.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:12:44.136856169Z | 71 | PC: 12aa5 | Get current directory |
| 2018-12-17T23:12:44.141058731Z | 53 | PC: 12aac | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:12:44.142650304Z | 37 | PC: 12ab5 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T23:12:44.144141918Z | 78 | PC: 12ada | Find first file |
| 2018-12-17T23:12:44.151079924Z | 67 | PC: 12af7 | Get or set file attributes |
| 2018-12-17T23:12:44.158187258Z | 67 | PC: 12b01 | Get or set file attributes |
| 2018-12-17T23:12:45.4340199Z | 61 | PC: 12b05 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:12:45.446999986Z | 87 | PC: 12b0a | Get or set file date and time |
| 2018-12-17T23:12:45.450120153Z | 63 | PC: 12b15 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:12:45.458152326Z | 66 | PC: 12b24 | Move file pointer |
| 2018-12-17T23:12:45.460152737Z | 44 | PC: 12a50 | Get time 0x12a50: mov byte ptr [0x10a], dl 0x12a54: call 0x12a69 0x12a57: pop bx 0x12a58: mov cx, 0x132 0x12a5b: mov dx, 0x100 0x12a5e: mov ah, 0x40 0x12a60: int3 0x12a61: inc byte ptr [0x232] 0x12a65: call 0x12a69 0x12a68: ret 0x12a69: mov bx, 0x141 0x12a6c: mov al, byte ptr [0x10a] 0x12a70: cmp al, 0 0x12a72: je 0x12a80 0x12a74: xor byte ptr [bx], al 0x12a77: inc bx 0x12a78: add al, bh 0x12a7a: cmp bx, word ptr [0x212] 0x12a7e: jle 0x12a74 0x12a80: ret |
| 2018-12-17T23:12:45.464547771Z | 64 | PC: 12a61 | Write file or device (Write 306 bytes on handle 5) |
| 2018-12-17T23:12:45.468429159Z | 87 | PC: 12b2f | Get or set file date and time |
| 2018-12-17T23:12:45.470146117Z | 62 | PC: 12b32 | Close file |
| 2018-12-17T23:12:45.47869416Z | 67 | PC: 12b3d | Get or set file attributes |
| 2018-12-17T23:12:45.489047778Z | 79 | PC: 12ada | Find next file |
| 2018-12-17T23:12:45.492026569Z | 67 | PC: 12af7 | Get or set file attributes |
| 2018-12-17T23:12:45.49913725Z | 67 | PC: 12b01 | Get or set file attributes |
| 2018-12-17T23:12:45.510331458Z | 61 | PC: 12b05 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T23:12:45.522929136Z | 87 | PC: 12b0a | Get or set file date and time |
| 2018-12-17T23:12:45.525567186Z | 63 | PC: 12b15 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:12:45.533836745Z | 66 | PC: 12b24 | Move file pointer |
| 2018-12-17T23:12:45.535585413Z | 44 | PC: 12a50 | Get time 0x12a50: mov byte ptr [0x10a], dl 0x12a54: call 0x12a69 0x12a57: pop bx 0x12a58: mov cx, 0x132 0x12a5b: mov dx, 0x100 0x12a5e: mov ah, 0x40 0x12a60: int3 0x12a61: inc byte ptr [0x232] 0x12a65: call 0x12a69 0x12a68: ret 0x12a69: mov bx, 0x141 0x12a6c: mov al, byte ptr [0x10a] 0x12a70: cmp al, 0 0x12a72: je 0x12a80 0x12a74: xor byte ptr [bx], al 0x12a77: inc bx 0x12a78: add al, bh 0x12a7a: cmp bx, word ptr [0x212] 0x12a7e: jle 0x12a74 0x12a80: ret |
| 2018-12-17T23:12:45.539216561Z | 64 | PC: 12a61 | Write file or device (Write 306 bytes on handle 5) |
| 2018-12-17T23:12:45.543546192Z | 87 | PC: 12b2f | Get or set file date and time |
| 2018-12-17T23:12:45.545379198Z | 62 | PC: 12b32 | Close file |
| 2018-12-17T23:12:45.553412183Z | 67 | PC: 12b3d | Get or set file attributes |
| 2018-12-17T23:12:45.56478132Z | 79 | PC: 12ada | Find next file |
| 2018-12-17T23:12:45.568413459Z | 67 | PC: 12af7 | Get or set file attributes |
| 2018-12-17T23:12:45.574459268Z | 67 | PC: 12b01 | Get or set file attributes |
