.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:17:19.172640118Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T22:17:19.174321466Z | 37 | PC: 12a80 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:17:19.175255654Z | 37 | PC: 12a84 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:17:19.176171884Z | 78 | PC: 12acf | Find first file |
| 2018-12-17T22:17:19.180684172Z | 61 | PC: 12c68 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:17:19.187447478Z | 63 | PC: 12c77 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:17:19.193921932Z | 66 | PC: 12c86 | Move file pointer |
| 2018-12-17T22:17:19.197066256Z | 66 | PC: 12c95 | Move file pointer |
| 2018-12-17T22:17:19.198459477Z | 64 | PC: 12ca1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:17:19.201230394Z | 66 | PC: 12cad | Move file pointer |
| 2018-12-17T22:17:19.209025552Z | 44 | PC: 12cb1 | Get time 0x12cb1: mov byte ptr [bp + 0x294], dl 0x12cb5: call 0x12ccb 0x12cb8: mov ah, 0x40 0x12cba: mov cx, 0x294 0x12cbd: lea dx, word ptr [bp + 6] 0x12cc1: int 0x21 0x12cc3: call 0x12ccb 0x12cc6: mov ah, 0x3e 0x12cc8: int 0x21 0x12cca: ret 0x12ccb: lea si, word ptr [bp + 0x1f] 0x12ccf: mov cx, 0x256 0x12cd2: xor byte ptr [si], 0 0x12cd5: inc si 0x12cd6: dec cx 0x12cd7: jne 0x12cd2 0x12cd9: ret 0x12cda: add word ptr [bx], di 0x12cdc: aas 0x12cdd: aas |
| 2018-12-17T22:17:19.211643674Z | 64 | PC: 12cc3 | Write file or device (Write 660 bytes on handle 5) |
| 2018-12-17T22:17:19.226035329Z | 62 | PC: 12cca | Close file |
| 2018-12-17T22:17:19.234395976Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:17:19.237475914Z | 61 | PC: 12c68 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:17:19.243753145Z | 63 | PC: 12c77 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:17:19.251123788Z | 66 | PC: 12c86 | Move file pointer |
| 2018-12-17T22:17:19.252867009Z | 66 | PC: 12c95 | Move file pointer |
| 2018-12-17T22:17:19.254140881Z | 64 | PC: 12ca1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:17:19.256670863Z | 66 | PC: 12cad | Move file pointer |
| 2018-12-17T22:17:19.25861488Z | 44 | PC: 12cb1 | Get time 0x12cb1: mov byte ptr [bp + 0x294], dl 0x12cb5: call 0x12ccb 0x12cb8: mov ah, 0x40 0x12cba: mov cx, 0x294 0x12cbd: lea dx, word ptr [bp + 6] 0x12cc1: int 0x21 0x12cc3: call 0x12ccb 0x12cc6: mov ah, 0x3e 0x12cc8: int 0x21 0x12cca: ret 0x12ccb: lea si, word ptr [bp + 0x1f] 0x12ccf: mov cx, 0x256 0x12cd2: xor byte ptr [si], 0x41 0x12cd5: inc si 0x12cd6: dec cx 0x12cd7: jne 0x12cd2 0x12cd9: ret 0x12cda: add word ptr [bx], di 0x12cdc: aas 0x12cdd: aas |
| 2018-12-17T22:17:19.261072655Z | 64 | PC: 12cc3 | Write file or device (Write 660 bytes on handle 5) |
| 2018-12-17T22:17:19.269554381Z | 62 | PC: 12cca | Close file |
| 2018-12-17T22:17:19.278480664Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:17:19.281309016Z | 61 | PC: 12c68 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:17:19.288644968Z | 63 | PC: 12c77 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:17:19.295795757Z | 66 | PC: 12c86 | Move file pointer |
