.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:11:43.694783551Z | 9 | PC: 12a77 | Display string (String= 'GANES.(c) 1987-2004 PRESENTS ') |
| 2018-12-17T23:11:43.700142834Z | 26 | PC: 12a8f | Set disk transfer address |
| 2018-12-17T23:11:43.701498205Z | 78 | PC: 12aa9 | Find first file |
| 2018-12-17T23:11:43.708020043Z | 61 | PC: 12ab7 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:11:43.716108563Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.718168507Z | 63 | PC: 12acd | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.725925566Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.72793375Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.73176089Z | 64 | PC: 12b0e | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.73512492Z | 44 | PC: 12b12 | Get time 0x12b12: cmp dl, 0 0x12b15: jne 0x12b19 0x12b17: jmp 0x12b0e 0x12b19: add dl, 0xc 0x12b1c: mov byte ptr [bp + 0x143], dl 0x12b20: lea si, word ptr [bp + 0x104] 0x12b24: lea di, word ptr [bp + 0x24e] 0x12b28: mov cx, 0x43 0x12b2b: rep movsb byte ptr es:[di], byte ptr [si] 0x12b2d: mov cx, 0x107 0x12b30: nop 0x12b31: lodsb al, byte ptr [si] 0x12b32: sub al, dl 0x12b34: stosb byte ptr es:[di], al 0x12b35: loop 0x12b31 0x12b37: mov al, 2 0x12b39: call 0x12b76 0x12b3c: mov ah, 0x40 0x12b3e: lea dx, word ptr [bp + 0x24e] 0x12b42: mov cx, 0x14a |
| 2018-12-17T23:11:43.738360437Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.742947035Z | 64 | PC: 12b48 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T23:11:43.761228933Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:11:43.770227156Z | 79 | PC: 12aa9 | Find next file |
| 2018-12-17T23:11:43.775171708Z | 61 | PC: 12ab7 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:11:43.782573345Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.784467276Z | 63 | PC: 12acd | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.791924927Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.794004912Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.795599432Z | 64 | PC: 12b0e | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.798757914Z | 44 | PC: 12b12 | Get time 0x12b12: cmp dl, 0 0x12b15: jne 0x12b19 0x12b17: jmp 0x12b0e 0x12b19: add dl, 0xc 0x12b1c: mov byte ptr [bp + 0x143], dl 0x12b20: lea si, word ptr [bp + 0x104] 0x12b24: lea di, word ptr [bp + 0x24e] 0x12b28: mov cx, 0x43 0x12b2b: rep movsb byte ptr es:[di], byte ptr [si] 0x12b2d: mov cx, 0x107 0x12b30: nop 0x12b31: lodsb al, byte ptr [si] 0x12b32: sub al, dl 0x12b34: stosb byte ptr es:[di], al 0x12b35: loop 0x12b31 0x12b37: mov al, 2 0x12b39: call 0x12b76 0x12b3c: mov ah, 0x40 0x12b3e: lea dx, word ptr [bp + 0x24e] 0x12b42: mov cx, 0x14a |
| 2018-12-17T23:11:43.801802396Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.803444062Z | 64 | PC: 12b48 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T23:11:43.806988091Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:11:43.816634965Z | 79 | PC: 12aa9 | Find next file |
| 2018-12-17T23:11:43.820069057Z | 61 | PC: 12ab7 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:11:43.827337115Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.830377904Z | 63 | PC: 12acd | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.837537662Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.839453257Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.841918137Z | 64 | PC: 12b0e | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.844802102Z | 44 | PC: 12b12 | Get time 0x12b12: cmp dl, 0 0x12b15: jne 0x12b19 0x12b17: jmp 0x12b0e 0x12b19: add dl, 0xc 0x12b1c: mov byte ptr [bp + 0x143], dl 0x12b20: lea si, word ptr [bp + 0x104] 0x12b24: lea di, word ptr [bp + 0x24e] 0x12b28: mov cx, 0x43 0x12b2b: rep movsb byte ptr es:[di], byte ptr [si] 0x12b2d: mov cx, 0x107 0x12b30: nop 0x12b31: lodsb al, byte ptr [si] 0x12b32: sub al, dl 0x12b34: stosb byte ptr es:[di], al 0x12b35: loop 0x12b31 0x12b37: mov al, 2 0x12b39: call 0x12b76 0x12b3c: mov ah, 0x40 0x12b3e: lea dx, word ptr [bp + 0x24e] 0x12b42: mov cx, 0x14a |
| 2018-12-17T23:11:43.847235547Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.849408979Z | 64 | PC: 12b48 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T23:11:43.851408482Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:11:43.859328789Z | 79 | PC: 12aa9 | Find next file |
| 2018-12-17T23:11:43.862997344Z | 61 | PC: 12ab7 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:11:43.870157418Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.871640073Z | 63 | PC: 12acd | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.879493231Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.881703791Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.884418538Z | 64 | PC: 12b0e | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.887571388Z | 44 | PC: 12b12 | Get time 0x12b12: cmp dl, 0 0x12b15: jne 0x12b19 0x12b17: jmp 0x12b0e 0x12b19: add dl, 0xc 0x12b1c: mov byte ptr [bp + 0x143], dl 0x12b20: lea si, word ptr [bp + 0x104] 0x12b24: lea di, word ptr [bp + 0x24e] 0x12b28: mov cx, 0x43 0x12b2b: rep movsb byte ptr es:[di], byte ptr [si] 0x12b2d: mov cx, 0x107 0x12b30: nop 0x12b31: lodsb al, byte ptr [si] 0x12b32: sub al, dl 0x12b34: stosb byte ptr es:[di], al 0x12b35: loop 0x12b31 0x12b37: mov al, 2 0x12b39: call 0x12b76 0x12b3c: mov ah, 0x40 0x12b3e: lea dx, word ptr [bp + 0x24e] 0x12b42: mov cx, 0x14a |