| 2018-12-17T23:12:45.586279974Z | 61 | PC: 12b05 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T23:12:45.593901004Z | 87 | PC: 12b0a | Get or set file date and time |
| 2018-12-17T23:12:45.595663818Z | 63 | PC: 12b15 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:12:45.603615921Z | 66 | PC: 12b24 | Move file pointer |
| 2018-12-17T23:12:45.605325195Z | 44 | PC: 12a50 | Get time 0x12a50: mov byte ptr [0x10a], dl 0x12a54: call 0x12a69 0x12a57: pop bx 0x12a58: mov cx, 0x132 0x12a5b: mov dx, 0x100 0x12a5e: mov ah, 0x40 0x12a60: int3 0x12a61: inc byte ptr [0x232] 0x12a65: call 0x12a69 0x12a68: ret 0x12a69: mov bx, 0x141 0x12a6c: mov al, byte ptr [0x10a] 0x12a70: cmp al, 0 0x12a72: je 0x12a80 0x12a74: xor byte ptr [bx], al 0x12a77: inc bx 0x12a78: add al, bh 0x12a7a: cmp bx, word ptr [0x212] 0x12a7e: jle 0x12a74 0x12a80: ret |
| 2018-12-17T23:12:45.608537645Z | 64 | PC: 12a61 | Write file or device (Write 306 bytes on handle 5) |
| 2018-12-17T23:12:45.613420015Z | 87 | PC: 12b2f | Get or set file date and time |
| 2018-12-17T23:12:45.615344744Z | 62 | PC: 12b32 | Close file |
| 2018-12-17T23:12:45.624721125Z | 67 | PC: 12b3d | Get or set file attributes |
| 2018-12-17T23:12:45.638177937Z | 79 | PC: 12ada | Find next file |
| 2018-12-17T23:12:45.641393063Z | 67 | PC: 12af7 | Get or set file attributes |
| 2018-12-17T23:12:45.648054388Z | 67 | PC: 12b01 | Get or set file attributes |
| 2018-12-17T23:12:45.659551126Z | 61 | PC: 12b05 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T23:12:45.666864938Z | 87 | PC: 12b0a | Get or set file date and time |
| 2018-12-17T23:12:45.668396808Z | 63 | PC: 12b15 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:12:45.675286082Z | 66 | PC: 12b24 | Move file pointer |
| 2018-12-17T23:12:45.677589753Z | 44 | PC: 12a50 | Get time 0x12a50: mov byte ptr [0x10a], dl 0x12a54: call 0x12a69 0x12a57: pop bx 0x12a58: mov cx, 0x132 0x12a5b: mov dx, 0x100 0x12a5e: mov ah, 0x40 0x12a60: int3 0x12a61: inc byte ptr [0x232] 0x12a65: call 0x12a69 0x12a68: ret 0x12a69: mov bx, 0x141 0x12a6c: mov al, byte ptr [0x10a] 0x12a70: cmp al, 0 0x12a72: je 0x12a80 0x12a74: xor byte ptr [bx], al 0x12a77: inc bx 0x12a78: add al, bh 0x12a7a: cmp bx, word ptr [0x212] 0x12a7e: jle 0x12a74 0x12a80: ret |
| 2018-12-17T23:12:45.680616385Z | 64 | PC: 12a61 | Write file or device (Write 306 bytes on handle 5) |
| 2018-12-17T23:12:45.684177601Z | 87 | PC: 12b2f | Get or set file date and time |
| 2018-12-17T23:12:45.687175468Z | 62 | PC: 12b32 | Close file |
| 2018-12-17T23:12:45.695350529Z | 67 | PC: 12b3d | Get or set file attributes |
| 2018-12-17T23:12:45.706103117Z | 79 | PC: 12ada | Find next file |
| 2018-12-17T23:12:45.710435354Z | 67 | PC: 12af7 | Get or set file attributes |
| 2018-12-17T23:12:45.716766087Z | 67 | PC: 12b01 | Get or set file attributes |
| 2018-12-17T23:12:45.730401306Z | 61 | PC: 12b05 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T23:12:45.738406156Z | 87 | PC: 12b0a | Get or set file date and time |
| 2018-12-17T23:12:45.740001677Z | 63 | PC: 12b15 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:12:45.746680044Z | 66 | PC: 12b24 | Move file pointer |
