{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4203,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:08.829330303Z | 26 | PC: 12a66 | Set disk transfer address |
| 2018-12-25T11:51:08.831227494Z | 71 | PC: 12a70 | Get current directory |
| 2018-12-25T11:51:08.834405048Z | 78 | PC: 12a86 | Find first file |
| 2018-12-25T11:51:08.840897783Z | 67 | PC: 12ab7 | Get or set file attributes |
| 2018-12-25T11:51:08.846960776Z | 67 | PC: 12ac7 | Get or set file attributes |
| 2018-12-25T11:51:08.864994353Z | 61 | PC: 12ad0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:51:08.878157172Z | 87 | PC: 12ad6 | Get or set file date and time |
| 2018-12-25T11:51:08.879547588Z | 63 | PC: 12aeb | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:51:08.887179566Z | 66 | PC: 12b50 | Move file pointer |
| 2018-12-25T11:51:08.888591796Z | 64 | PC: 12b5b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:51:08.891374431Z | 66 | PC: 12b63 | Move file pointer |
| 2018-12-25T11:51:08.893191769Z | 64 | PC: 12b6e | Write file or device (Write 890 bytes on handle 5) |
| 2018-12-25T11:51:08.902976201Z | 87 | PC: 12b0d | Get or set file date and time |
| 2018-12-25T11:51:08.904578155Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T11:51:08.916466944Z | 62 | PC: 12b1f | Close file |
| 2018-12-25T11:51:08.923975194Z | 78 | PC: 12bca | Find first file |
| 2018-12-25T11:51:08.930202489Z | 78 | PC: 12bf2 | Find first file |
| 2018-12-25T11:51:08.937056979Z | 79 | PC: 12aaa | Find next file |
| 2018-12-25T11:51:08.939729233Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:08.951264024Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:08.965555848Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:08.972684206Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:08.973958436Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:08.981061142Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:08.982977625Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:08.98631006Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:08.989119088Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:08.998835599Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:09.004402051Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.016224445Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:09.02444194Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:09.03084272Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:09.0374467Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:09.040586783Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.046744245Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.057564678Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:09.071434557Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:09.073481139Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:09.081535525Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:09.083871587Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:09.086832231Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:09.088842844Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:09.098120396Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:09.099772014Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.111562573Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:09.124067711Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:09.131043297Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:09.137471581Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:09.140545223Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.153064304Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.163796843Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:09.171126125Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:09.17280165Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:09.17978545Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:09.181194453Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:09.184563355Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:09.185956045Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:09.194702545Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:09.196803901Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.208593245Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:09.216694541Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:09.224445345Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:09.230764471Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:09.233439665Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.240230851Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.25113391Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:09.263677034Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:09.266021721Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:09.273466122Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:09.275148668Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:09.280542637Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:09.283055942Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:09.292466773Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:09.294637266Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:09.307256633Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:09.314946418Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:09.321398826Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:09.328295289Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:09.340657916Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:09.347033871Z | 59 | PC: 12b81 | Change current directory |
| 2018-12-25T11:51:09.349471819Z | 42 | PC: 12b85 | Get date 0x12b85: cmp dh, 0xa 0x12b88: jne 0x12b91 0x12b8a: cmp dl, 0x15 0x12b8d: jne 0x12b91 0x12b8f: jmp 0x12ba8 0x12b91: lea dx, word ptr [bp + 0x44b] 0x12b95: mov ah, 9 0x12b97: int 0x21 0x12b99: int 0x20 0x12b9b: mov ah, 0x3b 0x12b9d: lea dx, word ptr [bp + 0x417] 0x12ba1: int 0x21 0x12ba3: jb 0x12b75 0x12ba5: jmp 0x12a76 0x12ba8: mov al, 2 0x12baa: mov cx, 0x29a 0x12bad: mov dx, 0 0x12bb0: mov bx, 0x2c9 0x12bb3: int 0x26 0x12bb5: lea dx, word ptr [bp + 0x466] |
| 2018-12-25T11:51:09.352278043Z | 9 | PC: 12b99 | Display string (String= 'Bad command or file name ') |
