: 12bde | Get time 0x12bde: mov byte ptr [bp + 0x1c1], dl 0x12be2: call 0x12bf8 0x12be5: mov ah, 0x40 0x12be7: mov cx, 0x1c1 0x12bea: lea dx, word ptr [bp + 6] 0x12bee: int 0x21 0x12bf0: call 0x12bf8 0x12bf3: mov ah, 0x3e 0x12bf5: int 0x21 0x12bf7: ret 0x12bf8: lea si, word ptr [bp + 0x20] 0x12bfc: mov cx, 0x182 0x12bff: xor byte ptr [si], 0 0x12c02: inc si 0x12c03: dec cx 0x12c04: jne 0x12bff 0x12c06: ret 0x12c07: add word ptr [bx], di 0x12c09: aas 0x12c0a: aas |
| 2018-12-17T23:11:43.486591535Z | 64 | PC: 12bf0 | Write file or device (Write 449 bytes on handle 5) |
| 2018-12-17T23:11:43.502477421Z | 62 | PC: 12bf7 | Close file |
| 2018-12-17T23:11:43.511757904Z | 79 | PC: 12ad1 | Find next file |
| 2018-12-17T23:11:43.515997317Z | 61 | PC: 12b95 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:11:43.523400029Z | 63 | PC: 12ba4 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.530497467Z | 66 | PC: 12bb3 | Move file pointer |
| 2018-12-17T23:11:43.532938208Z | 66 | PC: 12bc2 | Move file pointer |
| 2018-12-17T23:11:43.535923332Z | 64 | PC: 12bce | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.538886494Z | 66 | PC: 12bda | Move file pointer |
| 2018-12-17T23:11:43.540497023Z | 44 | PC: 12bde | Get time 0x12bde: mov byte ptr [bp + 0x1c1], dl 0x12be2: call 0x12bf8 0x12be5: mov ah, 0x40 0x12be7: mov cx, 0x1c1 0x12bea: lea dx, word ptr [bp + 6] 0x12bee: int 0x21 0x12bf0: call 0x12bf8 0x12bf3: mov ah, 0x3e 0x12bf5: int 0x21 0x12bf7: ret 0x12bf8: lea si, word ptr [bp + 0x20] 0x12bfc: mov cx, 0x182 0x12bff: xor byte ptr [si], 0x42 0x12c02: inc si 0x12c03: dec cx 0x12c04: jne 0x12bff 0x12c06: ret 0x12c07: add word ptr [bx], di 0x12c09: aas 0x12c0a: aas |
| 2018-12-17T23:11:43.54384547Z | 64 | PC: 12bf0 | Write file or device (Write 449 bytes on handle 5) |
| 2018-12-17T23:11:43.547074252Z | 62 | PC: 12bf7 | Close file |
| 2018-12-17T23:11:43.557140042Z | 79 | PC: 12ad1 | Find next file |
| 2018-12-17T23:11:43.561389013Z | 61 | PC: 12b95 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:11:43.566915327Z | 63 | PC: 12ba4 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.572110858Z | 66 | PC: 12bb3 | Move file pointer |
| 2018-12-17T23:11:43.576590752Z | 66 | PC: 12bc2 | Move file pointer |
| 2018-12-17T23:11:43.578274008Z | 64 | PC: 12bce | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.581105182Z | 66 | PC: 12bda | Move file pointer |
| 2018-12-17T23:11:43.583759735Z | 44 | PC: 12bde | Get time 0x12bde: mov byte ptr [bp + 0x1c1], dl 0x12be2: call 0x12bf8 0x12be5: mov ah, 0x40 0x12be7: mov cx, 0x1c1 0x12bea: lea dx, word ptr [bp + 6] 0x12bee: int 0x21 0x12bf0: call 0x12bf8 0x12bf3: mov ah, 0x3e 0x12bf5: int 0x21 0x12bf7: ret 0x12bf8: lea si, word ptr [bp + 0x20] 0x12bfc: mov cx, 0x182 0x12bff: xor byte ptr [si], 0x47 0x12c02: inc si 0x12c03: dec cx 0x12c04: jne 0x12bff 0x12c06: ret 0x12c07: add word ptr [bx], di 0x12c09: aas 0x12c0a: aas |
| 2018-12-17T23:11:43.587337744Z | 64 | PC: 12bf0 | Write file or device (Write 449 bytes on handle 5) |
| 2018-12-17T23:11:43.596948649Z | 62 | PC: 12bf7 | Close file |
| 2018-12-17T23:11:43.606535018Z | 79 | PC: 12ad1 | Find next file |
| 2018-12-17T23:11:43.609892261Z | 61 | PC: 12b95 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:11:43.620756613Z | 63 | PC: 12ba4 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.629520615Z | 66 | PC: 12bb3 | Move file pointer |
| 2018-12-17T23:11:43.631621176Z | 66 | PC: 12bc2 | Move file pointer |
| 2018-12-17T23:11:43.633629974Z | 64 | PC: 12bce | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.636949066Z | 66 | PC: 12bda | Move file pointer |
| 2018-12-17T23:11:43.64015754Z | 44 | PC: 12bde | Get time 0x12bde: mov byte ptr [bp + 0x1c1], dl 0x12be2: call 0x12bf8 0x12be5: mov ah, 0x40 0x12be7: mov cx, 0x1c1 0x12bea: lea dx, word ptr [bp + 6] 0x12bee: int 0x21 0x12bf0: call 0x12bf8 0x12bf3: mov ah, 0x3e 0x12bf5: int 0x21 0x12bf7: ret 0x12bf8: lea si, word ptr [bp + 0x20] 0x12bfc: mov cx, 0x182 0x12bff: xor byte ptr [si], 0x47 0x12c02: inc si 0x12c03: dec cx 0x12c04: jne 0x12bff 0x12c06: ret 0x12c07: add word ptr [bx], di 0x12c09: aas 0x12c0a: aas |
