.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:14:56.593801596Z | 26 | PC: 12a64 | Set disk transfer address |
| 2018-12-17T22:14:56.595472184Z | 78 | PC: 12a78 | Find first file |
| 2018-12-17T22:14:56.601250251Z | 61 | PC: 12b88 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:14:56.608117988Z | 63 | PC: 12b97 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:14:56.614471217Z | 66 | PC: 12ba6 | Move file pointer |
| 2018-12-17T22:14:56.615751512Z | 66 | PC: 12bb5 | Move file pointer |
| 2018-12-17T22:14:56.616957433Z | 64 | PC: 12bc1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:14:56.61965609Z | 66 | PC: 12bcd | Move file pointer |
| 2018-12-17T22:14:56.621023227Z | 44 | PC: 12bd1 | Get time 0x12bd1: mov byte ptr [bp + 0x1b4], dl 0x12bd5: call 0x12beb 0x12bd8: mov ah, 0x40 0x12bda: mov cx, 0x1b4 0x12bdd: lea dx, word ptr [bp + 6] 0x12be1: int 0x21 0x12be3: call 0x12beb 0x12be6: mov ah, 0x3e 0x12be8: int 0x21 0x12bea: ret 0x12beb: lea si, word ptr [bp + 0x11] 0x12bef: mov cx, 0x184 0x12bf2: xor byte ptr [si], 0 0x12bf5: inc si 0x12bf6: dec cx 0x12bf7: jne 0x12bf2 0x12bf9: ret 0x12bfa: add word ptr [bx], di 0x12bfc: aas 0x12bfd: aas |
| 2018-12-17T22:14:56.623147386Z | 64 | PC: 12be3 | Write file or device (Write 436 bytes on handle 5) |
| 2018-12-17T22:14:56.781885652Z | 62 | PC: 12bea | Close file |
| 2018-12-17T22:14:56.789796747Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T22:14:56.792377988Z | 61 | PC: 12b88 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:14:56.79855134Z | 63 | PC: 12b97 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:14:56.805823069Z | 66 | PC: 12ba6 | Move file pointer |
| 2018-12-17T22:14:56.807384254Z | 66 | PC: 12bb5 | Move file pointer |
| 2018-12-17T22:14:56.809335874Z | 64 | PC: 12bc1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:14:56.814030664Z | 66 | PC: 12bcd | Move file pointer |
| 2018-12-17T22:14:56.815706696Z | 44 | PC: 12bd1 | Get time 0x12bd1: mov byte ptr [bp + 0x1b4], dl 0x12bd5: call 0x12beb 0x12bd8: mov ah, 0x40 0x12bda: mov cx, 0x1b4 0x12bdd: lea dx, word ptr [bp + 6] 0x12be1: int 0x21 0x12be3: call 0x12beb 0x12be6: mov ah, 0x3e 0x12be8: int 0x21 0x12bea: ret 0x12beb: lea si, word ptr [bp + 0x11] 0x12bef: mov cx, 0x184 0x12bf2: xor byte ptr [si], 0x39 0x12bf5: inc si 0x12bf6: dec cx 0x12bf7: jne 0x12bf2 0x12bf9: ret 0x12bfa: add word ptr [bx], di 0x12bfc: aas 0x12bfd: aas |
| 2018-12-17T22:14:56.818236976Z | 64 | PC: 12be3 | Write file or device (Write 436 bytes on handle 5) |
| 2018-12-17T22:14:56.822025783Z | 62 | PC: 12bea | Close file |
| 2018-12-17T22:14:56.830690982Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T22:14:56.833150374Z | 61 | PC: 12b88 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:14:56.840018693Z | 63 | PC: 12b97 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:14:56.844688174Z | 66 | PC: 12ba6 | Move file pointer |
| 2018-12-17T22:14:56.846032226Z | 66 | PC: 12bb5 | Move file pointer |
| 2018-12-17T22:14:56.848123208Z | 64 | PC: 12bc1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:14:56.850926603Z | 66 | PC: 12bcd | Move file pointer |