{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4203,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:10.033578656Z | 26 | PC: 12a66 | Set disk transfer address |
| 2018-12-25T11:51:10.035455023Z | 71 | PC: 12a70 | Get current directory |
| 2018-12-25T11:51:10.03795385Z | 78 | PC: 12a86 | Find first file |
| 2018-12-25T11:51:10.043172486Z | 67 | PC: 12ab7 | Get or set file attributes |
| 2018-12-25T11:51:10.048903039Z | 67 | PC: 12ac7 | Get or set file attributes |
| 2018-12-25T11:51:10.06399919Z | 61 | PC: 12ad0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:51:10.073903629Z | 87 | PC: 12ad6 | Get or set file date and time |
| 2018-12-25T11:51:10.075770814Z | 63 | PC: 12aeb | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:51:10.081590684Z | 66 | PC: 12b50 | Move file pointer |
| 2018-12-25T11:51:10.082834034Z | 64 | PC: 12b5b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:51:10.086742036Z | 66 | PC: 12b63 | Move file pointer |
| 2018-12-25T11:51:10.088044074Z | 64 | PC: 12b6e | Write file or device (Write 890 bytes on handle 5) |
| 2018-12-25T11:51:10.095633575Z | 87 | PC: 12b0d | Get or set file date and time |
| 2018-12-25T11:51:10.097470785Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T11:51:10.107050361Z | 62 | PC: 12b1f | Close file |
| 2018-12-25T11:51:10.113224315Z | 78 | PC: 12bca | Find first file |
| 2018-12-25T11:51:10.118953532Z | 78 | PC: 12bf2 | Find first file |
| 2018-12-25T11:51:10.124533191Z | 79 | PC: 12aaa | Find next file |
| 2018-12-25T11:51:10.126715303Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.139084521Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.152583834Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:10.165418383Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:10.167113645Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:10.175303704Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:10.177179487Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:10.181138925Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:10.183379983Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:10.191581432Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:10.193422363Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.205141617Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:10.211259881Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:10.217047184Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:10.223791552Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:10.227197767Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.237914028Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.248224081Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:10.255226988Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:10.256771254Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:10.2639891Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:10.265485868Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:10.2680462Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:10.269542584Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:10.277715545Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:10.279012543Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.289783236Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:10.297614975Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:10.303215665Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:10.308851414Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:10.311547316Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.316851756Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.327324624Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:10.33412214Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:10.335322577Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:10.341683729Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:10.343621123Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:10.346159667Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:10.347431638Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:10.355723943Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:10.35732764Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.369031457Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:10.376248644Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:10.382111112Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:10.387902815Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:10.396823144Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.402168768Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.414113401Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:10.425428859Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:10.426819183Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:10.433261628Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:10.447801243Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:10.450736465Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:10.452006107Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:10.460772249Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:10.462267749Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:10.473196891Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:10.480491496Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:10.486666161Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:10.492935925Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:10.499570616Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:10.505239378Z | 59 | PC: 12b81 | Change current directory |
| 2018-12-25T11:51:10.50720593Z | 42 | PC: 12b85 | Get date 0x12b85: cmp dh, 0xa 0x12b88: jne 0x12b91 0x12b8a: cmp dl, 0x15 0x12b8d: jne 0x12b91 0x12b8f: jmp 0x12ba8 0x12b91: lea dx, word ptr [bp + 0x44b] 0x12b95: mov ah, 9 0x12b97: int 0x21 0x12b99: int 0x20 0x12b9b: mov ah, 0x3b 0x12b9d: lea dx, word ptr [bp + 0x417] 0x12ba1: int 0x21 0x12ba3: jb 0x12b75 0x12ba5: jmp 0x12a76 0x12ba8: mov al, 2 0x12baa: mov cx, 0x29a 0x12bad: mov dx, 0 0x12bb0: mov bx, 0x2c9 0x12bb3: int 0x26 0x12bb5: lea dx, word ptr [bp + 0x466] |
| 2018-12-25T11:51:10.509960689Z | 9 | PC: 12b99 | Display string (String= 'Bad command or file name ') |
