.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:15:28.226566554Z | 9 | PC: 12aef | Display string (String= 'Upgrade Commander v2.9 Copyright (c) 1994 Infiltrator ') |
| 2018-12-17T23:15:28.229659935Z | 67 | PC: 12af7 | Get or set file attributes |
| 2018-12-17T23:15:28.233208837Z | 67 | PC: 12b04 | Get or set file attributes |
| 2018-12-17T23:15:30.401966562Z | 61 | PC: 12b09 | Open file (Filename = 'c:\command.com') |
| 2018-12-17T23:15:30.410089406Z | 87 | PC: 12b15 | Get or set file date and time |
| 2018-12-17T23:15:30.411734003Z | 66 | PC: 12b2a | Move file pointer |
| 2018-12-17T23:15:30.413098526Z | 66 | PC: 12b3e | Move file pointer |
| 2018-12-17T23:15:30.414476714Z | 63 | PC: 12b48 | Read file or device (Read 10 bytes on handle 5) |
| 2018-12-17T23:15:30.418092651Z | 66 | PC: 12b6c | Move file pointer |
| 2018-12-17T23:15:30.419457617Z | 63 | PC: 12b76 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T23:15:30.422152444Z | 66 | PC: 12b8e | Move file pointer |
| 2018-12-17T23:15:30.424174002Z | 64 | PC: 12b9d | Write file or device (Write 2 bytes on handle 5) |
| 2018-12-17T23:15:30.427148351Z | 42 | PC: 12ba1 | Get date 0x12ba1: add dl, 7 0x12ba4: cmp dl, 0x1f 0x12ba7: jbe 0x12bb6 0x12ba9: sub dl, 0x1f 0x12bac: inc dh 0x12bae: cmp dh, 0xc 0x12bb1: jbe 0x12bb6 0x12bb3: inc cx 0x12bb4: mov dh, 1 0x12bb6: mov word ptr [0x2a3], cx 0x12bba: mov byte ptr [0x2a5], dh 0x12bbe: mov byte ptr [0x2a6], dl 0x12bc2: mov ax, 0x4200 0x12bc5: mov cx, 0 0x12bc8: add word ptr [0x179], 3 0x12bcd: mov dx, word ptr [0x179] 0x12bd1: int 0x21 0x12bd3: mov ah, 0x40 0x12bd5: mov cx, 0xc2 0x12bd8: mov dx, 0x2a0 |
| 2018-12-17T23:15:30.429533308Z | 66 | PC: 12bd3 | Move file pointer |
| 2018-12-17T23:15:30.431456816Z | 64 | PC: 12bdd | Write file or device (Write 194 bytes on handle 5) |
| 2018-12-17T23:15:30.434739642Z | 9 | PC: 12ca9 | Display string (String= ' Command.com successfully upgraded! ') |
| 2018-12-17T23:15:30.440565841Z | 87 | PC: 12cb6 | Get or set file date and time |
| 2018-12-17T23:15:30.442865063Z | 62 | PC: 12cbe | Close file |
| 2018-12-17T23:15:30.51383638Z | 67 | PC: 12cca | Get or set file attributes |
| 2018-12-17T23:15:30.525384078Z | 76 | PC: 12ccf | Terminate with return code (Return code = '0') |