.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:14:14.716146515Z | 25 | PC: 12b73 | Get default drive |
| 2018-12-17T22:14:14.719333618Z | 26 | PC: 12b7f | Set disk transfer address |
| 2018-12-17T22:14:14.720285237Z | 17 | PC: 12b87 | Find first file |
| 2018-12-17T22:14:14.726728796Z | 26 | PC: 12b8f | Set disk transfer address |
| 2018-12-17T22:14:14.72829001Z | 15 | PC: 12b96 | Open file (Filename = '�SLEEP COM �d�L�L���L�����������????????COM�����������������������������5�Goat file (COM). Size=00000064h/0000000100d bytes.
$Z��� �!�L�!Infected Program!���������������������������������������������d�d� Zarina Tamara
$�:��V�<�u��U�������!���������') |
| 2018-12-17T22:14:14.734932637Z | 20 | PC: 12ba1 | Sequential read |
| 2018-12-17T22:14:14.742265998Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:14.746096822Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:14.761730841Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:14.769048029Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:14.774783632Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:14.779186984Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:14.78432563Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:14.78791402Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:14.794415146Z | 26 | PC: 12c20 | Set disk transfer address |
| 2018-12-17T22:14:14.795357178Z | 40 | PC: 12c27 | Random block write |
| 2018-12-17T22:14:14.79997999Z | 16 | PC: 12c2e | Close file |
| 2018-12-17T22:14:14.808765775Z | 26 | PC: 12b3a | Set disk transfer address |
| 2018-12-17T22:14:14.809858108Z | 18 | PC: 12b87 | Find next file |
| 2018-12-17T22:14:14.812206236Z | 26 | PC: 12b8f | Set disk transfer address |
| 2018-12-17T22:14:14.813913993Z | 15 | PC: 12b96 | Open file (Filename = '�PRINT COM ��"��M����"��M�����������????????COM�������������������������the mod 5h second.$�$.��0�������������������D������� ����D��Z���(���\������������D��F��J��L��J���e��J��M����Sup?
$�Waiting for ������d� Zarina Tamara
$�:��V�<�u��U�������!���������') |
| 2018-12-17T22:14:14.820665197Z | 20 | PC: 12ba1 | Sequential read |
| 2018-12-17T22:14:14.827940386Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:14.831832438Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:14.8409416Z | 26 | PC: 12c20 | Set disk transfer address |
| 2018-12-17T22:14:14.841927979Z | 40 | PC: 12c27 | Random block write |
| 2018-12-17T22:14:14.849881013Z | 16 | PC: 12c2e | Close file |
| 2018-12-17T22:14:14.858356104Z | 26 | PC: 12b3a | Set disk transfer address |
| 2018-12-17T22:14:14.859301375Z | 18 | PC: 12b87 | Find next file |
| 2018-12-17T22:14:14.862135387Z | 26 | PC: 12b8f | Set disk transfer address |
| 2018-12-17T22:14:14.863114015Z | 15 | PC: 12b96 | Open file (Filename = '�HELLO COM �d���L�L�����L��\��������????????COM����������������������������� �!�L�!Hello, World!
$�����������������������������������������������������������������������������������������������������������d� Zarina Tamara
$�:��V�<�u��U�������!���������') |
| 2018-12-17T22:14:14.869586765Z | 20 | PC: 12ba1 | Sequential read |
| 2018-12-17T22:14:14.877100359Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:14.880458658Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:14.891508936Z | 26 | PC: 12c20 | Set disk transfer address |
| 2018-12-17T22:14:14.89285645Z | 40 | PC: 12c27 | Random block write |
| 2018-12-17T22:14:14.900392548Z | 16 | PC: 12c2e | Close file |
| 2018-12-17T22:14:14.908336544Z | 26 | PC: 12b3a | Set disk transfer address |
| 2018-12-17T22:14:14.909672317Z | 18 | PC: 12b87 | Find next file |
| 2018-12-17T22:14:14.912229907Z | 26 | PC: 12b8f | Set disk transfer address |
| 2018-12-17T22:14:14.913351428Z | 15 | PC: 12b96 | Open file (Filename = '�PHANG COM ��r��L�L��r��L
����������????????COM�������������������������f������L�!f������ �!���!f1�f�Hello, Recurse!
