.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:20:07.259095934Z | 26 | PC: 12a6d | Set disk transfer address |
| 2018-12-17T22:20:07.26127849Z | 53 | PC: 12a73 | Get interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:20:07.263111099Z | 53 | PC: 12a80 | Get interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:20:07.264549208Z | 44 | PC: 12a8b | Get time 0x12a8b: cmp dl, 0xd
0x12a8e: jg 0x12a94
0x12a90: mov al, 0x82
0x12a92: out 0x21, al
0x12a94: lea dx, word ptr [bp + 0x2f7]
0x12a98: call 0x12bb2
0x12a9b: lea dx, word ptr [bp + 0x307]
0x12a9f: call 0x12bb2
0x12aa2: mov ah, 0x3c
0x12aa4: mov cx, 0
0x12aa7: lea dx, word ptr [bp + 0x319]
0x12aab: int 0x21
0x12aad: lea dx, word ptr [bp + 0x327]
0x12ab1: mov si, 0x1f
0x12ab4: nop
0x12ab5: call 0x12c03
0x12ab8: mov bx, ax
0x12aba: mov ax, 0x4000
0x12abd: mov cx, 0x1f
0x12ac0: nop
|
| 2018-12-17T22:20:07.26689699Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:07.276826045Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:07.282002709Z | 66 | PC: 12bd4 | Move file pointer |
| 2018-12-17T22:20:07.283744765Z | 64 | PC: 12be6 | Write file or device (Write 589 bytes on handle 5) |
| 2018-12-17T22:20:07.64266562Z | 66 | PC: 12bee | Move file pointer |
| 2018-12-17T22:20:07.644111495Z | 64 | PC: 12bf9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:20:07.647253128Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:07.655775546Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:07.665379783Z | 60 | PC: 12aad | Create or truncate file |
| 2018-12-17T22:20:07.676091497Z | 64 | PC: 12ac7 | Write file or device (Write 31 bytes on handle 5) |
| 2018-12-17T22:20:07.690659025Z | 62 | PC: 12ad7 | Close file |
| 2018-12-17T22:20:07.698242499Z | 44 | PC: 12adb | Get time 0x12adb: cmp dl, 0x32
0x12ade: jg 0x12b23
0x12ae0: mov si, 0x12
0x12ae3: lea dx, word ptr [bp + 0x1bb]
0x12ae7: call 0x12c03
0x12aea: mov ah, 9
0x12aec: int 0x21
0x12aee: mov si, 0x12
0x12af1: call 0x12c03
0x12af4: mov ah, 0
0x12af6: int 0x16
0x12af8: jmp 0x12b23
0x12afa: nop
0x12afb: dec cx
0x12afc: and byte ptr [bx + di + 0x6d], ah
0x12aff: and byte ptr [bx + di + 0x20], ah
0x12b02: inc dx
0x12b03: bound si, dword ptr fs:[di + 0x67]
0x12b08: and byte ptr [bx + di + 0x6e], ah
0x12b0b: and byte ptr fs:[bx + di + 0x4c], al
|
| 2018-12-17T22:20:07.700695525Z | 67 | PC: 12c1b | Get or set file attributes |
| 2018-12-17T22:20:07.707949429Z | 65 | PC: 12c1f | Delete file (Filename = '') |
| 2018-12-17T22:20:07.714255734Z | 78 | PC: 12b3f | Find first file |
| 2018-12-17T22:20:07.72029126Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:07.727272602Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:07.734567443Z | 66 | PC: 12bd4 | Move file pointer |
| 2018-12-17T22:20:07.736251627Z | 64 | PC: 12be6 | Write file or device (Write 589 bytes on handle 5) |
| 2018-12-17T22:20:07.750574644Z | 66 | PC: 12bee | Move file pointer |
| 2018-12-17T22:20:07.753140257Z | 64 | PC: 12bf9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:20:07.759668187Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:07.926493608Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:07.931011934Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:07.937555486Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:07.944080896Z | 66 | PC: 12bd4 | Move file pointer |
| 2018-12-17T22:20:07.946658994Z | 64 | PC: 12be6 | Write file or device (Write 589 bytes on handle 5) |
| 2018-12-17T22:20:08.099647184Z | 66 | PC: 12bee | Move file pointer |