{"DateBased":true,"Day":21,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4203,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:11.115673699Z | 26 | PC: 12a66 | Set disk transfer address |
| 2018-12-25T11:51:11.117308226Z | 71 | PC: 12a70 | Get current directory |
| 2018-12-25T11:51:11.120004517Z | 78 | PC: 12a86 | Find first file |
| 2018-12-25T11:51:11.125673328Z | 67 | PC: 12ab7 | Get or set file attributes |
| 2018-12-25T11:51:11.137464217Z | 67 | PC: 12ac7 | Get or set file attributes |
| 2018-12-25T11:51:11.157630658Z | 61 | PC: 12ad0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:51:11.164282965Z | 87 | PC: 12ad6 | Get or set file date and time |
| 2018-12-25T11:51:11.166338841Z | 63 | PC: 12aeb | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:51:11.173413544Z | 66 | PC: 12b50 | Move file pointer |
| 2018-12-25T11:51:11.175157498Z | 64 | PC: 12b5b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:51:11.177995469Z | 66 | PC: 12b63 | Move file pointer |
| 2018-12-25T11:51:11.179844988Z | 64 | PC: 12b6e | Write file or device (Write 890 bytes on handle 5) |
| 2018-12-25T11:51:11.187892593Z | 87 | PC: 12b0d | Get or set file date and time |
| 2018-12-25T11:51:11.189255522Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T11:51:11.199548532Z | 62 | PC: 12b1f | Close file |
| 2018-12-25T11:51:11.206362523Z | 78 | PC: 12bca | Find first file |
| 2018-12-25T11:51:11.212616419Z | 78 | PC: 12bf2 | Find first file |
| 2018-12-25T11:51:11.224140951Z | 79 | PC: 12aaa | Find next file |
| 2018-12-25T11:51:11.226817985Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.232474739Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.242821283Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:11.270883869Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:11.272474342Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:11.277359501Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:11.278379062Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:11.280105077Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:11.28161488Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:11.28706921Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:11.288404632Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.296089643Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:11.300541091Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:11.304304265Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:11.308406022Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:11.310699856Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.317502744Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.325739809Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:11.333047347Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:11.334102302Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:11.346448882Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:11.347888746Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:11.35062397Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:11.352602254Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:11.360416279Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:11.361726586Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.371932825Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:11.379679968Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:11.385499899Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:11.391238606Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:11.394022364Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.404286895Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.416129874Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:11.423317445Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:11.424505482Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:11.430624048Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:11.432808204Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:11.435659888Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:11.436885191Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:11.444814445Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:11.44616336Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.456203581Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:11.463224994Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:11.468889544Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:11.474443163Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:11.476917018Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.487715632Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.49720634Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:11.503710179Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:11.50503845Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:11.511082995Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:11.512832072Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:11.515250198Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:11.516450486Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:11.524358722Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:11.526193836Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:11.536932753Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:11.543648092Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:11.550225348Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:11.555772565Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:11.56187889Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:11.56581713Z | 59 | PC: 12b81 | Change current directory |
| 2018-12-25T11:51:11.568029024Z | 42 | PC: 12b85 | Get date 0x12b85: cmp dh, 0xa 0x12b88: jne 0x12b91 0x12b8a: cmp dl, 0x15 0x12b8d: jne 0x12b91 0x12b8f: jmp 0x12ba8 0x12b91: lea dx, word ptr [bp + 0x44b] 0x12b95: mov ah, 9 0x12b97: int 0x21 0x12b99: int 0x20 0x12b9b: mov ah, 0x3b 0x12b9d: lea dx, word ptr [bp + 0x417] 0x12ba1: int 0x21 0x12ba3: jb 0x12b75 0x12ba5: jmp 0x12a76 0x12ba8: mov al, 2 0x12baa: mov cx, 0x29a 0x12bad: mov dx, 0 0x12bb0: mov bx, 0x2c9 0x12bb3: int 0x26 0x12bb5: lea dx, word ptr [bp + 0x466] |
| 2018-12-25T11:51:11.570664345Z | 9 | PC: 12bbd | Display string (String= 'Happy Birthday Freaky!') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4203,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:15.425106009Z | 26 | PC: 12a66 | Set disk transfer address |