| 2018-12-17T22:17:19.297609574Z | 66 | PC: 12c95 | Move file pointer |
| 2018-12-17T22:17:19.299333083Z | 64 | PC: 12ca1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:17:19.302534539Z | 66 | PC: 12cad | Move file pointer |
| 2018-12-17T22:17:19.3039791Z | 44 | PC: 12cb1 | Get time 0x12cb1: mov byte ptr [bp + 0x294], dl 0x12cb5: call 0x12ccb 0x12cb8: mov ah, 0x40 0x12cba: mov cx, 0x294 0x12cbd: lea dx, word ptr [bp + 6] 0x12cc1: int 0x21 0x12cc3: call 0x12ccb 0x12cc6: mov ah, 0x3e 0x12cc8: int 0x21 0x12cca: ret 0x12ccb: lea si, word ptr [bp + 0x1f] 0x12ccf: mov cx, 0x256 0x12cd2: xor byte ptr [si], 0x47 0x12cd5: inc si 0x12cd6: dec cx 0x12cd7: jne 0x12cd2 0x12cd9: ret 0x12cda: add word ptr [bx], di 0x12cdc: aas 0x12cdd: aas |
| 2018-12-17T22:17:19.306231089Z | 64 | PC: 12cc3 | Write file or device (Write 660 bytes on handle 5) |
| 2018-12-17T22:17:19.317123259Z | 62 | PC: 12cca | Close file |
| 2018-12-17T22:17:19.325066528Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:17:19.328500876Z | 61 | PC: 12c68 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:17:19.336396685Z | 63 | PC: 12c77 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:17:19.343982112Z | 66 | PC: 12c86 | Move file pointer |
| 2018-12-17T22:17:19.345768054Z | 66 | PC: 12c95 | Move file pointer |
| 2018-12-17T22:17:19.348384518Z | 64 | PC: 12ca1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:17:19.351264782Z | 66 | PC: 12cad | Move file pointer |
| 2018-12-17T22:17:19.352786625Z | 44 | PC: 12cb1 | Get time 0x12cb1: mov byte ptr [bp + 0x294], dl 0x12cb5: call 0x12ccb 0x12cb8: mov ah, 0x40 0x12cba: mov cx, 0x294 0x12cbd: lea dx, word ptr [bp + 6] 0x12cc1: int 0x21 0x12cc3: call 0x12ccb 0x12cc6: mov ah, 0x3e 0x12cc8: int 0x21 0x12cca: ret 0x12ccb: lea si, word ptr [bp + 0x1f] 0x12ccf: mov cx, 0x256 0x12cd2: xor byte ptr [si], 0x47 0x12cd5: inc si 0x12cd6: dec cx 0x12cd7: jne 0x12cd2 0x12cd9: ret 0x12cda: add word ptr [bx], di 0x12cdc: aas 0x12cdd: aas |
| 2018-12-17T22:17:19.35535323Z | 64 | PC: 12cc3 | Write file or device (Write 660 bytes on handle 5) |
| 2018-12-17T22:17:19.363871719Z | 62 | PC: 12cca | Close file |
| 2018-12-17T22:17:19.379961902Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:17:19.383750158Z | 61 | PC: 12c68 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:17:19.39158695Z | 63 | PC: 12c77 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:17:19.398175183Z | 66 | PC: 12c86 | Move file pointer |
| 2018-12-17T22:17:19.399639327Z | 66 | PC: 12c95 | Move file pointer |
| 2018-12-17T22:17:19.402118441Z | 64 | PC: 12ca1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:17:19.405009416Z | 66 | PC: 12cad | Move file pointer |
| 2018-12-17T22:17:19.406719628Z | 44 | PC: 12cb1 | Get time 0x12cb1: mov byte ptr [bp + 0x294], dl 0x12cb5: call 0x12ccb 0x12cb8: mov ah, 0x40 0x12cba: mov cx, 0x294 0x12cbd: lea dx, word ptr [bp + 6] 0x12cc1: int 0x21 0x12cc3: call 0x12ccb 0x12cc6: mov ah, 0x3e 0x12cc8: int 0x21 0x12cca: ret 0x12ccb: lea si, word ptr [bp + 0x1f] 0x12ccf: mov cx, 0x256 0x12cd2: xor byte ptr [si], 0x4c 0x12cd5: inc si 0x12cd6: dec cx 0x12cd7: jne 0x12cd2 0x12cd9: ret 0x12cda: add word ptr [bx], di 0x12cdc: aas 0x12cdd: aas |