| 2018-12-17T23:11:43.642961353Z | 64 | PC: 12bf0 | Write file or device (Write 449 bytes on handle 5) |
| 2018-12-17T23:11:43.646117629Z | 62 | PC: 12bf7 | Close file |
| 2018-12-17T23:11:43.655803975Z | 79 | PC: 12ad1 | Find next file |
| 2018-12-17T23:11:43.659786635Z | 61 | PC: 12b95 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:11:43.667149242Z | 63 | PC: 12ba4 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.675071501Z | 66 | PC: 12bb3 | Move file pointer |
| 2018-12-17T23:11:43.677307516Z | 66 | PC: 12bc2 | Move file pointer |
| 2018-12-17T23:11:43.679039844Z | 64 | PC: 12bce | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.682824151Z | 66 | PC: 12bda | Move file pointer |
| 2018-12-17T23:11:43.684565074Z | 44 | PC: 12bde | Get time 0x12bde: mov byte ptr [bp + 0x1c1], dl 0x12be2: call 0x12bf8 0x12be5: mov ah, 0x40 0x12be7: mov cx, 0x1c1 0x12bea: lea dx, word ptr [bp + 6] 0x12bee: int 0x21 0x12bf0: call 0x12bf8 0x12bf3: mov ah, 0x3e 0x12bf5: int 0x21 0x12bf7: ret 0x12bf8: lea si, word ptr [bp + 0x20] 0x12bfc: mov cx, 0x182 0x12bff: xor byte ptr [si], 0x4d 0x12c02: inc si 0x12c03: dec cx 0x12c04: jne 0x12bff 0x12c06: ret 0x12c07: add word ptr [bx], di 0x12c09: aas 0x12c0a: aas |
| 2018-12-17T23:11:43.687477321Z | 64 | PC: 12bf0 | Write file or device (Write 449 bytes on handle 5) |
| 2018-12-17T23:11:43.69193243Z | 62 | PC: 12bf7 | Close file |
| 2018-12-17T23:11:43.702339973Z | 79 | PC: 12ad1 | Find next file |
| 2018-12-17T23:11:43.705990969Z | 61 | PC: 12b95 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:11:43.712982338Z | 63 | PC: 12ba4 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.720652312Z | 66 | PC: 12bb3 | Move file pointer |
| 2018-12-17T23:11:43.72258154Z | 66 | PC: 12bc2 | Move file pointer |
| 2018-12-17T23:11:43.724443602Z | 64 | PC: 12bce | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.732112084Z | 66 | PC: 12bda | Move file pointer |
| 2018-12-17T23:11:43.734442897Z | 44 | PC: 12bde | Get time 0x12bde: mov byte ptr [bp + 0x1c1], dl 0x12be2: call 0x12bf8 0x12be5: mov ah, 0x40 0x12be7: mov cx, 0x1c1 0x12bea: lea dx, word ptr [bp + 6] 0x12bee: int 0x21 0x12bf0: call 0x12bf8 0x12bf3: mov ah, 0x3e 0x12bf5: int 0x21 0x12bf7: ret 0x12bf8: lea si, word ptr [bp + 0x20] 0x12bfc: mov cx, 0x182 0x12bff: xor byte ptr [si], 0x52 0x12c02: inc si 0x12c03: dec cx 0x12c04: jne 0x12bff 0x12c06: ret 0x12c07: add word ptr [bx], di 0x12c09: aas 0x12c0a: aas |
| 2018-12-17T23:11:43.73736371Z | 64 | PC: 12bf0 | Write file or device (Write 449 bytes on handle 5) |
| 2018-12-17T23:11:43.748454228Z | 62 | PC: 12bf7 | Close file |
| 2018-12-17T23:11:43.758465736Z | 79 | PC: 12ad1 | Find next file |
| 2018-12-17T23:11:43.761583409Z | 61 | PC: 12b95 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:11:43.769361267Z | 63 | PC: 12ba4 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.776223823Z | 66 | PC: 12bb3 | Move file pointer |
| 2018-12-17T23:11:43.7777698Z | 66 | PC: 12bc2 | Move file pointer |
| 2018-12-17T23:11:43.779463055Z | 64 | PC: 12bce | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.782844334Z | 66 | PC: 12bda | Move file pointer |
| 2018-12-17T23:11:43.784200254Z | 44 | PC: 12bde | Get time 0x12bde: mov byte ptr [bp + 0x1c1], dl 0x12be2: call 0x12bf8 0x12be5: mov ah, 0x40 0x12be7: mov cx, 0x1c1 0x12bea: lea dx, word ptr [bp + 6] 0x12bee: int 0x21 0x12bf0: call 0x12bf8 0x12bf3: mov ah, 0x3e 0x12bf5: int 0x21 0x12bf7: ret 0x12bf8: lea si, word ptr [bp + 0x20] 0x12bfc: mov cx, 0x182 0x12bff: xor byte ptr [si], 0x52 0x12c02: inc si 0x12c03: dec cx 0x12c04: jne 0x12bff 0x12c06: ret 0x12c07: add word ptr [bx], di 0x12c09: aas 0x12c0a: aas |
| 2018-12-17T23:11:43.786636536Z | 64 | PC: 12bf0 | Write file or device (Write 449 bytes on handle 5) |
| 2018-12-17T23:11:43.790745413Z | 62 | PC: 12bf7 | Close file |
| 2018-12-17T23:11:43.798946105Z | 26 | PC: 12aeb | Set disk transfer address |
| 2018-12-17T23:11:43.800138768Z | 9 | PC: 12afd | Display string (String= ' Someone is at the door ') |