$�����������zR��|����������������������������������������������������������������������\�d� Zarina Tamara
$�:��V�<�u��U�������!���������') |
| 2018-12-17T22:14:14.920257622Z | 20 | PC: 12ba1 | Sequential read |
| 2018-12-17T22:14:14.928085257Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:14.931392058Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:14.940894897Z | 26 | PC: 12c20 | Set disk transfer address |
| 2018-12-17T22:14:14.942055657Z | 40 | PC: 12c27 | Random block write |
| 2018-12-17T22:14:14.949627066Z | 16 | PC: 12c2e | Close file |
| 2018-12-17T22:14:14.958454898Z | 26 | PC: 12b3a | Set disk transfer address |
| 2018-12-17T22:14:14.959631297Z | 18 | PC: 12b87 | Find next file |
| 2018-12-17T22:14:14.962238969Z | 26 | PC: 12b8f | Set disk transfer address |
| 2018-12-17T22:14:14.963589263Z | 15 | PC: 12b96 | Open file (Filename = '�PRINTA~1COM �����M�������M�����������????????COM��������������������������
�� �!���L�!Hello, World!
$���������������������������������������������������������������������������������������������������������d� Zarina Tamara
$�:��V�<�u��U�������!���������') |
| 2018-12-17T22:14:14.970832848Z | 20 | PC: 12ba1 | Sequential read |
| 2018-12-17T22:14:14.977992075Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:14.981491549Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:14.990923377Z | 26 | PC: 12c20 | Set disk transfer address |
| 2018-12-17T22:14:14.991941281Z | 40 | PC: 12c27 | Random block write |
| 2018-12-17T22:14:14.999731003Z | 16 | PC: 12c2e | Close file |
| 2018-12-17T22:14:15.007964667Z | 26 | PC: 12b3a | Set disk transfer address |
| 2018-12-17T22:14:15.008882918Z | 18 | PC: 12b87 | Find next file |
| 2018-12-17T22:14:15.011302061Z | 26 | PC: 12b8f | Set disk transfer address |
| 2018-12-17T22:14:15.012289591Z | 15 | PC: 12b96 | Open file (Filename = '�MANDEL COM ��(��M����(��M�����������????????COM��������������������������
�� �!���L�!Hello, World!
$���������������������������������������������������������������������������������������������������������d� Zarina Tamara
$�:��V�<�u��U�������!���������') |
| 2018-12-17T22:14:15.018835707Z | 20 | PC: 12ba1 | Sequential read |
| 2018-12-17T22:14:15.026263674Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:15.029833839Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:15.038933776Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:15.046427679Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:15.051525923Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:15.054925671Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:15.060010297Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:15.063630033Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:15.06871972Z | 26 | PC: 12c20 | Set disk transfer address |
| 2018-12-17T22:14:15.069744631Z | 40 | PC: 12c27 | Random block write |
| 2018-12-17T22:14:15.074527473Z | 16 | PC: 12c2e | Close file |
| 2018-12-17T22:14:15.082645814Z | 26 | PC: 12b3a | Set disk transfer address |
| 2018-12-17T22:14:15.083607012Z | 18 | PC: 12b87 | Find next file |
| 2018-12-17T22:14:15.086963188Z | 26 | PC: 12b8f | Set disk transfer address |
| 2018-12-17T22:14:15.088354707Z | 15 | PC: 12b96 | Open file (Filename = '�PAH COM �������������M�����������????????COM�
�����������������������g��f�������YI����������YI���������!0������ ���������������@333333�333333�@����������@����������������������VBE2�����dg�G�f���d������d� Zarina Tamara
$�:��V�<�u��U�������!���������') |
| 2018-12-17T22:14:15.095241415Z | 20 | PC: 12ba1 | Sequential read |
| 2018-12-17T22:14:15.103641229Z | 39 | PC: 12bfa | Random block read |
| 2018-12-17T22:14:15.107973442Z | 40 | PC: 12c06 | Random block write |
| 2018-12-17T22:14:15.117909583Z | 26 | PC: 12c20 | Set disk transfer address |
| 2018-12-17T22:14:15.120386027Z | 40 | PC: 12c27 | Random block write |
| 2018-12-17T22:14:15.128062853Z | 16 | PC: 12c2e | Close file |
| 2018-12-17T22:14:15.136310816Z | 26 | PC: 12b3a | Set disk transfer address |
| 2018-12-17T22:14:15.138063265Z | 18 | PC: 12b87 | Find next file |
| 2018-12-17T22:14:15.14033739Z | 2 | PC: 12c35 | Character output (Char = '07') |
| 2018-12-17T22:14:15.14238643Z | 9 | PC: 12c3c | Display string (String= ' Zarina Tamara
') |
| 2018-12-17T22:14:15.147106361Z | 26 | PC: 12a40 | Set disk transfer address |
| 2018-12-17T22:14:15.148449988Z | 9 | PC: 12a82 | Display string (String= 'Goat file (COM). Size=00000064h/0000000100d bytes.
') |
| 2018-12-17T22:14:15.153957478Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |
