.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:18:33.919358492Z | 26 | PC: 154ef | Set disk transfer address |
| 2018-12-17T22:18:33.920875691Z | 78 | PC: 15520 | Find first file |
| 2018-12-17T22:18:33.926359296Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.928689569Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.931462303Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.933788058Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.936158691Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.938838387Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.941345628Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.943608995Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.94638572Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.949382746Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.952347666Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.95526824Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.958034643Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.960950949Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.963636285Z | 79 | PC: 1552f | Find next file |
| 2018-12-17T22:18:33.965715287Z | 44 | PC: 14fbc | Get time 0x14fbc: mov ax, cx 0x14fbe: add ax, dx 0x14fc0: xor dx, dx 0x14fc2: idiv si 0x14fc4: mov ax, dx 0x14fc6: pop si 0x14fc7: pop dx 0x14fc8: pop cx 0x14fc9: ret 0x14fca: push ax 0x14fcb: push dx 0x14fcc: mov ah, 2 0x14fce: mov dl, 7 0x14fd0: int 0x21 0x14fd2: pop dx 0x14fd3: pop ax 0x14fd4: ret 0x14fd5: push ax 0x14fd6: push dx 0x14fd7: mov ah, 2 |
| 2018-12-17T22:18:33.967626237Z | 78 | PC: 1554b | Find first file |
| 2018-12-17T22:18:33.973340308Z | 79 | PC: 15571 | Find next file |
| 2018-12-17T22:18:33.975738231Z | 79 | PC: 15571 | Find next file |
| 2018-12-17T22:18:33.978069206Z | 79 | PC: 15571 | Find next file |
| 2018-12-17T22:18:33.981005839Z | 79 | PC: 15571 | Find next file |
| 2018-12-17T22:18:33.983518977Z | 79 | PC: 15571 | Find next file |
| 2018-12-17T22:18:33.985750957Z | 79 | PC: 15571 | Find next file |
| 2018-12-17T22:18:33.989269056Z | 79 | PC: 15571 | Find next file |
| 2018-12-17T22:18:33.991628639Z | 79 | PC: 15571 | Find next file |
| 2018-12-17T22:18:33.994107288Z | 67 | PC: 15134 | Get or set file attributes |
| 2018-12-17T22:18:34.000997343Z | 67 | PC: 15149 | Get or set file attributes |
| 2018-12-17T22:18:34.014502912Z | 61 | PC: 15156 | Open file (Filename = '\PHANG.COM') |
| 2018-12-17T22:18:34.020644068Z | 87 | PC: 15163 | Get or set file date and time |
| 2018-12-17T22:18:34.022488613Z | 44 | PC: 14fbc | Get time 0x14fbc: mov ax, cx 0x14fbe: add ax, dx 0x14fc0: xor dx, dx 0x14fc2: idiv si 0x14fc4: mov ax, dx 0x14fc6: pop si 0x14fc7: pop dx 0x14fc8: pop cx 0x14fc9: ret 0x14fca: push ax 0x14fcb: push dx 0x14fcc: mov ah, 2 0x14fce: mov dl, 7 0x14fd0: int 0x21 0x14fd2: pop dx 0x14fd3: pop ax 0x14fd4: ret 0x14fd5: push ax 0x14fd6: push dx 0x14fd7: mov ah, 2 |
| 2018-12-17T22:18:34.024020385Z | 66 | PC: 151d9 | Move file pointer |
| 2018-12-17T22:18:34.025137472Z | 63 | PC: 1523a | Read file or device (Read 35 bytes on handle 5) |
| 2018-12-17T22:18:34.029608316Z | 66 | PC: 151d9 | Move file pointer |
| 2018-12-17T22:18:34.030626343Z | 64 | PC: 1528f | Write file or device (Write 35 bytes on handle 5) |
| 2018-12-17T22:18:34.032373865Z | 66 | PC: 151fe | Move file pointer |
| 2018-12-17T22:18:34.034062955Z | 64 | PC: 14fa1 | Write file or device (Write 2232 bytes on handle 5) |
| 2018-12-17T22:18:34.039629319Z | 87 | PC: 1518a | Get or set file date and time |
| 2018-12-17T22:18:34.041070348Z | 62 | PC: 15190 | Close file |
| 2018-12-17T22:18:34.049100046Z | 67 | PC: 151a2 | Get or set file attributes |
| 2018-12-17T22:18:34.058806718Z | 48 | PC: 1504c | Get DOS version |
| 2018-12-17T22:18:34.060193101Z | 67 | PC: 15134 | Get or set file attributes |
| 2018-12-17T22:18:34.066980076Z | 67 | PC: 15149 | Get or set file attributes |
| 2018-12-17T22:18:34.076608514Z | 61 | PC: 15156 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:18:34.083139033Z | 87 | PC: 15163 | Get or set file date and time |
| 2018-12-17T22:18:34.085047818Z | 63 | PC: 15017 | Read file or device (Read 28 bytes on handle 5) |
| 2018-12-17T22:18:34.0877856Z | 66 | PC: 15090 | Move file pointer |
| 2018-12-17T22:18:34.089434387Z | 64 | PC: 150a0 | Write file or device (Write 2 bytes on handle 5) |
| 2018-12-17T22:18:34.096857571Z | 87 | PC: 1518a | Get or set file date and time |
| 2018-12-17T22:18:34.098790045Z | 62 | PC: 15190 | Close file |
| 2018-12-17T22:18:34.104750057Z | 67 | PC: 151a2 | Get or set file attributes |
| 2018-12-17T22:18:34.117833027Z | 26 | PC: 155c6 | Set disk transfer address |
| 2018-12-17T22:18:34.119017987Z | 76 | PC: 14f4d | Terminate with return code (Return code = '0') |