.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:15:11.206604423Z | 26 | PC: 12a6c | Set disk transfer address |
| 2018-12-17T22:15:11.208211651Z | 37 | PC: 12a77 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:15:11.209329719Z | 37 | PC: 12a7b | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:15:11.21099276Z | 78 | PC: 12ac1 | Find first file |
| 2018-12-17T22:15:11.217361707Z | 61 | PC: 12b8a | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:15:11.224011325Z | 63 | PC: 12b99 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:15:11.230266065Z | 66 | PC: 12ba8 | Move file pointer |
| 2018-12-17T22:15:11.231936879Z | 66 | PC: 12bb7 | Move file pointer |
| 2018-12-17T22:15:11.234661921Z | 64 | PC: 12bc3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:15:11.241678221Z | 66 | PC: 12bcf | Move file pointer |
| 2018-12-17T22:15:11.243047213Z | 44 | PC: 12bd3 | Get time 0x12bd3: mov byte ptr [bp + 0x1b6], dl 0x12bd7: call 0x12bed 0x12bda: mov ah, 0x40 0x12bdc: mov cx, 0x1b6 0x12bdf: lea dx, word ptr [bp + 6] 0x12be3: int 0x21 0x12be5: call 0x12bed 0x12be8: mov ah, 0x3e 0x12bea: int 0x21 0x12bec: ret 0x12bed: lea si, word ptr [bp + 0x19] 0x12bf1: mov cx, 0x17e 0x12bf4: xor byte ptr [si], 0 0x12bf7: inc si 0x12bf8: dec cx 0x12bf9: jne 0x12bf4 0x12bfb: ret 0x12bfc: add word ptr [bx], di 0x12bfe: aas 0x12bff: aas |
| 2018-12-17T22:15:11.245594591Z | 64 | PC: 12be5 | Write file or device (Write 438 bytes on handle 5) |
| 2018-12-17T22:15:11.259230382Z | 62 | PC: 12bec | Close file |
| 2018-12-17T22:15:11.267510335Z | 79 | PC: 12ac1 | Find next file |
| 2018-12-17T22:15:11.28107732Z | 61 | PC: 12b8a | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:15:11.28862756Z | 63 | PC: 12b99 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:15:11.294885563Z | 66 | PC: 12ba8 | Move file pointer |
| 2018-12-17T22:15:11.296724816Z | 66 | PC: 12bb7 | Move file pointer |
| 2018-12-17T22:15:11.298298888Z | 64 | PC: 12bc3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:15:11.301088675Z | 66 | PC: 12bcf | Move file pointer |
| 2018-12-17T22:15:11.308786599Z | 44 | PC: 12bd3 | Get time 0x12bd3: mov byte ptr [bp + 0x1b6], dl 0x12bd7: call 0x12bed 0x12bda: mov ah, 0x40 0x12bdc: mov cx, 0x1b6 0x12bdf: lea dx, word ptr [bp + 6] 0x12be3: int 0x21 0x12be5: call 0x12bed 0x12be8: mov ah, 0x3e 0x12bea: int 0x21 0x12bec: ret 0x12bed: lea si, word ptr [bp + 0x19] 0x12bf1: mov cx, 0x17e 0x12bf4: xor byte ptr [si], 0x3e 0x12bf7: inc si 0x12bf8: dec cx 0x12bf9: jne 0x12bf4 0x12bfb: ret 0x12bfc: add word ptr [bx], di 0x12bfe: aas 0x12bff: aas |
| 2018-12-17T22:15:11.311006154Z | 64 | PC: 12be5 | Write file or device (Write 438 bytes on handle 5) |
| 2018-12-17T22:15:11.313674629Z | 62 | PC: 12bec | Close file |
| 2018-12-17T22:15:11.337259049Z | 79 | PC: 12ac1 | Find next file |
| 2018-12-17T22:15:11.339754479Z | 61 | PC: 12b8a | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:15:11.346037144Z | 63 | PC: 12b99 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:15:11.353220414Z | 66 | PC: 12ba8 | Move file pointer |
| 2018-12-17T22:15:11.354588961Z | 66 | PC: 12bb7 | Move file pointer |
