.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:12:12.075260856Z | 78 | PC: 12aa9 | Find first file |
| 2018-12-17T23:12:12.08233274Z | 61 | PC: 12ad3 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:12:12.097936557Z | 87 | PC: 12ada | Get or set file date and time |
| 2018-12-17T23:12:12.104932841Z | 64 | PC: 12b18 | Write file or device (Write 91 bytes on handle 5) |
| 2018-12-17T23:12:12.112726748Z | 64 | PC: 12b22 | Write file or device (Write 314 bytes on handle 5) |
| 2018-12-17T23:12:12.116664867Z | 62 | PC: 12b26 | Close file |
| 2018-12-17T23:12:12.359979979Z | 79 | PC: 12ab2 | Find next file |
| 2018-12-17T23:12:12.362880063Z | 61 | PC: 12ad3 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:12:12.372466523Z | 87 | PC: 12ada | Get or set file date and time |
| 2018-12-17T23:12:12.374841302Z | 64 | PC: 12b18 | Write file or device (Write 91 bytes on handle 5) |
| 2018-12-17T23:12:12.382876084Z | 64 | PC: 12b22 | Write file or device (Write 314 bytes on handle 5) |
| 2018-12-17T23:12:12.387298501Z | 62 | PC: 12b26 | Close file |
| 2018-12-17T23:12:12.397416062Z | 79 | PC: 12ab2 | Find next file |
| 2018-12-17T23:12:12.401024483Z | 61 | PC: 12ad3 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:12:12.408858506Z | 87 | PC: 12ada | Get or set file date and time |
| 2018-12-17T23:12:12.412227844Z | 64 | PC: 12b18 | Write file or device (Write 91 bytes on handle 5) |
| 2018-12-17T23:12:12.423370501Z | 64 | PC: 12b22 | Write file or device (Write 314 bytes on handle 5) |
| 2018-12-17T23:12:12.426235668Z | 62 | PC: 12b26 | Close file |
| 2018-12-17T23:12:12.435624992Z | 79 | PC: 12ab2 | Find next file |
| 2018-12-17T23:12:12.439308757Z | 61 | PC: 12ad3 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:12:12.450532423Z | 87 | PC: 12ada | Get or set file date and time |
| 2018-12-17T23:12:12.453702115Z | 64 | PC: 12b18 | Write file or device (Write 91 bytes on handle 5) |
| 2018-12-17T23:12:12.46833773Z | 64 | PC: 12b22 | Write file or device (Write 314 bytes on handle 5) |
| 2018-12-17T23:12:12.474585645Z | 62 | PC: 12b26 | Close file |
| 2018-12-17T23:12:12.484136053Z | 79 | PC: 12ab2 | Find next file |
| 2018-12-17T23:12:12.487144338Z | 61 | PC: 12ad3 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:12:12.503690656Z | 87 | PC: 12ada | Get or set file date and time |
| 2018-12-17T23:12:12.505911291Z | 64 | PC: 12b18 | Write file or device (Write 91 bytes on handle 5) |
| 2018-12-17T23:12:12.516209061Z | 64 | PC: 12b22 | Write file or device (Write 314 bytes on handle 5) |
| 2018-12-17T23:12:12.519085109Z | 62 | PC: 12b26 | Close file |
| 2018-12-17T23:12:12.573003888Z | 79 | PC: 12ab2 | Find next file |
| 2018-12-17T23:12:12.57666436Z | 61 | PC: 12ad3 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:12:12.584461286Z | 87 | PC: 12ada | Get or set file date and time |
| 2018-12-17T23:12:12.58684583Z | 64 | PC: 12b18 | Write file or device (Write 91 bytes on handle 5) |
| 2018-12-17T23:12:12.59511929Z | 64 | PC: 12b22 | Write file or device (Write 314 bytes on handle 5) |
| 2018-12-17T23:12:12.598474704Z | 62 | PC: 12b26 | Close file |
| 2018-12-17T23:12:12.657988341Z | 79 | PC: 12ab2 | Find next file |
| 2018-12-17T23:12:12.66235425Z | 61 | PC: 12ad3 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:12:12.670577688Z | 87 | PC: 12ada | Get or set file date and time |
| 2018-12-17T23:12:12.673820852Z | 64 | PC: 12b18 | Write file or device (Write 91 bytes on handle 5) |
| 2018-12-17T23:12:12.682983471Z | 64 | PC: 12b22 | Write file or device (Write 314 bytes on handle 5) |
| 2018-12-17T23:12:12.68808149Z | 62 | PC: 12b26 | Close file |
| 2018-12-17T23:12:12.75109749Z | 79 | PC: 12ab2 | Find next file |
| 2018-12-17T23:12:12.756112118Z | 61 | PC: 12ad3 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T23:12:12.763722923Z | 87 | PC: 12ada | Get or set file date and time |
| 2018-12-17T23:12:12.765622258Z | 64 | PC: 12b18 | Write file or device (Write 91 bytes on handle 5) |
| 2018-12-17T23:12:12.769361203Z | 64 | PC: 12b22 | Write file or device (Write 314 bytes on handle 5) |
| 2018-12-17T23:12:12.77327638Z | 62 | PC: 12b26 | Close file |
| 2018-12-17T23:12:12.805189874Z | 79 | PC: 12ab2 | Find next file |
| 2018-12-17T23:12:12.808026321Z | 42 | PC: 12b31 | Get date 0x12b31: cmp ah, 1 0x12b34: jmp 0x12b43 0x12b37: mov ah, 0x9e 0x12b39: mov dx, 0x23b 0x12b3c: int 0x21 0x12b3e: mov dx, 0x263 0x12b41: int 0x21 0x12b43: call 0x22ac5 0x12b46: mov ah, ah 0x12b48: int 0x20 0x12b4a: or byte ptr [bp + si], ch 0x12b4c: arpl word ptr cs:[bx + 0x6d], bp 0x12b50: add byte ptr [bx + di + 0x52], al 0x12b53: push bx 0x12b54: dec di 0x12b55: dec si 0x12b56: dec cx 0x12b57: inc bx 0x12b58: pop bx 0x12b59: inc bx |