.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T21:52:18.701412369Z | 51 | PC: 132a3 | Get or set Ctrl-Break |
| 2018-12-17T21:52:18.702892896Z | 71 | PC: 131bb | Get current directory |
| 2018-12-17T21:52:18.705272235Z | 42 | PC: 1320e | Get date 0x1320e: mov word ptr [bp + 1], cx 0x13211: mov byte ptr [bp + 3], dh 0x13214: mov byte ptr [bp + 4], dl 0x13217: ret 0x13218: mov byte ptr [bp + 0xd], 0 0x1321c: push es 0x1321d: mov cx, 5 0x13220: xor di, di 0x13222: mov es, word ptr cs:[0x2c] 0x13227: cmp byte ptr es:[di], 0 0x1322b: je 0x1324c 0x1322d: mov cx, 5 0x13230: lea si, word ptr [bp + 0x47] 0x13233: repe cmpsb byte ptr [si], byte ptr es:[di] 0x13235: je 0x13241 0x13237: cmp byte ptr es:[di - 1], 0 0x1323c: je 0x13227 0x1323e: inc di 0x1323f: jmp 0x13237 0x13241: mov ax, es |
| 2018-12-17T21:52:18.706794099Z | 42 | PC: 13256 | Get date 0x13256: mov bx, dx 0x13258: mov ax, cx 0x1325a: sub ax, word ptr [bp + 1] 0x1325d: mov cx, 0x16d 0x13260: imul cx 0x13262: push ax 0x13263: xor ax, ax 0x13265: mov al, bh 0x13267: sub al, byte ptr [bp + 3] 0x1326a: mov cx, 0x1e 0x1326d: imul cx 0x1326f: push ax 0x13270: xor ax, ax 0x13272: mov al, bl 0x13274: sub al, byte ptr [bp + 4] 0x13277: pop bx 0x13278: add ax, bx 0x1327a: pop bx 0x1327b: add ax, bx 0x1327d: cmp ax, 0x1e |
| 2018-12-17T21:52:18.70909909Z | 78 | PC: 1313c | Find first file |
| 2018-12-17T21:52:18.713007941Z | 67 | PC: 13078 | Get or set file attributes |
| 2018-12-17T21:52:18.716915735Z | 61 | PC: 1304f | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T21:52:18.721308007Z | 87 | PC: 13121 | Get or set file date and time |
| 2018-12-17T21:52:18.722328628Z | 66 | PC: 130ac | Move file pointer |
| 2018-12-17T21:52:18.723263089Z | 66 | PC: 130bc | Move file pointer |
| 2018-12-17T21:52:18.724405665Z | 67 | PC: 13094 | Get or set file attributes |
| 2018-12-17T21:52:18.74244613Z | 62 | PC: 13064 | Close file |
| 2018-12-17T21:52:18.744062649Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T21:52:18.746886463Z | 67 | PC: 13078 | Get or set file attributes |
| 2018-12-17T21:52:18.757067731Z | 61 | PC: 1304f | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T21:52:18.768218578Z | 87 | PC: 13121 | Get or set file date and time |
| 2018-12-17T21:52:18.771285779Z | 66 | PC: 130ac | Move file pointer |
| 2018-12-17T21:52:18.773150133Z | 66 | PC: 130bc | Move file pointer |
| 2018-12-17T21:52:18.774493423Z | 67 | PC: 13094 | Get or set file attributes |
| 2018-12-17T21:52:18.783880033Z | 62 | PC: 13064 | Close file |
| 2018-12-17T21:52:18.786003002Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T21:52:18.789163406Z | 67 | PC: 13078 | Get or set file attributes |
| 2018-12-17T21:52:18.79494408Z | 61 | PC: 1304f | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T21:52:18.80174744Z | 87 | PC: 13121 | Get or set file date and time |
| 2018-12-17T21:52:18.80307744Z | 66 | PC: 130ac | Move file pointer |
| 2018-12-17T21:52:18.804524356Z | 66 | PC: 130bc | Move file pointer |
| 2018-12-17T21:52:18.806321444Z | 67 | PC: 13094 | Get or set file attributes |
| 2018-12-17T21:52:18.815843917Z | 62 | PC: 13064 | Close file |
| 2018-12-17T21:52:18.817989699Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T21:52:18.820672607Z | 67 | PC: 13078 | Get or set file attributes |
