.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:13:52.2853308Z | 26 | PC: 12b3e | Set disk transfer address |
| 2018-12-17T22:13:52.286869546Z | 78 | PC: 12b61 | Find first file |
| 2018-12-17T22:13:52.293864935Z | 61 | PC: 12b79 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:13:52.300577463Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:52.307742765Z | 66 | PC: 12bb0 | Move file pointer |
| 2018-12-17T22:13:52.309242791Z | 60 | PC: 12bbb | Create or truncate file |
| 2018-12-17T22:13:52.326359657Z | 64 | PC: 12bd8 | Write file or device (Write 554 bytes on handle 6) |
| 2018-12-17T22:13:52.342665187Z | 74 | PC: 12be3 | Reallocate memory |
| 2018-12-17T22:13:52.344790306Z | 72 | PC: 12bea | Allocate memory |
| 2018-12-17T22:13:52.346502699Z | 63 | PC: 12c01 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:13:52.349543107Z | 64 | PC: 12c09 | Write file or device (Write 407 bytes on handle 6) |
| 2018-12-17T22:13:52.352587141Z | 73 | PC: 12c0d | Release memory |
| 2018-12-17T22:13:52.353780887Z | 62 | PC: 12c17 | Close file |
| 2018-12-17T22:13:52.35565532Z | 62 | PC: 12c1f | Close file |
| 2018-12-17T22:13:52.364335838Z | 65 | PC: 12c27 | Delete file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:13:52.376700891Z | 86 | PC: 12c33 | Rename file |
| 2018-12-17T22:13:52.389567145Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:52.392571521Z | 61 | PC: 12b79 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:13:52.398992301Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:52.404182726Z | 66 | PC: 12bb0 | Move file pointer |
| 2018-12-17T22:13:52.406366278Z | 60 | PC: 12bbb | Create or truncate file |
| 2018-12-17T22:13:52.433555665Z | 64 | PC: 12bd8 | Write file or device (Write 554 bytes on handle 6) |
| 2018-12-17T22:13:52.44189452Z | 74 | PC: 12be3 | Reallocate memory |
| 2018-12-17T22:13:52.444342652Z | 72 | PC: 12bea | Allocate memory |
| 2018-12-17T22:13:52.446199795Z | 63 | PC: 12c01 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:13:52.449030235Z | 64 | PC: 12c09 | Write file or device (Write 27 bytes on handle 6) |
| 2018-12-17T22:13:52.464772265Z | 73 | PC: 12c0d | Release memory |
| 2018-12-17T22:13:52.466545839Z | 62 | PC: 12c17 | Close file |
| 2018-12-17T22:13:52.468697065Z | 62 | PC: 12c1f | Close file |
| 2018-12-17T22:13:52.478971516Z | 65 | PC: 12c27 | Delete file (Filename = 'PRINT.COM') |
| 2018-12-17T22:13:52.492198488Z | 86 | PC: 12c33 | Rename file |
| 2018-12-17T22:13:52.506049135Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:52.526670776Z | 61 | PC: 12b79 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:13:52.533982723Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:52.538592443Z | 66 | PC: 12bb0 | Move file pointer |
| 2018-12-17T22:13:52.540700584Z | 60 | PC: 12bbb | Create or truncate file |
| 2018-12-17T22:13:52.561828174Z | 64 | PC: 12bd8 | Write file or device (Write 554 bytes on handle 6) |
| 2018-12-17T22:13:52.570791166Z | 74 | PC: 12be3 | Reallocate memory |
| 2018-12-17T22:13:52.573041459Z | 72 | PC: 12bea | Allocate memory |
| 2018-12-17T22:13:52.574768572Z | 63 | PC: 12c01 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:13:52.577466738Z | 64 | PC: 12c09 | Write file or device (Write 92 bytes on handle 6) |
| 2018-12-17T22:13:52.581025984Z | 73 | PC: 12c0d | Release memory |
| 2018-12-17T22:13:52.582250683Z | 62 | PC: 12c17 | Close file |
| 2018-12-17T22:13:52.583934461Z | 62 | PC: 12c1f | Close file |
| 2018-12-17T22:13:52.592400687Z | 65 | PC: 12c27 | Delete file (Filename = 'HELLO.COM') |
| 2018-12-17T22:13:52.603077597Z | 86 | PC: 12c33 | Rename file |
| 2018-12-17T22:13:52.614391737Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:52.617953274Z | 61 | PC: 12b79 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:13:52.625082271Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:52.631791967Z | 66 | PC: 12bb0 | Move file pointer |
| 2018-12-17T22:13:52.633881526Z | 60 | PC: 12bbb | Create or truncate file |
| 2018-12-17T22:13:52.64603699Z | 64 | PC: 12bd8 | Write file or device (Write 554 bytes on handle 6) |
| 2018-12-17T22:13:52.654147585Z | 74 | PC: 12be3 | Reallocate memory |
| 2018-12-17T22:13:52.655620911Z | 72 | PC: 12bea | Allocate memory |
| 2018-12-17T22:13:52.658268408Z | 63 | PC: 12c01 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:13:52.661176951Z | 64 | PC: 12c09 | Write file or device (Write 29 bytes on handle 6) |
| 2018-12-17T22:13:52.664265175Z | 73 | PC: 12c0d | Release memory |
| 2018-12-17T22:13:52.666206918Z | 62 | PC: 12c17 | Close file |
| 2018-12-17T22:13:52.667945477Z | 62 | PC: 12c1f | Close file |