| 2018-12-17T22:20:08.101040473Z | 64 | PC: 12bf9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:20:08.108094303Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.115948187Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.119260119Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.126590908Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.132714528Z | 66 | PC: 12bd4 | Move file pointer |
| 2018-12-17T22:20:08.134232926Z | 64 | PC: 12be6 | Write file or device (Write 589 bytes on handle 5) |
| 2018-12-17T22:20:08.141855919Z | 66 | PC: 12bee | Move file pointer |
| 2018-12-17T22:20:08.143470626Z | 64 | PC: 12bf9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:20:08.14980905Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.15783234Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.160891081Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.167451474Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.174462008Z | 66 | PC: 12bd4 | Move file pointer |
| 2018-12-17T22:20:08.177904696Z | 64 | PC: 12be6 | Write file or device (Write 589 bytes on handle 5) |
| 2018-12-17T22:20:08.187180218Z | 66 | PC: 12bee | Move file pointer |
| 2018-12-17T22:20:08.188987003Z | 64 | PC: 12bf9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:20:08.196718001Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.205358011Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.207813646Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.214607033Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.220627594Z | 66 | PC: 12bd4 | Move file pointer |
| 2018-12-17T22:20:08.222001724Z | 64 | PC: 12be6 | Write file or device (Write 589 bytes on handle 5) |
| 2018-12-17T22:20:08.230835863Z | 66 | PC: 12bee | Move file pointer |
| 2018-12-17T22:20:08.232182644Z | 64 | PC: 12bf9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:20:08.238563631Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.249196104Z | 42 | PC: 12b7a | Get date 0x12b7a: cmp dh, 0x11
0x12b7d: jl 0x12ba6
0x12b7f: cmp dl, 8
0x12b82: jl 0x12ba6
0x12b84: lea dx, word ptr [bp + 0x1bb]
0x12b88: mov si, 0x12
0x12b8b: call 0x12c03
0x12b8e: mov bx, dx
0x12b90: mov ah, 0x19
0x12b92: int 0x21
0x12b94: mov cx, 0x25
0x12b97: mov dx, 0
0x12b9a: push ds
0x12b9b: pop es
0x12b9c: mov byte ptr [bp + 0x262], 0x26
0x12ba1: int 0x19
0x12ba3: add sp, 2
0x12ba6: mov ah, 0x1a
0x12ba8: mov dx, 0x80
0x12bab: int 0x21
|
| 2018-12-17T22:20:08.251819577Z | 26 | PC: 12bad | Set disk transfer address |
| 2018-12-17T22:20:08.252897612Z | 26 | PC: 12a6d | Set disk transfer address |
| 2018-12-17T22:20:08.25465483Z | 53 | PC: 12a73 | Get interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:20:08.255778938Z | 53 | PC: 12a80 | Get interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:20:08.256863985Z | 44 | PC: 12a8b | Get time 0x12a8b: cmp dl, 0xd
0x12a8e: jg 0x12a94
0x12a90: mov al, 0x82
0x12a92: out 0x21, al
0x12a94: lea dx, word ptr [bp + 0x2f7]
0x12a98: call 0x12bb2
0x12a9b: lea dx, word ptr [bp + 0x307]
0x12a9f: call 0x12bb2
0x12aa2: mov ah, 0x3c
0x12aa4: mov cx, 0
0x12aa7: lea dx, word ptr [bp + 0x319]
0x12aab: int 0x21
0x12aad: lea dx, word ptr [bp + 0x327]
0x12ab1: mov si, 0x1f
0x12ab4: nop
0x12ab5: call 0x12c03
0x12ab8: mov bx, ax
0x12aba: mov ax, 0x4000
0x12abd: mov cx, 0x1f
0x12ac0: nop
|
| 2018-12-17T22:20:08.259756127Z | 61 | PC: 12bb7 | Open file (Filename = '��B+ə�!-�') |
| 2018-12-17T22:20:08.266358891Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.268905992Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.271848943Z | 61 | PC: 12bb7 | Open file (Filename = '@�M���') |
| 2018-12-17T22:20:08.278318693Z | 60 | PC: 12aad | Create or truncate file |
| 2018-12-17T22:20:08.289558599Z | 64 | PC: 12ac7 | Write file or device (Write 31 bytes on handle 5) |
| 2018-12-17T22:20:08.293439074Z | 62 | PC: 12ad7 | Close file |
| 2018-12-17T22:20:08.301184223Z | 44 | PC: 12adb | Get time 0x12adb: cmp dl, 0x32
0x12ade: jg 0x12b23
0x12ae0: mov si, 0x12
0x12ae3: lea dx, word ptr [bp + 0x1bb]
0x12ae7: call 0x12c03
0x12aea: mov ah, 9
0x12aec: int 0x21
0x12aee: mov si, 0x12
0x12af1: call 0x12c03
0x12af4: mov ah, 0
0x12af6: int 0x16
0x12af8: jmp 0x12b23
0x12afa: nop
0x12afb: dec cx
0x12afc: and byte ptr [bx + di + 0x6d], ah
0x12aff: and byte ptr [bx + di + 0x20], ah
0x12b02: inc dx
0x12b03: bound si, dword ptr fs:[di + 0x67]
0x12b08: and byte ptr [bx + di + 0x6e], ah
0x12b0b: and byte ptr fs:[bx + di + 0x4c], al
|
| 2018-12-17T22:20:08.303648262Z | 67 | PC: 12c1b | Get or set file attributes |
| 2018-12-17T22:20:08.310107285Z | 65 | PC: 12c1f | Delete file (Filename = '') |
| 2018-12-17T22:20:08.316153935Z | 78 | PC: 12b3f | Find first file |
| 2018-12-17T22:20:08.322584063Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.3300657Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.332917628Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.335627831Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.339196842Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.346146306Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.349711405Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.351672404Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.354803453Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.362348372Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.365618772Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.367593594Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.370469533Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.377466425Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.380978304Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.383033551Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.385780084Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.396567Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.399447418Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.401399487Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.405098834Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.411639918Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.418033943Z | 66 | PC: 12bd4 | Move file pointer |
| 2018-12-17T22:20:08.420407277Z | 64 | PC: 12be6 | Write file or device (Write 589 bytes on handle 5) |
| 2018-12-17T22:20:08.429099776Z | 66 | PC: 12bee | Move file pointer |
| 2018-12-17T22:20:08.430418438Z | 64 | PC: 12bf9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:20:08.437659275Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.445820309Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.448689286Z | 61 | PC: 12bb7 | Open file (Filename = '') |
| 2018-12-17T22:20:08.456554603Z | 63 | PC: 12bc5 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:20:08.463054672Z | 66 | PC: 12bd4 | Move file pointer |
| 2018-12-17T22:20:08.464675942Z | 64 | PC: 12be6 | Write file or device (Write 589 bytes on handle 5) |
| 2018-12-17T22:20:08.473696251Z | 66 | PC: 12bee | Move file pointer |
| 2018-12-17T22:20:08.475522585Z | 64 | PC: 12bf9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:20:08.482222217Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T22:20:08.491268428Z | 79 | PC: 12b3f | Find next file |
| 2018-12-17T22:20:08.493763177Z | 67 | PC: 12c1b | Get or set file attributes |
| 2018-12-17T22:20:08.499485042Z | 65 | PC: 12c1f | Delete file (Filename = '') |
| 2018-12-17T22:20:08.506056082Z | 59 | PC: 12b62 | Change current directory |