| 2018-12-17T21:52:18.827812365Z | 61 | PC: 1304f | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T21:52:18.832200004Z | 87 | PC: 13121 | Get or set file date and time |
| 2018-12-17T21:52:18.833685932Z | 66 | PC: 130ac | Move file pointer |
| 2018-12-17T21:52:18.834666487Z | 66 | PC: 130bc | Move file pointer |
| 2018-12-17T21:52:18.83560321Z | 67 | PC: 13094 | Get or set file attributes |
| 2018-12-17T21:52:18.842121469Z | 62 | PC: 13064 | Close file |
| 2018-12-17T21:52:18.843331929Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T21:52:18.845623465Z | 67 | PC: 13078 | Get or set file attributes |
| 2018-12-17T21:52:18.850071058Z | 61 | PC: 1304f | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T21:52:18.85410338Z | 87 | PC: 13121 | Get or set file date and time |
| 2018-12-17T21:52:18.855057215Z | 66 | PC: 130ac | Move file pointer |
| 2018-12-17T21:52:18.856598719Z | 66 | PC: 130bc | Move file pointer |
| 2018-12-17T21:52:18.857566203Z | 67 | PC: 13094 | Get or set file attributes |
| 2018-12-17T21:52:18.863563826Z | 62 | PC: 13064 | Close file |
| 2018-12-17T21:52:18.865076563Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T21:52:18.867022335Z | 67 | PC: 13078 | Get or set file attributes |
| 2018-12-17T21:52:18.870787493Z | 61 | PC: 1304f | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T21:52:18.878717338Z | 87 | PC: 13121 | Get or set file date and time |
| 2018-12-17T21:52:18.879728037Z | 66 | PC: 130ac | Move file pointer |
| 2018-12-17T21:52:18.880856224Z | 66 | PC: 130bc | Move file pointer |
| 2018-12-17T21:52:18.882201009Z | 67 | PC: 13094 | Get or set file attributes |
| 2018-12-17T21:52:18.890161966Z | 62 | PC: 13064 | Close file |
| 2018-12-17T21:52:18.891604413Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T21:52:18.894233473Z | 67 | PC: 13078 | Get or set file attributes |
| 2018-12-17T21:52:18.901516115Z | 61 | PC: 1304f | Open file (Filename = 'PAH.COM') |
| 2018-12-17T21:52:18.905597058Z | 87 | PC: 13121 | Get or set file date and time |
| 2018-12-17T21:52:18.907437037Z | 66 | PC: 130ac | Move file pointer |
| 2018-12-17T21:52:18.90874889Z | 66 | PC: 130bc | Move file pointer |
| 2018-12-17T21:52:18.910152952Z | 67 | PC: 13094 | Get or set file attributes |
| 2018-12-17T21:52:18.917794017Z | 62 | PC: 13064 | Close file |
| 2018-12-17T21:52:18.91911072Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T21:52:18.921136684Z | 67 | PC: 13078 | Get or set file attributes |
| 2018-12-17T21:52:18.927037581Z | 61 | PC: 1304f | Open file (Filename = 'TEST.COM') |
| 2018-12-17T21:52:18.933442917Z | 87 | PC: 13121 | Get or set file date and time |
| 2018-12-17T21:52:18.934674494Z | 66 | PC: 130ac | Move file pointer |
| 2018-12-17T21:52:18.936338853Z | 66 | PC: 130bc | Move file pointer |
| 2018-12-17T21:52:18.937763973Z | 66 | PC: 13109 | Move file pointer |
| 2018-12-17T21:52:18.938934636Z | 63 | PC: 130d7 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:52:18.945369619Z | 67 | PC: 13094 | Get or set file attributes |
| 2018-12-17T21:52:18.957938317Z | 62 | PC: 13064 | Close file |
| 2018-12-17T21:52:18.986872997Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T21:52:18.989613743Z | 59 | PC: 131cd | Change current directory |
| 2018-12-17T21:52:18.993414678Z | 51 | PC: 132ac | Get or set Ctrl-Break |
| 2018-12-17T21:52:18.994224869Z | 76 | PC: 12e28 | Terminate with return code (Return code = '0') |