| 2018-12-25T11:51:15.426315958Z | 71 | PC: 12a70 | Get current directory |
| 2018-12-25T11:51:15.430281978Z | 78 | PC: 12a86 | Find first file |
| 2018-12-25T11:51:15.437328205Z | 67 | PC: 12ab7 | Get or set file attributes |
| 2018-12-25T11:51:15.443961032Z | 67 | PC: 12ac7 | Get or set file attributes |
| 2018-12-25T11:51:15.462285134Z | 61 | PC: 12ad0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:51:15.474975725Z | 87 | PC: 12ad6 | Get or set file date and time |
| 2018-12-25T11:51:15.476541203Z | 63 | PC: 12aeb | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:51:15.485320954Z | 66 | PC: 12b50 | Move file pointer |
| 2018-12-25T11:51:15.48686984Z | 64 | PC: 12b5b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:51:15.496296459Z | 66 | PC: 12b63 | Move file pointer |
| 2018-12-25T11:51:15.499017628Z | 64 | PC: 12b6e | Write file or device (Write 890 bytes on handle 5) |
| 2018-12-25T11:51:15.509403669Z | 87 | PC: 12b0d | Get or set file date and time |
| 2018-12-25T11:51:15.511365323Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T11:51:15.523342988Z | 62 | PC: 12b1f | Close file |
| 2018-12-25T11:51:15.533142533Z | 78 | PC: 12bca | Find first file |
| 2018-12-25T11:51:15.539872083Z | 78 | PC: 12bf2 | Find first file |
| 2018-12-25T11:51:15.546499975Z | 79 | PC: 12aaa | Find next file |
| 2018-12-25T11:51:15.550789931Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.563746039Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.574824482Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:15.582839184Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:15.584582976Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:15.591928153Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:15.594401788Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:15.597625253Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:15.599575853Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:15.609958446Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:15.611849116Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.624266434Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:15.63257489Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:15.640312611Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:15.647725272Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:15.651005393Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.658265981Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.672274308Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:15.685924088Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:15.688942154Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:15.696535754Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:15.698453692Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:15.702699288Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:15.715373273Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:15.724448899Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:15.726992969Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.739311784Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:15.747571609Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:15.759546253Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:15.776842518Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:15.780191288Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.786491798Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.797791522Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:15.805106683Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:15.828531518Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:15.836728116Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:15.838398011Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:15.841597416Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:15.844223419Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:15.853371352Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:15.855461589Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.868388336Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:15.877061125Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:15.884001584Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:15.890796786Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:15.894963413Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.902483946Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.913588574Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:15.927767822Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:15.929691649Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:15.937564508Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:15.940629026Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:15.944321335Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:15.946236768Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:15.956055522Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:15.958391341Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.970375585Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:15.978380142Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:15.987404352Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:15.994209256Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.006894166Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.014692492Z | 59 | PC: 12b81 | Change current directory |
| 2018-12-25T11:51:16.017756213Z | 42 | PC: 12b85 | Get date 0x12b85: cmp dh, 0xa 0x12b88: jne 0x12b91 0x12b8a: cmp dl, 0x15 0x12b8d: jne 0x12b91 0x12b8f: jmp 0x12ba8 0x12b91: lea dx, word ptr [bp + 0x44b] 0x12b95: mov ah, 9 0x12b97: int 0x21 0x12b99: int 0x20 0x12b9b: mov ah, 0x3b 0x12b9d: lea dx, word ptr [bp + 0x417] 0x12ba1: int 0x21 0x12ba3: jb 0x12b75 0x12ba5: jmp 0x12a76 0x12ba8: mov al, 2 0x12baa: mov cx, 0x29a 0x12bad: mov dx, 0 0x12bb0: mov bx, 0x2c9 0x12bb3: int 0x26 0x12bb5: lea dx, word ptr [bp + 0x466] |
| 2018-12-25T11:51:16.020501142Z | 9 | PC: 12b99 | Display string (String= 'Bad command or file name ') |
{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4203,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:15.849399735Z | 26 | PC: 12a66 | Set disk transfer address |