| 2018-12-17T23:11:43.891054369Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.89354039Z | 64 | PC: 12b48 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T23:11:43.896448441Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:11:43.906695305Z | 79 | PC: 12aa9 | Find next file |
| 2018-12-17T23:11:43.909575836Z | 61 | PC: 12ab7 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:11:43.91655342Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.919127641Z | 63 | PC: 12acd | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.926377894Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.927842025Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.929674652Z | 64 | PC: 12b0e | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.932447821Z | 44 | PC: 12b12 | Get time 0x12b12: cmp dl, 0 0x12b15: jne 0x12b19 0x12b17: jmp 0x12b0e 0x12b19: add dl, 0xc 0x12b1c: mov byte ptr [bp + 0x143], dl 0x12b20: lea si, word ptr [bp + 0x104] 0x12b24: lea di, word ptr [bp + 0x24e] 0x12b28: mov cx, 0x43 0x12b2b: rep movsb byte ptr es:[di], byte ptr [si] 0x12b2d: mov cx, 0x107 0x12b30: nop 0x12b31: lodsb al, byte ptr [si] 0x12b32: sub al, dl 0x12b34: stosb byte ptr es:[di], al 0x12b35: loop 0x12b31 0x12b37: mov al, 2 0x12b39: call 0x12b76 0x12b3c: mov ah, 0x40 0x12b3e: lea dx, word ptr [bp + 0x24e] 0x12b42: mov cx, 0x14a |
| 2018-12-17T23:11:43.934893033Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.936446779Z | 64 | PC: 12b48 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T23:11:43.939769088Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:11:43.948734024Z | 79 | PC: 12aa9 | Find next file |
| 2018-12-17T23:11:43.951704411Z | 61 | PC: 12ab7 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:11:43.959270587Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.961047364Z | 63 | PC: 12acd | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:43.968049706Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.970702162Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.972131774Z | 64 | PC: 12b0e | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:43.974980419Z | 44 | PC: 12b12 | Get time 0x12b12: cmp dl, 0 0x12b15: jne 0x12b19 0x12b17: jmp 0x12b0e 0x12b19: add dl, 0xc 0x12b1c: mov byte ptr [bp + 0x143], dl 0x12b20: lea si, word ptr [bp + 0x104] 0x12b24: lea di, word ptr [bp + 0x24e] 0x12b28: mov cx, 0x43 0x12b2b: rep movsb byte ptr es:[di], byte ptr [si] 0x12b2d: mov cx, 0x107 0x12b30: nop 0x12b31: lodsb al, byte ptr [si] 0x12b32: sub al, dl 0x12b34: stosb byte ptr es:[di], al 0x12b35: loop 0x12b31 0x12b37: mov al, 2 0x12b39: call 0x12b76 0x12b3c: mov ah, 0x40 0x12b3e: lea dx, word ptr [bp + 0x24e] 0x12b42: mov cx, 0x14a |
| 2018-12-17T23:11:43.978219589Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:43.979939191Z | 64 | PC: 12b48 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T23:11:43.988644869Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:11:43.998504977Z | 79 | PC: 12aa9 | Find next file |
| 2018-12-17T23:11:44.001638675Z | 61 | PC: 12ab7 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:11:44.00929212Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:44.011768874Z | 63 | PC: 12acd | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:44.019361414Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:44.021089678Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:44.022565686Z | 64 | PC: 12b0e | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:11:44.02556336Z | 44 | PC: 12b12 | Get time 0x12b12: cmp dl, 0 0x12b15: jne 0x12b19 0x12b17: jmp 0x12b0e 0x12b19: add dl, 0xc 0x12b1c: mov byte ptr [bp + 0x143], dl 0x12b20: lea si, word ptr [bp + 0x104] 0x12b24: lea di, word ptr [bp + 0x24e] 0x12b28: mov cx, 0x43 0x12b2b: rep movsb byte ptr es:[di], byte ptr [si] 0x12b2d: mov cx, 0x107 0x12b30: nop 0x12b31: lodsb al, byte ptr [si] 0x12b32: sub al, dl 0x12b34: stosb byte ptr es:[di], al 0x12b35: loop 0x12b31 0x12b37: mov al, 2 0x12b39: call 0x12b76 0x12b3c: mov ah, 0x40 0x12b3e: lea dx, word ptr [bp + 0x24e] 0x12b42: mov cx, 0x14a |
| 2018-12-17T23:11:44.028152159Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:44.029803449Z | 64 | PC: 12b48 | Write file or device (Write 330 bytes on handle 5) |
| 2018-12-17T23:11:44.032672057Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:11:44.040765625Z | 79 | PC: 12aa9 | Find next file |
| 2018-12-17T23:11:44.043557753Z | 61 | PC: 12ab7 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T23:11:44.050897874Z | 66 | PC: 12b7e | Move file pointer |
| 2018-12-17T23:11:44.05222547Z | 63 | PC: 12acd | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:11:44.05494433Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T23:11:44.057311621Z | 79 | PC: 12aa9 | Find next file |
| 2018-12-17T23:11:44.060277603Z | 26 | PC: 12b5e | Set disk transfer address |
| 2018-12-17T23:11:44.061952898Z | 37 | PC: 12b6c | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |