.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:24:09.228429368Z | 48 | PC: 12a7f | Get DOS version |
| 2018-12-17T22:24:09.238579467Z | 47 | PC: 12a93 | Get disk transfer address |
| 2018-12-17T22:24:09.240340862Z | 26 | PC: 12aa0 | Set disk transfer address |
| 2018-12-17T22:24:09.242087674Z | 78 | PC: 12b64 | Find first file |
| 2018-12-17T22:24:09.249534479Z | 78 | PC: 12b64 | Find first file |
| 2018-12-17T22:24:09.255990751Z | 47 | PC: 12b6c | Get disk transfer address |
| 2018-12-17T22:24:09.260824815Z | 67 | PC: 12b9d | Get or set file attributes |
| 2018-12-17T22:24:09.276098415Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-17T22:24:09.294072606Z | 61 | PC: 12bad | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:24:09.299228609Z | 87 | PC: 12bb7 | Get or set file date and time |
| 2018-12-17T22:24:09.301155465Z | 66 | PC: 12c8a | Move file pointer |
| 2018-12-17T22:24:09.304136073Z | 66 | PC: 12c8a | Move file pointer |
| 2018-12-17T22:24:09.305469924Z | 63 | PC: 12caf | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:24:09.31163075Z | 66 | PC: 12c8a | Move file pointer |
| 2018-12-17T22:24:09.316388539Z | 66 | PC: 12dc5 | Move file pointer |
| 2018-12-17T22:24:09.317604793Z | 63 | PC: 12dd1 | Read file or device (Read 11 bytes on handle 5) |
| 2018-12-17T22:24:09.319855666Z | 66 | PC: 12e28 | Move file pointer |
| 2018-12-17T22:24:09.322708232Z | 64 | PC: 12e34 | Write file or device (Write 11 bytes on handle 5) |
| 2018-12-17T22:24:09.325197426Z | 66 | PC: 12e55 | Move file pointer |
| 2018-12-17T22:24:09.326387939Z | 64 | PC: 12e61 | Write file or device (Write 57 bytes on handle 5) |
| 2018-12-17T22:24:09.329508008Z | 66 | PC: 12e85 | Move file pointer |
| 2018-12-17T22:24:09.330742879Z | 44 | PC: 1300e | Get time 0x1300e: xor cx, dx 0x13010: xor ch, cl 0x13012: mov byte ptr [0x10b], ch 0x13016: popaw 0x13017: ret 0x13018: xor byte ptr [bp + si], bl 0x1301a: das 0x1301b: dec si 0x1301c: dec di 0x1301d: add byte ptr [bp + di + 1], al 0x13020: inc bx 0x13021: add bh, byte ptr [di] 0x13023: add byte ptr [bx + 1], dl 0x13026: push di 0x13027: inc dx 0x13029: add bh, bh 0x1302b: add byte ptr [bx], bh 0x1302d: push ds 0x1302e: sub al, 0x19 0x13030: xchg ax, si |
| 2018-12-17T22:24:09.333307021Z | 64 | PC: 12a73 | Write file or device (Write 1606 bytes on handle 5) |
| 2018-12-17T22:24:09.342755043Z | 87 | PC: 12bed | Get or set file date and time |
| 2018-12-17T22:24:09.344086288Z | 62 | PC: 12bf3 | Close file |
| 2018-12-17T22:24:09.351341529Z | 67 | PC: 12bfd | Get or set file attributes |
| 2018-12-17T22:24:09.361557669Z | 79 | PC: 12b64 | Find next file |
| 2018-12-17T22:24:09.364022565Z | 47 | PC: 12b6c | Get disk transfer address |
| 2018-12-17T22:24:09.365196787Z | 67 | PC: 12b9d | Get or set file attributes |
| 2018-12-17T22:24:09.372017477Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-17T22:24:09.381667954Z | 61 | PC: 12bad | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:24:09.388236082Z | 87 | PC: 12bb7 | Get or set file date and time |
| 2018-12-17T22:24:09.397706412Z | 66 | PC: 12c8a | Move file pointer |
| 2018-12-17T22:24:09.399543345Z | 66 | PC: 12c8a | Move file pointer |
| 2018-12-17T22:24:09.401219176Z | 63 | PC: 12caf | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:24:09.408305337Z | 66 | PC: 12c8a | Move file pointer |
| 2018-12-17T22:24:09.410015052Z | 66 | PC: 12dc5 | Move file pointer |
| 2018-12-17T22:24:09.411290258Z | 63 | PC: 12dd1 | Read file or device (Read 11 bytes on handle 5) |
| 2018-12-17T22:24:09.413809319Z | 66 | PC: 12e28 | Move file pointer |
| 2018-12-17T22:24:09.415389952Z | 64 | PC: 12e34 | Write file or device (Write 11 bytes on handle 5) |
| 2018-12-17T22:24:09.417868581Z | 66 | PC: 12e55 | Move file pointer |
| 2018-12-17T22:24:09.419085023Z | 64 | PC: 12e61 | Write file or device (Write 57 bytes on handle 5) |
| 2018-12-17T22:24:09.422008002Z | 66 | PC: 12e85 | Move file pointer |
| 2018-12-17T22:24:09.423339419Z | 44 | PC: 1300e | Get time 0x1300e: xor cx, dx 0x13010: xor ch, cl 0x13012: mov byte ptr [0x10b], ch 0x13016: popaw 0x13017: ret 0x13018: xor byte ptr [bp + si], bl 0x1301a: das 0x1301b: dec si 0x1301c: dec di 0x1301d: add byte ptr [bp + di + 1], al 0x13020: inc bx 0x13021: add bh, byte ptr [di] 0x13023: add byte ptr [bx + 1], dl 0x13026: push di 0x13027: inc dx 0x13029: add bh, bh 0x1302b: add byte ptr [bx], bh 0x1302d: push ds 0x1302e: sub al, 0x19 0x13030: xchg ax, si |
| 2018-12-17T22:24:09.426057844Z | 64 | PC: 12a73 | Write file or device (Write 1606 bytes on handle 5) |
| 2018-12-17T22:24:09.436043288Z | 87 | PC: 12bed | Get or set file date and time |
| 2018-12-17T22:24:09.4376055Z | 62 | PC: 12bf3 | Close file |
| 2018-12-17T22:24:09.445641152Z | 67 | PC: 12bfd | Get or set file attributes |
| 2018-12-17T22:24:09.456768853Z | 79 | PC: 12b64 | Find next file |
| 2018-12-17T22:24:09.462397107Z | 47 | PC: 12b6c | Get disk transfer address |
| 2018-12-17T22:24:09.463796725Z | 78 | PC: 12b64 | Find first file |
| 2018-12-17T22:24:09.470774468Z | 26 | PC: 12abc | Set disk transfer address |
| 2018-12-17T22:24:09.472221332Z | 78 | PC: 13063 | Find first file |
| 2018-12-17T22:24:09.477958816Z | 47 | PC: 1306b | Get disk transfer address |
| 2018-12-17T22:24:09.480368827Z | 78 | PC: 13063 | Find first file |
| 2018-12-17T22:24:09.485880379Z | 78 | PC: 13063 | Find first file |
| 2018-12-17T22:24:09.491364657Z | 44 | PC: 12b02 | Get time 0x12b02: xor dx, dx 0x12b04: cmp ch, cl 0x12b06: je 0x12b0a 0x12b08: jmp 0x12b57 0x12b0a: cmp ch, 7 0x12b0d: jne 0x12b12 0x12b0f: mov dx, 0x17e 0x12b12: cmp ch, 9 0x12b15: jne 0x12b1a 0x12b17: mov dx, 0x236 0x12b1a: cmp ch, 0xb 0x12b1d: jne 0x12b22 0x12b1f: mov dx, 0x281 0x12b22: cmp ch, 0xd 0x12b25: jne 0x12b2a 0x12b27: mov dx, 0x2bf 0x12b2a: cmp ch, 0xf 0x12b2d: jne 0x12b32 0x12b2f: mov dx, 0x330 0x12b32: cmp ch, 0x11 |