.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T21:53:24.799564733Z | 26 | PC: 12afa | Set disk transfer address |
| 2018-12-17T21:53:24.801728583Z | 78 | PC: 12aa6 | Find first file |
| 2018-12-17T21:53:24.808275078Z | 78 | PC: 12b05 | Find first file |
| 2018-12-17T21:53:24.814518103Z | 47 | PC: 12b10 | Get disk transfer address |
| 2018-12-17T21:53:24.816037509Z | 61 | PC: 12b20 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T21:53:24.823093109Z | 87 | PC: 12b26 | Get or set file date and time |
| 2018-12-17T21:53:24.824767733Z | 63 | PC: 12b46 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:53:24.83115945Z | 66 | PC: 12b58 | Move file pointer |
| 2018-12-17T21:53:24.833467425Z | 64 | PC: 12b63 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:53:24.836367586Z | 66 | PC: 12b6c | Move file pointer |
| 2018-12-17T21:53:24.838209541Z | 44 | PC: 12a75 | Get time 0x12a75: mov byte ptr [bp + 0x12d], cl 0x12a79: mov cx, 0x12f 0x12a7c: lea si, word ptr [bp + 0x15e] 0x12a80: lea di, word ptr [bp + 0x275] 0x12a84: movsb byte ptr es:[di], byte ptr [si] 0x12a85: mov al, byte ptr [bp + 0x275] 0x12a89: xor al, byte ptr [bp + 0x12d] 0x12a8d: mov byte ptr [bp + 0x275], al 0x12a91: lea di, word ptr [si - 1] 0x12a94: lea si, word ptr [bp + 0x275] 0x12a98: movsb byte ptr es:[di], byte ptr [si] 0x12a99: mov si, di 0x12a9b: loop 0x12a80 0x12a9d: ret 0x12a9e: mov ah, 0x4e 0x12aa0: lea dx, word ptr [bp + 0x26f] 0x12aa4: int 0x21 0x12aa6: jb 0x12ae6 0x12aa8: lea dx, word ptr [bp + 0x2ab] 0x12aac: mov cl, 0x7a |
| 2018-12-17T21:53:24.846933564Z | 64 | PC: 12a60 | Write file or device (Write 397 bytes on handle 5) |
| 2018-12-17T21:53:24.86122464Z | 87 | PC: 12b7e | Get or set file date and time |
| 2018-12-17T21:53:24.863000168Z | 62 | PC: 12b82 | Close file |
| 2018-12-17T21:53:24.871919468Z | 79 | PC: 12b05 | Find next file |
| 2018-12-17T21:53:24.875140824Z | 47 | PC: 12b10 | Get disk transfer address |
| 2018-12-17T21:53:24.8766843Z | 61 | PC: 12b20 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T21:53:24.893261361Z | 87 | PC: 12b26 | Get or set file date and time |
| 2018-12-17T21:53:24.895701569Z | 63 | PC: 12b46 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:53:24.902878577Z | 66 | PC: 12b58 | Move file pointer |
| 2018-12-17T21:53:24.90504435Z | 64 | PC: 12b63 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:53:24.907633983Z | 66 | PC: 12b6c | Move file pointer |
| 2018-12-17T21:53:24.909234313Z | 44 | PC: 12a75 | Get time 0x12a75: mov byte ptr [bp + 0x12d], cl 0x12a79: mov cx, 0x12f 0x12a7c: lea si, word ptr [bp + 0x15e] 0x12a80: lea di, word ptr [bp + 0x275] 0x12a84: movsb byte ptr es:[di], byte ptr [si] 0x12a85: mov al, byte ptr [bp + 0x275] 0x12a89: xor al, byte ptr [bp + 0x12d] 0x12a8d: mov byte ptr [bp + 0x275], al 0x12a91: lea di, word ptr [si - 1] 0x12a94: lea si, word ptr [bp + 0x275] 0x12a98: movsb byte ptr es:[di], byte ptr [si] 0x12a99: mov si, di 0x12a9b: loop 0x12a80 0x12a9d: ret 0x12a9e: mov ah, 0x4e 0x12aa0: lea dx, word ptr [bp + 0x26f] 0x12aa4: int 0x21 0x12aa6: jb 0x12ae6 0x12aa8: lea dx, word ptr [bp + 0x2ab] 0x12aac: mov cl, 0x7a |
| 2018-12-17T21:53:24.912474197Z | 64 | PC: 12a60 | Write file or device (Write 397 bytes on handle 5) |
| 2018-12-17T21:53:24.924066872Z | 87 | PC: 12b7e | Get or set file date and time |
| 2018-12-17T21:53:24.925476509Z | 62 | PC: 12b82 | Close file |
| 2018-12-17T21:53:24.933663048Z | 79 | PC: 12b05 | Find next file |
| 2018-12-17T21:53:24.935544694Z | 47 | PC: 12b10 | Get disk transfer address |
| 2018-12-17T21:53:24.936453467Z | 61 | PC: 12b20 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T21:53:24.942617391Z | 87 | PC: 12b26 | Get or set file date and time |
| 2018-12-17T21:53:24.943786938Z | 63 | PC: 12b46 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T21:53:24.947782087Z | 66 | PC: 12b58 | Move file pointer |
| 2018-12-17T21:53:24.949406779Z | 64 | PC: 12b63 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T21:53:24.951328404Z | 66 | PC: 12b6c | Move file pointer |
| 2018-12-17T21:53:24.952477906Z | 44 | PC: 12a75 | Get time 0x12a75: mov byte ptr [bp + 0x12d], cl 0x12a79: mov cx, 0x12f 0x12a7c: lea si, word ptr [bp + 0x15e] 0x12a80: lea di, word ptr [bp + 0x275] 0x12a84: movsb byte ptr es:[di], byte ptr [si] 0x12a85: mov al, byte ptr [bp + 0x275] 0x12a89: xor al, byte ptr [bp + 0x12d] 0x12a8d: mov byte ptr [bp + 0x275], al 0x12a91: lea di, word ptr [si - 1] 0x12a94: lea si, word ptr [bp + 0x275] 0x12a98: movsb byte ptr es:[di], byte ptr [si] 0x12a99: mov si, di 0x12a9b: loop 0x12a80 0x12a9d: ret 0x12a9e: mov ah, 0x4e 0x12aa0: lea dx, word ptr [bp + 0x26f] 0x12aa4: int 0x21 0x12aa6: jb 0x12ae6 0x12aa8: lea dx, word ptr [bp + 0x2ab] 0x12aac: mov cl, 0x7a |
| 2018-12-17T21:53:24.954303856Z | 64 | PC: 12a60 | Write file or device (Write 397 bytes on handle 5) |
| 2018-12-17T21:53:24.95670271Z | 87 | PC: 12b7e | Get or set file date and time |
| 2018-12-17T21:53:24.957863685Z | 62 | PC: 12b82 | Close file |
| 2018-12-17T21:53:24.962516882Z | 26 | PC: 12b96 | Set disk transfer address |