.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:06:49.302757953Z | 26 | PC: 151a1 | Set disk transfer address |
| 2018-12-17T22:06:49.307235832Z | 78 | PC: 151b1 | Find first file |
| 2018-12-17T22:06:49.313175787Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.319284926Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.342191685Z | 61 | PC: 151cc | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:06:49.349679115Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.351290227Z | 63 | PC: 151df | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:49.358088492Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.359470236Z | 64 | PC: 1517b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:06:49.361324721Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.362463976Z | 44 | PC: 15226 | Get time 0x15226: or dx, dx 0x15228: je 0x15222 0x1522a: mov word ptr [bp + 0x117], dx 0x1522e: call 0x25166 0x15231: pop dx 0x15232: pop cx 0x15233: mov ax, 1 0x15236: call 0x1525e 0x15239: lea dx, word ptr [bp + 0x248] 0x1523d: mov ah, 0x3e 0x1523f: int 0x21 0x15241: mov ax, 1 0x15244: pop cx 0x15245: call 0x15259 0x15248: mov ah, 0x4f 0x1524a: mov cx, 7 0x1524d: jmp 0x151af 0x15250: mov dx, 0x80 0x15253: dec byte ptr cs:[0x21e] 0x15258: ret |
| 2018-12-17T22:06:49.364396316Z | 64 | PC: 1517b | Write file or device (Write 293 bytes on handle 5) |
| 2018-12-17T22:06:49.577836567Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.579383954Z | 62 | PC: 15241 | Close file |
| 2018-12-17T22:06:49.676619789Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.687045684Z | 79 | PC: 151b1 | Find next file |
| 2018-12-17T22:06:49.690042073Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.69778509Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.70799676Z | 61 | PC: 151cc | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:06:49.720463747Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.722235111Z | 63 | PC: 151df | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:49.728642039Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.730264312Z | 64 | PC: 1517b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:06:49.733528735Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.734915165Z | 44 | PC: 15226 | Get time 0x15226: or dx, dx 0x15228: je 0x15222 0x1522a: mov word ptr [bp + 0x117], dx 0x1522e: call 0x25166 0x15231: pop dx 0x15232: pop cx 0x15233: mov ax, 1 0x15236: call 0x1525e 0x15239: lea dx, word ptr [bp + 0x248] 0x1523d: mov ah, 0x3e 0x1523f: int 0x21 0x15241: mov ax, 1 0x15244: pop cx 0x15245: call 0x15259 0x15248: mov ah, 0x4f 0x1524a: mov cx, 7 0x1524d: jmp 0x151af 0x15250: mov dx, 0x80 0x15253: dec byte ptr cs:[0x21e] 0x15258: ret |
| 2018-12-17T22:06:49.73713878Z | 64 | PC: 1517b | Write file or device (Write 293 bytes on handle 5) |
| 2018-12-17T22:06:49.740808304Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.742312338Z | 62 | PC: 15241 | Close file |
| 2018-12-17T22:06:49.749826462Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.759538553Z | 79 | PC: 151b1 | Find next file |
| 2018-12-17T22:06:49.762235022Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.767885461Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.777356456Z | 61 | PC: 151cc | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:06:49.789142286Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.790528458Z | 63 | PC: 151df | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:49.796664457Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.798187344Z | 64 | PC: 1517b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:06:49.800496594Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.801622731Z | 44 | PC: 15226 | Get time 0x15226: or dx, dx 0x15228: je 0x15222 0x1522a: mov word ptr [bp + 0x117], dx 0x1522e: call 0x25166 0x15231: pop dx 0x15232: pop cx 0x15233: mov ax, 1 0x15236: call 0x1525e 0x15239: lea dx, word ptr [bp + 0x248] 0x1523d: mov ah, 0x3e 0x1523f: int 0x21 0x15241: mov ax, 1 0x15244: pop cx 0x15245: call 0x15259 0x15248: mov ah, 0x4f 0x1524a: mov cx, 7 0x1524d: jmp 0x151af 0x15250: mov dx, 0x80 0x15253: dec byte ptr cs:[0x21e] 0x15258: ret |
| 2018-12-17T22:06:49.80377034Z | 64 | PC: 1517b | Write file or device (Write 293 bytes on handle 5) |
| 2018-12-17T22:06:49.806332722Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.807540562Z | 62 | PC: 15241 | Close file |
| 2018-12-17T22:06:49.815356926Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.825192414Z | 79 | PC: 151b1 | Find next file |
| 2018-12-17T22:06:49.828163678Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.834552417Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.84411437Z | 61 | PC: 151cc | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:06:49.851076663Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.853124842Z | 63 | PC: 151df | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:49.859899853Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.861242157Z | 64 | PC: 1517b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:06:49.865021461Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.866332605Z | 44 | PC: 15226 | Get time 0x15226: or dx, dx 0x15228: je 0x15222 0x1522a: mov word ptr [bp + 0x117], dx 0x1522e: call 0x25166 0x15231: pop dx 0x15232: pop cx 0x15233: mov ax, 1 0x15236: call 0x1525e 0x15239: lea dx, word ptr [bp + 0x248] 0x1523d: mov ah, 0x3e 0x1523f: int 0x21 0x15241: mov ax, 1 0x15244: pop cx 0x15245: call 0x15259 0x15248: mov ah, 0x4f 0x1524a: mov cx, 7 0x1524d: jmp 0x151af 0x15250: mov dx, 0x80 0x15253: dec byte ptr cs:[0x21e] 0x15258: ret |