| 2018-12-17T22:17:19.410236786Z | 64 | PC: 12cc3 | Write file or device (Write 660 bytes on handle 5) |
| 2018-12-17T22:17:19.418874768Z | 62 | PC: 12cca | Close file |
| 2018-12-17T22:17:19.427500805Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:17:19.431087421Z | 61 | PC: 12c68 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:17:19.438064521Z | 63 | PC: 12c77 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:17:19.444492376Z | 66 | PC: 12c86 | Move file pointer |
| 2018-12-17T22:17:19.446382515Z | 66 | PC: 12c95 | Move file pointer |
| 2018-12-17T22:17:19.448753542Z | 64 | PC: 12ca1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:17:19.451628927Z | 66 | PC: 12cad | Move file pointer |
| 2018-12-17T22:17:19.454031434Z | 44 | PC: 12cb1 | Get time 0x12cb1: mov byte ptr [bp + 0x294], dl 0x12cb5: call 0x12ccb 0x12cb8: mov ah, 0x40 0x12cba: mov cx, 0x294 0x12cbd: lea dx, word ptr [bp + 6] 0x12cc1: int 0x21 0x12cc3: call 0x12ccb 0x12cc6: mov ah, 0x3e 0x12cc8: int 0x21 0x12cca: ret 0x12ccb: lea si, word ptr [bp + 0x1f] 0x12ccf: mov cx, 0x256 0x12cd2: xor byte ptr [si], 0x52 0x12cd5: inc si 0x12cd6: dec cx 0x12cd7: jne 0x12cd2 0x12cd9: ret 0x12cda: add word ptr [bx], di 0x12cdc: aas 0x12cdd: aas |
| 2018-12-17T22:17:19.457536646Z | 64 | PC: 12cc3 | Write file or device (Write 660 bytes on handle 5) |
| 2018-12-17T22:17:19.466589262Z | 62 | PC: 12cca | Close file |
| 2018-12-17T22:17:19.474659198Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:17:19.478476676Z | 61 | PC: 12c68 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:17:19.485124817Z | 63 | PC: 12c77 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:17:19.491557567Z | 66 | PC: 12c86 | Move file pointer |
| 2018-12-17T22:17:19.493966786Z | 66 | PC: 12c95 | Move file pointer |
| 2018-12-17T22:17:19.495298455Z | 64 | PC: 12ca1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:17:19.49781591Z | 66 | PC: 12cad | Move file pointer |
| 2018-12-17T22:17:19.499863035Z | 44 | PC: 12cb1 | Get time 0x12cb1: mov byte ptr [bp + 0x294], dl 0x12cb5: call 0x12ccb 0x12cb8: mov ah, 0x40 0x12cba: mov cx, 0x294 0x12cbd: lea dx, word ptr [bp + 6] 0x12cc1: int 0x21 0x12cc3: call 0x12ccb 0x12cc6: mov ah, 0x3e 0x12cc8: int 0x21 0x12cca: ret 0x12ccb: lea si, word ptr [bp + 0x1f] 0x12ccf: mov cx, 0x256 0x12cd2: xor byte ptr [si], 0x57 0x12cd5: inc si 0x12cd6: dec cx 0x12cd7: jne 0x12cd2 0x12cd9: ret 0x12cda: add word ptr [bx], di 0x12cdc: aas 0x12cdd: aas |
| 2018-12-17T22:17:19.502415259Z | 64 | PC: 12cc3 | Write file or device (Write 660 bytes on handle 5) |
| 2018-12-17T22:17:19.511023171Z | 62 | PC: 12cca | Close file |
| 2018-12-17T22:17:19.520283223Z | 26 | PC: 12ae9 | Set disk transfer address |
| 2018-12-17T22:17:19.522029206Z | 19 | PC: 12afb | Delete file |
| 2018-12-17T22:17:19.527989767Z | 9 | PC: 12b2d | Display string (String= 'The Harder You Work The Easier Someone Else Takes the Credit! It is time you should take that nap!!! ') |