| 2018-12-17T22:13:52.676086914Z | 65 | PC: 12c27 | Delete file (Filename = 'PHANG.COM') |
| 2018-12-17T22:13:52.68845184Z | 86 | PC: 12c33 | Rename file |
| 2018-12-17T22:13:52.699822726Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:52.702756221Z | 61 | PC: 12b79 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:13:52.710178538Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:52.716648897Z | 66 | PC: 12bb0 | Move file pointer |
| 2018-12-17T22:13:52.718266296Z | 60 | PC: 12bbb | Create or truncate file |
| 2018-12-17T22:13:52.730012043Z | 64 | PC: 12bd8 | Write file or device (Write 554 bytes on handle 6) |
| 2018-12-17T22:13:52.738054418Z | 74 | PC: 12be3 | Reallocate memory |
| 2018-12-17T22:13:52.739720594Z | 72 | PC: 12bea | Allocate memory |
| 2018-12-17T22:13:52.742372528Z | 63 | PC: 12c01 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:13:52.745538991Z | 64 | PC: 12c09 | Write file or device (Write 29 bytes on handle 6) |
| 2018-12-17T22:13:52.74927047Z | 73 | PC: 12c0d | Release memory |
| 2018-12-17T22:13:52.75156724Z | 62 | PC: 12c17 | Close file |
| 2018-12-17T22:13:52.753887608Z | 62 | PC: 12c1f | Close file |
| 2018-12-17T22:13:52.762008313Z | 65 | PC: 12c27 | Delete file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:13:52.773253143Z | 86 | PC: 12c33 | Rename file |
| 2018-12-17T22:13:52.784286788Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:52.786748184Z | 61 | PC: 12b79 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:13:52.793828648Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:52.800264003Z | 66 | PC: 12bb0 | Move file pointer |
| 2018-12-17T22:13:52.80241562Z | 60 | PC: 12bbb | Create or truncate file |
| 2018-12-17T22:13:52.816419977Z | 64 | PC: 12bd8 | Write file or device (Write 554 bytes on handle 6) |
| 2018-12-17T22:13:52.82497011Z | 74 | PC: 12be3 | Reallocate memory |
| 2018-12-17T22:13:52.82645454Z | 72 | PC: 12bea | Allocate memory |
| 2018-12-17T22:13:52.82828796Z | 63 | PC: 12c01 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:13:52.834842554Z | 64 | PC: 12c09 | Write file or device (Write 501 bytes on handle 6) |
| 2018-12-17T22:13:52.84281239Z | 73 | PC: 12c0d | Release memory |
| 2018-12-17T22:13:52.844575584Z | 62 | PC: 12c17 | Close file |
| 2018-12-17T22:13:52.850308002Z | 62 | PC: 12c1f | Close file |
| 2018-12-17T22:13:52.858640253Z | 65 | PC: 12c27 | Delete file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:13:52.869796222Z | 86 | PC: 12c33 | Rename file |
| 2018-12-17T22:13:52.881848534Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:52.884756597Z | 61 | PC: 12b79 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:13:52.891509279Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:52.89852938Z | 66 | PC: 12bb0 | Move file pointer |
| 2018-12-17T22:13:52.900194167Z | 60 | PC: 12bbb | Create or truncate file |
| 2018-12-17T22:13:52.911357469Z | 64 | PC: 12bd8 | Write file or device (Write 554 bytes on handle 6) |
| 2018-12-17T22:13:52.920638229Z | 74 | PC: 12be3 | Reallocate memory |
| 2018-12-17T22:13:52.92219897Z | 72 | PC: 12bea | Allocate memory |
| 2018-12-17T22:13:52.924005313Z | 63 | PC: 12c01 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:13:52.927937489Z | 64 | PC: 12c09 | Write file or device (Write 29 bytes on handle 6) |
| 2018-12-17T22:13:52.930864975Z | 73 | PC: 12c0d | Release memory |
| 2018-12-17T22:13:52.932326596Z | 62 | PC: 12c17 | Close file |
| 2018-12-17T22:13:52.934736537Z | 62 | PC: 12c1f | Close file |
| 2018-12-17T22:13:52.942953958Z | 65 | PC: 12c27 | Delete file (Filename = 'PAH.COM') |
| 2018-12-17T22:13:52.953633796Z | 86 | PC: 12c33 | Rename file |
| 2018-12-17T22:13:52.965553289Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:52.968421681Z | 61 | PC: 12b79 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:13:52.975019802Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:52.982570412Z | 62 | PC: 12c3e | Close file |
| 2018-12-17T22:13:52.98447539Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:52.987331651Z | 61 | PC: 12b79 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:13:52.994864314Z | 63 | PC: 12b8b | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:13:53.001194778Z | 62 | PC: 12c3e | Close file |
| 2018-12-17T22:13:53.003045691Z | 79 | PC: 12b61 | Find next file |
| 2018-12-17T22:13:53.006114112Z | 9 | PC: 12c49 | Display string (String= '��[31m���� ��� �� ��������, ��� ������� ���������� ������ !�[37m') |
| 2018-12-17T22:13:53.010608574Z | 26 | PC: 12c51 | Set disk transfer address |
| 2018-12-17T22:13:53.01194231Z | 9 | PC: 12aa2 | Display string (String= 'ABCDE - This is a 100 byte COM test, 1994
') |
