.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:15:28.387576382Z | 26 | PC: 12a8b | Set disk transfer address |
| 2018-12-17T22:15:28.389095931Z | 78 | PC: 12a95 | Find first file |
| 2018-12-17T22:15:28.394798582Z | 61 | PC: 12abc | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:15:28.401747367Z | 63 | PC: 12ac7 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:15:28.408585229Z | 62 | PC: 12aca | Close file |
| 2018-12-17T22:15:28.410230829Z | 67 | PC: 12aee | Get or set file attributes |
| 2018-12-17T22:15:28.42926347Z | 61 | PC: 12af2 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:15:28.436102567Z | 66 | PC: 12afa | Move file pointer |
| 2018-12-17T22:15:28.43789563Z | 44 | PC: 12b04 | Get time 0x12b04: cmp dl, 0 0x12b07: je 0x12b01 0x12b09: mov byte ptr [bp + 0x11c], dl 0x12b0d: mov ah, 0x40 0x12b0f: lea dx, word ptr [bp + 0x103] 0x12b13: mov cx, 0x1a 0x12b16: int3 0x12b17: lea si, word ptr [bp + 0x11d] 0x12b1b: lea di, word ptr [bp + 0x2a8] 0x12b1f: mov cx, 0x15d 0x12b22: mov dl, byte ptr [si] 0x12b24: xor dl, byte ptr [bp + 0x11c] 0x12b28: mov byte ptr [di], dl 0x12b2a: inc di 0x12b2b: inc si 0x12b2c: loop 0x12b22 0x12b2e: mov ah, 0x40 0x12b30: mov cx, 0x15d 0x12b33: lea dx, word ptr [bp + 0x2a8] 0x12b37: int3 |
| 2018-12-17T22:15:28.440237719Z | 64 | PC: 12b17 | Write file or device (Write 26 bytes on handle 5) |
| 2018-12-17T22:15:28.446912798Z | 64 | PC: 12b38 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:15:28.454810535Z | 66 | PC: 12b3f | Move file pointer |
| 2018-12-17T22:15:28.455915692Z | 64 | PC: 12b4e | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:15:28.462153643Z | 87 | PC: 12b5a | Get or set file date and time |
| 2018-12-17T22:15:28.464656726Z | 62 | PC: 12b5d | Close file |
| 2018-12-17T22:15:28.472230891Z | 67 | PC: 12b6b | Get or set file attributes |
| 2018-12-17T22:15:28.49228017Z | 79 | PC: 12a95 | Find next file |
| 2018-12-17T22:15:28.495011225Z | 61 | PC: 12abc | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:15:28.499148651Z | 63 | PC: 12ac7 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:15:28.505494928Z | 62 | PC: 12aca | Close file |
| 2018-12-17T22:15:28.50750944Z | 67 | PC: 12aee | Get or set file attributes |
| 2018-12-17T22:15:28.517744787Z | 61 | PC: 12af2 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:15:28.524687989Z | 66 | PC: 12afa | Move file pointer |
| 2018-12-17T22:15:28.527046215Z | 44 | PC: 12b04 | Get time 0x12b04: cmp dl, 0 0x12b07: je 0x12b01 0x12b09: mov byte ptr [bp + 0x11c], dl 0x12b0d: mov ah, 0x40 0x12b0f: lea dx, word ptr [bp + 0x103] 0x12b13: mov cx, 0x1a 0x12b16: int3 0x12b17: lea si, word ptr [bp + 0x11d] 0x12b1b: lea di, word ptr [bp + 0x2a8] 0x12b1f: mov cx, 0x15d 0x12b22: mov dl, byte ptr [si] 0x12b24: xor dl, byte ptr [bp + 0x11c] 0x12b28: mov byte ptr [di], dl 0x12b2a: inc di 0x12b2b: inc si 0x12b2c: loop 0x12b22 0x12b2e: mov ah, 0x40 0x12b30: mov cx, 0x15d 0x12b33: lea dx, word ptr [bp + 0x2a8] 0x12b37: int3 |
| 2018-12-17T22:15:28.529182081Z | 64 | PC: 12b17 | Write file or device (Write 26 bytes on handle 5) |
| 2018-12-17T22:15:28.531984062Z | 64 | PC: 12b38 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:15:28.534581081Z | 66 | PC: 12b3f | Move file pointer |
| 2018-12-17T22:15:28.535950383Z | 64 | PC: 12b4e | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:15:28.538341061Z | 87 | PC: 12b5a | Get or set file date and time |
| 2018-12-17T22:15:28.539624321Z | 62 | PC: 12b5d | Close file |
| 2018-12-17T22:15:28.54729993Z | 67 | PC: 12b6b | Get or set file attributes |
| 2018-12-17T22:15:28.557240663Z | 79 | PC: 12a95 | Find next file |
| 2018-12-17T22:15:28.55962684Z | 61 | PC: 12abc | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:15:28.566493741Z | 63 | PC: 12ac7 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:15:28.573295466Z | 62 | PC: 12aca | Close file |
| 2018-12-17T22:15:28.574434399Z | 67 | PC: 12aee | Get or set file attributes |
| 2018-12-17T22:15:28.59358878Z | 61 | PC: 12af2 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:15:28.600070125Z | 66 | PC: 12afa | Move file pointer |
| 2018-12-17T22:15:28.601322234Z | 44 | PC: 12b04 | Get time 0x12b04: cmp dl, 0 0x12b07: je 0x12b01 0x12b09: mov byte ptr [bp + 0x11c], dl 0x12b0d: mov ah, 0x40 0x12b0f: lea dx, word ptr [bp + 0x103] 0x12b13: mov cx, 0x1a 0x12b16: int3 0x12b17: lea si, word ptr [bp + 0x11d] 0x12b1b: lea di, word ptr [bp + 0x2a8] 0x12b1f: mov cx, 0x15d 0x12b22: mov dl, byte ptr [si] 0x12b24: xor dl, byte ptr [bp + 0x11c] 0x12b28: mov byte ptr [di], dl 0x12b2a: inc di 0x12b2b: inc si 0x12b2c: loop 0x12b22 0x12b2e: mov ah, 0x40 0x12b30: mov cx, 0x15d 0x12b33: lea dx, word ptr [bp + 0x2a8] 0x12b37: int3 |
| 2018-12-17T22:15:28.603735726Z | 64 | PC: 12b17 | Write file or device (Write 26 bytes on handle 5) |
| 2018-12-17T22:15:28.606529872Z | 64 | PC: 12b38 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:15:28.609733615Z | 66 | PC: 12b3f | Move file pointer |
| 2018-12-17T22:15:28.611198413Z | 64 | PC: 12b4e | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:15:28.613578743Z | 87 | PC: 12b5a | Get or set file date and time |
| 2018-12-17T22:15:28.614791977Z | 62 | PC: 12b5d | Close file |
| 2018-12-17T22:15:28.622422754Z | 67 | PC: 12b6b | Get or set file attributes |
| 2018-12-17T22:15:28.632207886Z | 26 | PC: 12aaa | Set disk transfer address |