| 2018-12-17T22:15:11.35584793Z | 64 | PC: 12bc3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:15:11.35904753Z | 66 | PC: 12bcf | Move file pointer |
| 2018-12-17T22:15:11.360353519Z | 44 | PC: 12bd3 | Get time 0x12bd3: mov byte ptr [bp + 0x1b6], dl 0x12bd7: call 0x12bed 0x12bda: mov ah, 0x40 0x12bdc: mov cx, 0x1b6 0x12bdf: lea dx, word ptr [bp + 6] 0x12be3: int 0x21 0x12be5: call 0x12bed 0x12be8: mov ah, 0x3e 0x12bea: int 0x21 0x12bec: ret 0x12bed: lea si, word ptr [bp + 0x19] 0x12bf1: mov cx, 0x17e 0x12bf4: xor byte ptr [si], 0x44 0x12bf7: inc si 0x12bf8: dec cx 0x12bf9: jne 0x12bf4 0x12bfb: ret 0x12bfc: add word ptr [bx], di 0x12bfe: aas 0x12bff: aas |
| 2018-12-17T22:15:11.362523398Z | 64 | PC: 12be5 | Write file or device (Write 438 bytes on handle 5) |
| 2018-12-17T22:15:11.371208696Z | 62 | PC: 12bec | Close file |
| 2018-12-17T22:15:11.379455033Z | 79 | PC: 12ac1 | Find next file |
| 2018-12-17T22:15:11.382005999Z | 61 | PC: 12b8a | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:15:11.388970752Z | 63 | PC: 12b99 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:15:11.409827498Z | 66 | PC: 12ba8 | Move file pointer |
| 2018-12-17T22:15:11.411151759Z | 66 | PC: 12bb7 | Move file pointer |
| 2018-12-17T22:15:11.41394759Z | 64 | PC: 12bc3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:15:11.416598748Z | 66 | PC: 12bcf | Move file pointer |
| 2018-12-17T22:15:11.417971452Z | 44 | PC: 12bd3 | Get time 0x12bd3: mov byte ptr [bp + 0x1b6], dl 0x12bd7: call 0x12bed 0x12bda: mov ah, 0x40 0x12bdc: mov cx, 0x1b6 0x12bdf: lea dx, word ptr [bp + 6] 0x12be3: int 0x21 0x12be5: call 0x12bed 0x12be8: mov ah, 0x3e 0x12bea: int 0x21 0x12bec: ret 0x12bed: lea si, word ptr [bp + 0x19] 0x12bf1: mov cx, 0x17e 0x12bf4: xor byte ptr [si], 0x44 0x12bf7: inc si 0x12bf8: dec cx 0x12bf9: jne 0x12bf4 0x12bfb: ret 0x12bfc: add word ptr [bx], di 0x12bfe: aas 0x12bff: aas |
| 2018-12-17T22:15:11.429538235Z | 64 | PC: 12be5 | Write file or device (Write 438 bytes on handle 5) |
| 2018-12-17T22:15:11.432430225Z | 62 | PC: 12bec | Close file |
| 2018-12-17T22:15:11.453875843Z | 79 | PC: 12ac1 | Find next file |
| 2018-12-17T22:15:11.458811259Z | 61 | PC: 12b8a | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:15:11.466112517Z | 63 | PC: 12b99 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:15:11.472566761Z | 66 | PC: 12ba8 | Move file pointer |
| 2018-12-17T22:15:11.474207083Z | 66 | PC: 12bb7 | Move file pointer |
| 2018-12-17T22:15:11.476058023Z | 64 | PC: 12bc3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:15:11.478712321Z | 66 | PC: 12bcf | Move file pointer |
| 2018-12-17T22:15:11.480088102Z | 44 | PC: 12bd3 | Get time 0x12bd3: mov byte ptr [bp + 0x1b6], dl 0x12bd7: call 0x12bed 0x12bda: mov ah, 0x40 0x12bdc: mov cx, 0x1b6 0x12bdf: lea dx, word ptr [bp + 6] 0x12be3: int 0x21 0x12be5: call 0x12bed 0x12be8: mov ah, 0x3e 0x12bea: int 0x21 0x12bec: ret 0x12bed: lea si, word ptr [bp + 0x19] 0x12bf1: mov cx, 0x17e 0x12bf4: xor byte ptr [si], 0x49 0x12bf7: inc si 0x12bf8: dec cx 0x12bf9: jne 0x12bf4 0x12bfb: ret 0x12bfc: add word ptr [bx], di 0x12bfe: aas 0x12bff: aas |
| 2018-12-17T22:15:11.483133667Z | 64 | PC: 12be5 | Write file or device (Write 438 bytes on handle 5) |