| 2018-12-17T22:14:56.852465016Z | 44 | PC: 12bd1 | Get time 0x12bd1: mov byte ptr [bp + 0x1b4], dl 0x12bd5: call 0x12beb 0x12bd8: mov ah, 0x40 0x12bda: mov cx, 0x1b4 0x12bdd: lea dx, word ptr [bp + 6] 0x12be1: int 0x21 0x12be3: call 0x12beb 0x12be6: mov ah, 0x3e 0x12be8: int 0x21 0x12bea: ret 0x12beb: lea si, word ptr [bp + 0x11] 0x12bef: mov cx, 0x184 0x12bf2: xor byte ptr [si], 0x39 0x12bf5: inc si 0x12bf6: dec cx 0x12bf7: jne 0x12bf2 0x12bf9: ret 0x12bfa: add word ptr [bx], di 0x12bfc: aas 0x12bfd: aas |
| 2018-12-17T22:14:56.855278807Z | 64 | PC: 12be3 | Write file or device (Write 436 bytes on handle 5) |
| 2018-12-17T22:14:56.863420402Z | 62 | PC: 12bea | Close file |
| 2018-12-17T22:14:56.871290688Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T22:14:56.874409091Z | 61 | PC: 12b88 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:14:56.878646475Z | 63 | PC: 12b97 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:14:56.882763054Z | 66 | PC: 12ba6 | Move file pointer |
| 2018-12-17T22:14:56.884527927Z | 66 | PC: 12bb5 | Move file pointer |
| 2018-12-17T22:14:56.885944443Z | 64 | PC: 12bc1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:14:56.888421683Z | 66 | PC: 12bcd | Move file pointer |
| 2018-12-17T22:14:56.890154474Z | 44 | PC: 12bd1 | Get time 0x12bd1: mov byte ptr [bp + 0x1b4], dl 0x12bd5: call 0x12beb 0x12bd8: mov ah, 0x40 0x12bda: mov cx, 0x1b4 0x12bdd: lea dx, word ptr [bp + 6] 0x12be1: int 0x21 0x12be3: call 0x12beb 0x12be6: mov ah, 0x3e 0x12be8: int 0x21 0x12bea: ret 0x12beb: lea si, word ptr [bp + 0x11] 0x12bef: mov cx, 0x184 0x12bf2: xor byte ptr [si], 0x3f 0x12bf5: inc si 0x12bf6: dec cx 0x12bf7: jne 0x12bf2 0x12bf9: ret 0x12bfa: add word ptr [bx], di 0x12bfc: aas 0x12bfd: aas |
| 2018-12-17T22:14:56.891926366Z | 64 | PC: 12be3 | Write file or device (Write 436 bytes on handle 5) |
| 2018-12-17T22:14:56.894420054Z | 62 | PC: 12bea | Close file |
| 2018-12-17T22:14:56.900103912Z | 79 | PC: 12a78 | Find next file |
| 2018-12-17T22:14:56.90198205Z | 61 | PC: 12b88 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:14:56.906129706Z | 63 | PC: 12b97 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:14:56.910833117Z | 66 | PC: 12ba6 | Move file pointer |
| 2018-12-17T22:14:56.912203994Z | 66 | PC: 12bb5 | Move file pointer |
| 2018-12-17T22:14:56.913530921Z | 64 | PC: 12bc1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:14:56.916088463Z | 66 | PC: 12bcd | Move file pointer |
| 2018-12-17T22:14:56.917392695Z | 44 | PC: 12bd1 | Get time 0x12bd1: mov byte ptr [bp + 0x1b4], dl 0x12bd5: call 0x12beb 0x12bd8: mov ah, 0x40 0x12bda: mov cx, 0x1b4 0x12bdd: lea dx, word ptr [bp + 6] 0x12be1: int 0x21 0x12be3: call 0x12beb 0x12be6: mov ah, 0x3e 0x12be8: int 0x21 0x12bea: ret 0x12beb: lea si, word ptr [bp + 0x11] 0x12bef: mov cx, 0x184 0x12bf2: xor byte ptr [si], 0x3f 0x12bf5: inc si 0x12bf6: dec cx 0x12bf7: jne 0x12bf2 0x12bf9: ret 0x12bfa: add word ptr [bx], di 0x12bfc: aas 0x12bfd: aas |
| 2018-12-17T22:14:56.919120539Z | 64 | PC: 12be3 | Write file or device (Write 436 bytes on handle 5) |
| 2018-12-17T22:14:56.921645743Z | 62 | PC: 12bea | Close file |
| 2018-12-17T22:14:56.9288485Z | 26 | PC: 12a88 | Set disk transfer address |
| 2018-12-17T22:14:56.930331978Z | 9 | PC: 12aa6 | Display string (String= ' Nor dread nor hope attend A dying animal; A man awaits his end Dreading and hoping all. Death by W.B. Yeats ') |