| 2018-12-25T11:51:15.851187502Z | 71 | PC: 12a70 | Get current directory |
| 2018-12-25T11:51:15.855443336Z | 78 | PC: 12a86 | Find first file |
| 2018-12-25T11:51:15.873990581Z | 67 | PC: 12ab7 | Get or set file attributes |
| 2018-12-25T11:51:15.887501283Z | 67 | PC: 12ac7 | Get or set file attributes |
| 2018-12-25T11:51:15.905905464Z | 61 | PC: 12ad0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:51:15.913662519Z | 87 | PC: 12ad6 | Get or set file date and time |
| 2018-12-25T11:51:15.91580772Z | 63 | PC: 12aeb | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:51:15.924479257Z | 66 | PC: 12b50 | Move file pointer |
| 2018-12-25T11:51:15.926266165Z | 64 | PC: 12b5b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:51:15.93118562Z | 66 | PC: 12b63 | Move file pointer |
| 2018-12-25T11:51:15.934051451Z | 64 | PC: 12b6e | Write file or device (Write 890 bytes on handle 5) |
| 2018-12-25T11:51:15.94380826Z | 87 | PC: 12b0d | Get or set file date and time |
| 2018-12-25T11:51:15.945910013Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T11:51:15.958667783Z | 62 | PC: 12b1f | Close file |
| 2018-12-25T11:51:15.967209754Z | 78 | PC: 12bca | Find first file |
| 2018-12-25T11:51:15.97470548Z | 78 | PC: 12bf2 | Find first file |
| 2018-12-25T11:51:15.981912079Z | 79 | PC: 12aaa | Find next file |
| 2018-12-25T11:51:15.985265344Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:15.992269337Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.00383717Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:16.017696783Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.019409376Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:16.026705498Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:16.032842473Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:16.036702697Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:16.038352744Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:16.047726263Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.049635309Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.062191122Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:16.070748086Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.077426461Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.084015976Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:16.087924292Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.100713347Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.111858391Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:16.120385094Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.122534948Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:16.132230269Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:16.134755433Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:16.138024703Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:16.139811641Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:16.149319522Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.152006243Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.164475614Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:16.172434898Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.180926436Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.188058233Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:16.191546057Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.199126674Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.213336558Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:16.226645115Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.230716393Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:16.238096646Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:16.23967263Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:16.242830087Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:16.244718911Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:16.253898852Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.255656252Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.268119658Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:16.275927194Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.282760997Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.290676728Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:16.293967319Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.30116691Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.312679933Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:16.320292213Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.322028717Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:16.330091218Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:16.331792419Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:16.334901416Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:16.337538668Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:16.346660324Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.348815644Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.36123051Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:16.370398918Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.377227472Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.383970597Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.39148365Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.398091944Z | 59 | PC: 12b81 | Change current directory |
| 2018-12-25T11:51:16.400209099Z | 42 | PC: 12b85 | Get date 0x12b85: cmp dh, 0xa 0x12b88: jne 0x12b91 0x12b8a: cmp dl, 0x15 0x12b8d: jne 0x12b91 0x12b8f: jmp 0x12ba8 0x12b91: lea dx, word ptr [bp + 0x44b] 0x12b95: mov ah, 9 0x12b97: int 0x21 0x12b99: int 0x20 0x12b9b: mov ah, 0x3b 0x12b9d: lea dx, word ptr [bp + 0x417] 0x12ba1: int 0x21 0x12ba3: jb 0x12b75 0x12ba5: jmp 0x12a76 0x12ba8: mov al, 2 0x12baa: mov cx, 0x29a 0x12bad: mov dx, 0 0x12bb0: mov bx, 0x2c9 0x12bb3: int 0x26 0x12bb5: lea dx, word ptr [bp + 0x466] |
| 2018-12-25T11:51:16.403767044Z | 9 | PC: 12b99 | Display string (String= 'Bad command or file name ') |
{"DateBased":true,"Day":21,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4203,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:16.478896404Z | 26 | PC: 12a66 | Set disk transfer address |
