.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:24:40.832132362Z | 78 | PC: 12b07 | Find first file |
| 2018-12-17T22:24:40.839030973Z | 67 | PC: 12b07 | Get or set file attributes |
| 2018-12-17T22:24:40.855493734Z | 61 | PC: 12b07 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:24:40.861967882Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:40.86385227Z | 64 | PC: 12b07 | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T22:24:40.871117554Z | 64 | PC: 12b07 | Write file or device (Write 628 bytes on handle 5) |
| 2018-12-17T22:24:40.878928362Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:40.880672437Z | 62 | PC: 12b07 | Close file |
| 2018-12-17T22:24:40.889777171Z | 79 | PC: 12b07 | Find next file |
| 2018-12-17T22:24:40.893190772Z | 67 | PC: 12b07 | Get or set file attributes |
| 2018-12-17T22:24:40.907359954Z | 61 | PC: 12b07 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:24:40.914534422Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:40.916445791Z | 64 | PC: 12b07 | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T22:24:40.92280544Z | 64 | PC: 12b07 | Write file or device (Write 628 bytes on handle 5) |
| 2018-12-17T22:24:40.93121547Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:40.933170909Z | 62 | PC: 12b07 | Close file |
| 2018-12-17T22:24:40.94047138Z | 79 | PC: 12b07 | Find next file |
| 2018-12-17T22:24:40.953416334Z | 67 | PC: 12b07 | Get or set file attributes |
| 2018-12-17T22:24:40.963220193Z | 61 | PC: 12b07 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:24:40.969594024Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:40.971440936Z | 64 | PC: 12b07 | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T22:24:40.98467694Z | 64 | PC: 12b07 | Write file or device (Write 628 bytes on handle 5) |
| 2018-12-17T22:24:40.992567881Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:40.994156529Z | 62 | PC: 12b07 | Close file |
| 2018-12-17T22:24:41.004707788Z | 79 | PC: 12b07 | Find next file |
| 2018-12-17T22:24:41.007377988Z | 67 | PC: 12b07 | Get or set file attributes |
| 2018-12-17T22:24:41.016425478Z | 61 | PC: 12b07 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:24:41.02389148Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.025503566Z | 64 | PC: 12b07 | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T22:24:41.031624786Z | 64 | PC: 12b07 | Write file or device (Write 628 bytes on handle 5) |
| 2018-12-17T22:24:41.042207063Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.044106847Z | 62 | PC: 12b07 | Close file |
| 2018-12-17T22:24:41.051944228Z | 79 | PC: 12b07 | Find next file |
| 2018-12-17T22:24:41.055297704Z | 67 | PC: 12b07 | Get or set file attributes |
| 2018-12-17T22:24:41.065303036Z | 61 | PC: 12b07 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:24:41.071655231Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.073907504Z | 64 | PC: 12b07 | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T22:24:41.084280595Z | 64 | PC: 12b07 | Write file or device (Write 628 bytes on handle 5) |
| 2018-12-17T22:24:41.096759072Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.099522393Z | 62 | PC: 12b07 | Close file |
| 2018-12-17T22:24:41.107603881Z | 79 | PC: 12b07 | Find next file |
| 2018-12-17T22:24:41.110507304Z | 67 | PC: 12b07 | Get or set file attributes |
| 2018-12-17T22:24:41.121298255Z | 61 | PC: 12b07 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:24:41.127875096Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.12948614Z | 64 | PC: 12b07 | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T22:24:41.136392341Z | 64 | PC: 12b07 | Write file or device (Write 628 bytes on handle 5) |
| 2018-12-17T22:24:41.144550392Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.14601591Z | 62 | PC: 12b07 | Close file |
| 2018-12-17T22:24:41.154617497Z | 79 | PC: 12b07 | Find next file |
| 2018-12-17T22:24:41.160807402Z | 67 | PC: 12b07 | Get or set file attributes |
| 2018-12-17T22:24:41.170604797Z | 61 | PC: 12b07 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:24:41.177482623Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.179851455Z | 64 | PC: 12b07 | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T22:24:41.186303595Z | 64 | PC: 12b07 | Write file or device (Write 628 bytes on handle 5) |
| 2018-12-17T22:24:41.194052471Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.196475384Z | 62 | PC: 12b07 | Close file |
| 2018-12-17T22:24:41.204427034Z | 79 | PC: 12b07 | Find next file |
| 2018-12-17T22:24:41.206935677Z | 67 | PC: 12b07 | Get or set file attributes |
| 2018-12-17T22:24:41.217475775Z | 61 | PC: 12b07 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:24:41.224780482Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.226660453Z | 64 | PC: 12b07 | Write file or device (Write 36 bytes on handle 5) |
| 2018-12-17T22:24:41.23035444Z | 64 | PC: 12b07 | Write file or device (Write 628 bytes on handle 5) |
| 2018-12-17T22:24:41.233520365Z | 87 | PC: 12b07 | Get or set file date and time |
| 2018-12-17T22:24:41.23496485Z | 62 | PC: 12b07 | Close file |
| 2018-12-17T22:24:41.242708633Z | 79 | PC: 12b07 | Find next file |
| 2018-12-17T22:24:41.245056228Z | 59 | PC: 12b07 | Change current directory |
| 2018-12-17T22:24:41.24894733Z | 42 | PC: 12b07 | Get date 0x12b07: ret 0x12b08: or cl, byte ptr [di] 0x12b0a: inc cx 0x12b0b: arpl word ptr [di + 0x72], si 0x12b0e: jbe 0x12b31 0x12b11: jbe 0x12b44 0x12b13: cmp byte ptr cs:[bx + si], ah 0x12b16: arpl word ptr [bx + 0x64], bp 0x12b19: and byte ptr fs:[bp + si + 0x79], ah 0x12b1e: and byte ptr [bp + di + 0x69], cl 0x12b21: insb byte ptr es:[di], dx 0x12b22: dec dx 0x12b23: popaw 0x12b24: outsb dx, byte ptr gs:[si] 0x12b28: and byte ptr [bx + 0x66], ch 0x12b2b: and byte ptr [si + 0x68], dh 0x12b2e: and byte ptr gs:[bp + di + 0x6f], al 0x12b32: bound si, dword ptr gs:[bp + si + 0x65] 0x12b37: popaw 0x12b38: imul sp, word ptr [di + 0x72], 0x73 |
| 2018-12-17T22:24:41.251455187Z | 42 | PC: 12b07 | Get date 0x12b07: ret 0x12b08: or cl, byte ptr [di] 0x12b0a: inc cx 0x12b0b: arpl word ptr [di + 0x72], si 0x12b0e: jbe 0x12b31 0x12b11: jbe 0x12b44 0x12b13: cmp byte ptr cs:[bx + si], ah 0x12b16: arpl word ptr [bx + 0x64], bp 0x12b19: and byte ptr fs:[bp + si + 0x79], ah 0x12b1e: and byte ptr [bp + di + 0x69], cl 0x12b21: insb byte ptr es:[di], dx 0x12b22: dec dx 0x12b23: popaw 0x12b24: outsb dx, byte ptr gs:[si] 0x12b28: and byte ptr [bx + 0x66], ch 0x12b2b: and byte ptr [si + 0x68], dh 0x12b2e: and byte ptr gs:[bp + di + 0x6f], al 0x12b32: bound si, dword ptr gs:[bp + si + 0x65] 0x12b37: popaw 0x12b38: imul sp, word ptr [di + 0x72], 0x73 |