| 2018-12-17T23:12:45.748800952Z | 44 | PC: 12a50 | Get time 0x12a50: mov byte ptr [0x10a], dl 0x12a54: call 0x12a69 0x12a57: pop bx 0x12a58: mov cx, 0x132 0x12a5b: mov dx, 0x100 0x12a5e: mov ah, 0x40 0x12a60: int3 0x12a61: inc byte ptr [0x232] 0x12a65: call 0x12a69 0x12a68: ret 0x12a69: mov bx, 0x141 0x12a6c: mov al, byte ptr [0x10a] 0x12a70: cmp al, 0 0x12a72: je 0x12a80 0x12a74: xor byte ptr [bx], al 0x12a77: inc bx 0x12a78: add al, bh 0x12a7a: cmp bx, word ptr [0x212] 0x12a7e: jle 0x12a74 0x12a80: ret |
| 2018-12-17T23:12:45.751511719Z | 64 | PC: 12a61 | Write file or device (Write 306 bytes on handle 5) |
| 2018-12-17T23:12:45.754989849Z | 87 | PC: 12b2f | Get or set file date and time |
| 2018-12-17T23:12:45.7571976Z | 62 | PC: 12b32 | Close file |
| 2018-12-17T23:12:45.764992286Z | 67 | PC: 12b3d | Get or set file attributes |
| 2018-12-17T23:12:45.775246738Z | 79 | PC: 12ada | Find next file |
| 2018-12-17T23:12:45.778721862Z | 67 | PC: 12af7 | Get or set file attributes |
| 2018-12-17T23:12:45.785295933Z | 67 | PC: 12b01 | Get or set file attributes |
| 2018-12-17T23:12:45.797191009Z | 61 | PC: 12b05 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T23:12:45.806392381Z | 87 | PC: 12b0a | Get or set file date and time |
| 2018-12-17T23:12:45.807953326Z | 63 | PC: 12b15 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:12:45.81519377Z | 66 | PC: 12b24 | Move file pointer |
| 2018-12-17T23:12:45.817231111Z | 44 | PC: 12a50 | Get time 0x12a50: mov byte ptr [0x10a], dl 0x12a54: call 0x12a69 0x12a57: pop bx 0x12a58: mov cx, 0x132 0x12a5b: mov dx, 0x100 0x12a5e: mov ah, 0x40 0x12a60: int3 0x12a61: inc byte ptr [0x232] 0x12a65: call 0x12a69 0x12a68: ret 0x12a69: mov bx, 0x141 0x12a6c: mov al, byte ptr [0x10a] 0x12a70: cmp al, 0 0x12a72: je 0x12a80 0x12a74: xor byte ptr [bx], al 0x12a77: inc bx 0x12a78: add al, bh 0x12a7a: cmp bx, word ptr [0x212] 0x12a7e: jle 0x12a74 0x12a80: ret |
| 2018-12-17T23:12:45.82191058Z | 64 | PC: 12a61 | Write file or device (Write 306 bytes on handle 5) |
| 2018-12-17T23:12:45.825893078Z | 87 | PC: 12b2f | Get or set file date and time |
| 2018-12-17T23:12:45.827853034Z | 62 | PC: 12b32 | Close file |
| 2018-12-17T23:12:45.838167868Z | 67 | PC: 12b3d | Get or set file attributes |
| 2018-12-17T23:12:45.849692068Z | 79 | PC: 12ada | Find next file |
| 2018-12-17T23:12:45.853049821Z | 67 | PC: 12af7 | Get or set file attributes |
| 2018-12-17T23:12:45.861457991Z | 67 | PC: 12b01 | Get or set file attributes |
| 2018-12-17T23:12:45.873273287Z | 61 | PC: 12b05 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T23:12:45.880869821Z | 87 | PC: 12b0a | Get or set file date and time |
| 2018-12-17T23:12:45.88305508Z | 63 | PC: 12b15 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:12:45.890550804Z | 66 | PC: 12b24 | Move file pointer |
| 2018-12-17T23:12:45.893226736Z | 44 | PC: 12a50 | Get time 0x12a50: mov byte ptr [0x10a], dl 0x12a54: call 0x12a69 0x12a57: pop bx 0x12a58: mov cx, 0x132 0x12a5b: mov dx, 0x100 0x12a5e: mov ah, 0x40 0x12a60: int3 0x12a61: inc byte ptr [0x232] 0x12a65: call 0x12a69 0x12a68: ret 0x12a69: mov bx, 0x141 0x12a6c: mov al, byte ptr [0x10a] 0x12a70: cmp al, 0 0x12a72: je 0x12a80 0x12a74: xor byte ptr [bx], al 0x12a77: inc bx 0x12a78: add al, bh 0x12a7a: cmp bx, word ptr [0x212] 0x12a7e: jle 0x12a74 0x12a80: ret |
| 2018-12-17T23:12:45.896043351Z | 64 | PC: 12a61 | Write file or device (Write 306 bytes on handle 5) |