| 2018-12-25T11:51:16.481263547Z | 71 | PC: 12a70 | Get current directory |
| 2018-12-25T11:51:16.484425249Z | 78 | PC: 12a86 | Find first file |
| 2018-12-25T11:51:16.491325713Z | 67 | PC: 12ab7 | Get or set file attributes |
| 2018-12-25T11:51:16.497203847Z | 67 | PC: 12ac7 | Get or set file attributes |
| 2018-12-25T11:51:16.513060572Z | 61 | PC: 12ad0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:51:16.519318944Z | 87 | PC: 12ad6 | Get or set file date and time |
| 2018-12-25T11:51:16.520561258Z | 63 | PC: 12aeb | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:51:16.525977717Z | 66 | PC: 12b50 | Move file pointer |
| 2018-12-25T11:51:16.526905747Z | 64 | PC: 12b5b | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:51:16.528480642Z | 66 | PC: 12b63 | Move file pointer |
| 2018-12-25T11:51:16.530106893Z | 64 | PC: 12b6e | Write file or device (Write 890 bytes on handle 5) |
| 2018-12-25T11:51:16.535237674Z | 87 | PC: 12b0d | Get or set file date and time |
| 2018-12-25T11:51:16.536227517Z | 67 | PC: 12b1b | Get or set file attributes |
| 2018-12-25T11:51:16.542981918Z | 62 | PC: 12b1f | Close file |
| 2018-12-25T11:51:16.54750152Z | 78 | PC: 12bca | Find first file |
| 2018-12-25T11:51:16.550993173Z | 78 | PC: 12bf2 | Find first file |
| 2018-12-25T11:51:16.55483595Z | 79 | PC: 12aaa | Find next file |
| 2018-12-25T11:51:16.55639251Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.559765207Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.565987713Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:16.572989354Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.573842005Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:16.578347114Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:16.579273929Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:16.580896442Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:16.582406736Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:16.587439198Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.58845471Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.595412287Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:16.601054488Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.607322673Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.614692Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:16.616319665Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.61975591Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.626438608Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:16.633019762Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.634343032Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:16.641264009Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:16.642636803Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:16.645063913Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:16.646699975Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:16.654376233Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.655654121Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.665839013Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:16.675168474Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.68121407Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.687247046Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:16.689802153Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.695288719Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.705415234Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:16.712185018Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.713498908Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:16.71952852Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:16.721145768Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:16.723608708Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:16.724890905Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:16.734721517Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.736298877Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.747111577Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:16.754704112Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.760715428Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.766403188Z | 79 | PC: 12aaa | Find next file (See above) |
| 2018-12-25T11:51:16.775818955Z | 67 | PC: 12ab7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.781340139Z | 67 | PC: 12ac7 | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.792853816Z | 61 | PC: 12ad0 | Open file (See above) |
| 2018-12-25T11:51:16.807462101Z | 87 | PC: 12ad6 | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.80886117Z | 63 | PC: 12aeb | Read file or device (See above) |
| 2018-12-25T11:51:16.815468923Z | 66 | PC: 12b50 | Move file pointer (See above) |
| 2018-12-25T11:51:16.817703619Z | 64 | PC: 12b5b | Write file or device (See above) |
| 2018-12-25T11:51:16.820246808Z | 66 | PC: 12b63 | Move file pointer (See above) |
| 2018-12-25T11:51:16.82153384Z | 64 | PC: 12b6e | Write file or device (See above) |
| 2018-12-25T11:51:16.829977677Z | 87 | PC: 12b0d | Get or set file date and time (See above) |
| 2018-12-25T11:51:16.831357402Z | 67 | PC: 12b1b | Get or set file attributes (See above) |
| 2018-12-25T11:51:16.841282303Z | 62 | PC: 12b1f | Close file (See above) |
| 2018-12-25T11:51:16.848457035Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.85399746Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.859436462Z | 78 | PC: 12bca | Find first file (See above) |
| 2018-12-25T11:51:16.87050797Z | 78 | PC: 12bf2 | Find first file (See above) |
| 2018-12-25T11:51:16.880953261Z | 59 | PC: 12b81 | Change current directory |
| 2018-12-25T11:51:16.882665134Z | 42 | PC: 12b85 | Get date 0x12b85: cmp dh, 0xa 0x12b88: jne 0x12b91 0x12b8a: cmp dl, 0x15 0x12b8d: jne 0x12b91 0x12b8f: jmp 0x12ba8 0x12b91: lea dx, word ptr [bp + 0x44b] 0x12b95: mov ah, 9 0x12b97: int 0x21 0x12b99: int 0x20 0x12b9b: mov ah, 0x3b 0x12b9d: lea dx, word ptr [bp + 0x417] 0x12ba1: int 0x21 0x12ba3: jb 0x12b75 0x12ba5: jmp 0x12a76 0x12ba8: mov al, 2 0x12baa: mov cx, 0x29a 0x12bad: mov dx, 0 0x12bb0: mov bx, 0x2c9 0x12bb3: int 0x26 0x12bb5: lea dx, word ptr [bp + 0x466] |
| 2018-12-25T11:51:16.885919476Z | 9 | PC: 12bbd | Display string (String= 'Happy Birthday Freaky!') |