| 2018-12-17T22:06:49.868505346Z | 64 | PC: 1517b | Write file or device (Write 293 bytes on handle 5) |
| 2018-12-17T22:06:49.872207086Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.87362883Z | 62 | PC: 15241 | Close file |
| 2018-12-17T22:06:49.880722302Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.891809492Z | 79 | PC: 151b1 | Find next file |
| 2018-12-17T22:06:49.894326307Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.899976117Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.910870576Z | 61 | PC: 151cc | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:06:49.922648197Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.924234863Z | 63 | PC: 151df | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:49.93128771Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.933040373Z | 64 | PC: 1517b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:06:49.935730985Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.937670345Z | 44 | PC: 15226 | Get time 0x15226: or dx, dx 0x15228: je 0x15222 0x1522a: mov word ptr [bp + 0x117], dx 0x1522e: call 0x25166 0x15231: pop dx 0x15232: pop cx 0x15233: mov ax, 1 0x15236: call 0x1525e 0x15239: lea dx, word ptr [bp + 0x248] 0x1523d: mov ah, 0x3e 0x1523f: int 0x21 0x15241: mov ax, 1 0x15244: pop cx 0x15245: call 0x15259 0x15248: mov ah, 0x4f 0x1524a: mov cx, 7 0x1524d: jmp 0x151af 0x15250: mov dx, 0x80 0x15253: dec byte ptr cs:[0x21e] 0x15258: ret |
| 2018-12-17T22:06:49.941307827Z | 64 | PC: 1517b | Write file or device (Write 293 bytes on handle 5) |
| 2018-12-17T22:06:49.944163571Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.945899906Z | 62 | PC: 15241 | Close file |
| 2018-12-17T22:06:49.953510152Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.963170614Z | 79 | PC: 151b1 | Find next file |
| 2018-12-17T22:06:49.965989368Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.972526826Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:49.982234137Z | 61 | PC: 151cc | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:06:49.989453256Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:49.99184535Z | 63 | PC: 151df | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:49.998257753Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:49.999649175Z | 64 | PC: 1517b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:06:50.003173741Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:50.00471515Z | 44 | PC: 15226 | Get time 0x15226: or dx, dx 0x15228: je 0x15222 0x1522a: mov word ptr [bp + 0x117], dx 0x1522e: call 0x25166 0x15231: pop dx 0x15232: pop cx 0x15233: mov ax, 1 0x15236: call 0x1525e 0x15239: lea dx, word ptr [bp + 0x248] 0x1523d: mov ah, 0x3e 0x1523f: int 0x21 0x15241: mov ax, 1 0x15244: pop cx 0x15245: call 0x15259 0x15248: mov ah, 0x4f 0x1524a: mov cx, 7 0x1524d: jmp 0x151af 0x15250: mov dx, 0x80 0x15253: dec byte ptr cs:[0x21e] 0x15258: ret |
| 2018-12-17T22:06:50.007185264Z | 64 | PC: 1517b | Write file or device (Write 293 bytes on handle 5) |
| 2018-12-17T22:06:50.015873299Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:50.017221322Z | 62 | PC: 15241 | Close file |
| 2018-12-17T22:06:50.024666207Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:50.035205363Z | 79 | PC: 151b1 | Find next file |
| 2018-12-17T22:06:50.037754496Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:50.043598639Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:50.053828395Z | 61 | PC: 151cc | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:06:50.060251289Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:50.061830619Z | 63 | PC: 151df | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:50.068600895Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:50.069918612Z | 64 | PC: 1517b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:06:50.072420764Z | 66 | PC: 1526a | Move file pointer |
| 2018-12-17T22:06:50.074644786Z | 44 | PC: 15226 | Get time 0x15226: or dx, dx 0x15228: je 0x15222 0x1522a: mov word ptr [bp + 0x117], dx 0x1522e: call 0x25166 0x15231: pop dx 0x15232: pop cx 0x15233: mov ax, 1 0x15236: call 0x1525e 0x15239: lea dx, word ptr [bp + 0x248] 0x1523d: mov ah, 0x3e 0x1523f: int 0x21 0x15241: mov ax, 1 0x15244: pop cx 0x15245: call 0x15259 0x15248: mov ah, 0x4f 0x1524a: mov cx, 7 0x1524d: jmp 0x151af 0x15250: mov dx, 0x80 0x15253: dec byte ptr cs:[0x21e] 0x15258: ret |
| 2018-12-17T22:06:50.076971464Z | 64 | PC: 1517b | Write file or device (Write 293 bytes on handle 5) |
| 2018-12-17T22:06:50.079867968Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:50.0824505Z | 62 | PC: 15241 | Close file |
| 2018-12-17T22:06:50.089700978Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:50.099456016Z | 79 | PC: 151b1 | Find next file |
| 2018-12-17T22:06:50.103062896Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:50.108726119Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:50.121277789Z | 61 | PC: 151cc | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:06:50.1286494Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:50.130229516Z | 63 | PC: 151df | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:50.136708575Z | 87 | PC: 15262 | Get or set file date and time |
| 2018-12-17T22:06:50.139359942Z | 62 | PC: 15241 | Close file |
| 2018-12-17T22:06:50.147086255Z | 67 | PC: 1525d | Get or set file attributes |
| 2018-12-17T22:06:50.156992892Z | 79 | PC: 151b1 | Find next file |
| 2018-12-17T22:06:50.161804281Z | 9 | PC: 12bb5 | Display string (Could not find end pointer) |
| 2018-12-17T22:06:50.172353132Z | 76 | PC: 12bcb | Terminate with return code (Return code = '0') |