| 2018-12-17T22:15:11.486181337Z | 62 | PC: 12bec | Close file |
| 2018-12-17T22:15:11.494135653Z | 79 | PC: 12ac1 | Find next file |
| 2018-12-17T22:15:11.498278802Z | 61 | PC: 12b8a | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:15:11.505264711Z | 63 | PC: 12b99 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:15:11.512038968Z | 66 | PC: 12ba8 | Move file pointer |
| 2018-12-17T22:15:11.515588608Z | 66 | PC: 12bb7 | Move file pointer |
| 2018-12-17T22:15:11.517752329Z | 64 | PC: 12bc3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:15:11.520779241Z | 66 | PC: 12bcf | Move file pointer |
| 2018-12-17T22:15:11.523386639Z | 44 | PC: 12bd3 | Get time 0x12bd3: mov byte ptr [bp + 0x1b6], dl 0x12bd7: call 0x12bed 0x12bda: mov ah, 0x40 0x12bdc: mov cx, 0x1b6 0x12bdf: lea dx, word ptr [bp + 6] 0x12be3: int 0x21 0x12be5: call 0x12bed 0x12be8: mov ah, 0x3e 0x12bea: int 0x21 0x12bec: ret 0x12bed: lea si, word ptr [bp + 0x19] 0x12bf1: mov cx, 0x17e 0x12bf4: xor byte ptr [si], 0x4f 0x12bf7: inc si 0x12bf8: dec cx 0x12bf9: jne 0x12bf4 0x12bfb: ret 0x12bfc: add word ptr [bx], di 0x12bfe: aas 0x12bff: aas |
| 2018-12-17T22:15:11.526423889Z | 64 | PC: 12be5 | Write file or device (Write 438 bytes on handle 5) |
| 2018-12-17T22:15:11.534968195Z | 62 | PC: 12bec | Close file |
| 2018-12-17T22:15:11.544808556Z | 79 | PC: 12ac1 | Find next file |
| 2018-12-17T22:15:11.547843506Z | 61 | PC: 12b8a | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:15:11.554711454Z | 63 | PC: 12b99 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:15:11.562182512Z | 66 | PC: 12ba8 | Move file pointer |
| 2018-12-17T22:15:11.564080681Z | 66 | PC: 12bb7 | Move file pointer |
| 2018-12-17T22:15:11.565984253Z | 64 | PC: 12bc3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:15:11.570096943Z | 66 | PC: 12bcf | Move file pointer |
| 2018-12-17T22:15:11.572039574Z | 44 | PC: 12bd3 | Get time 0x12bd3: mov byte ptr [bp + 0x1b6], dl 0x12bd7: call 0x12bed 0x12bda: mov ah, 0x40 0x12bdc: mov cx, 0x1b6 0x12bdf: lea dx, word ptr [bp + 6] 0x12be3: int 0x21 0x12be5: call 0x12bed 0x12be8: mov ah, 0x3e 0x12bea: int 0x21 0x12bec: ret 0x12bed: lea si, word ptr [bp + 0x19] 0x12bf1: mov cx, 0x17e 0x12bf4: xor byte ptr [si], 0x54 0x12bf7: inc si 0x12bf8: dec cx 0x12bf9: jne 0x12bf4 0x12bfb: ret 0x12bfc: add word ptr [bx], di 0x12bfe: aas 0x12bff: aas |
| 2018-12-17T22:15:11.574816462Z | 64 | PC: 12be5 | Write file or device (Write 438 bytes on handle 5) |
| 2018-12-17T22:15:11.578099974Z | 62 | PC: 12bec | Close file |
| 2018-12-17T22:15:11.586955553Z | 79 | PC: 12ac1 | Find next file |
| 2018-12-17T22:15:11.590621265Z | 61 | PC: 12b8a | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:15:11.597350218Z | 63 | PC: 12b99 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:15:11.600765868Z | 62 | PC: 12bec | Close file |
| 2018-12-17T22:15:11.602917355Z | 79 | PC: 12ac1 | Find next file |
| 2018-12-17T22:15:11.605647232Z | 59 | PC: 12ad2 | Change current directory |
| 2018-12-17T22:15:11.610976439Z | 26 | PC: 12adb | Set disk transfer address |
| 2018-12-17T22:15:11.612390577Z | 9 | PC: 12aed | Display string (String= 'IT IS THEM!!!!!!! Hope you like ants! ') |