.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:24:42.852850241Z | 47 | PC: 12b06 | Get disk transfer address |
| 2018-12-17T22:24:42.855300223Z | 26 | PC: 12b15 | Set disk transfer address |
| 2018-12-17T22:24:42.856629154Z | 78 | PC: 12b1d | Find first file |
| 2018-12-17T22:24:42.862668261Z | 47 | PC: 12b35 | Get disk transfer address |
| 2018-12-17T22:24:42.864291449Z | 79 | PC: 12b1d | Find next file |
| 2018-12-17T22:24:42.867372284Z | 47 | PC: 12b35 | Get disk transfer address |
| 2018-12-17T22:24:42.86855837Z | 79 | PC: 12b1d | Find next file |
| 2018-12-17T22:24:42.870999317Z | 47 | PC: 12b35 | Get disk transfer address |
| 2018-12-17T22:24:42.872866996Z | 79 | PC: 12b1d | Find next file |
| 2018-12-17T22:24:42.875275982Z | 47 | PC: 12b35 | Get disk transfer address |
| 2018-12-17T22:24:42.876856829Z | 79 | PC: 12b1d | Find next file |
| 2018-12-17T22:24:42.880014073Z | 47 | PC: 12b35 | Get disk transfer address |
| 2018-12-17T22:24:42.881115743Z | 79 | PC: 12b1d | Find next file |
| 2018-12-17T22:24:42.883465978Z | 47 | PC: 12b35 | Get disk transfer address |
| 2018-12-17T22:24:42.885320031Z | 79 | PC: 12b1d | Find next file |
| 2018-12-17T22:24:42.887648042Z | 47 | PC: 12b35 | Get disk transfer address |
| 2018-12-17T22:24:42.888644803Z | 79 | PC: 12b1d | Find next file |
| 2018-12-17T22:24:42.8915443Z | 26 | PC: 12b2f | Set disk transfer address |
| 2018-12-17T22:24:42.892849092Z | 47 | PC: 12b06 | Get disk transfer address |
| 2018-12-17T22:24:42.894222599Z | 26 | PC: 12b15 | Set disk transfer address |
| 2018-12-17T22:24:42.909473033Z | 78 | PC: 12b1d | Find first file |
| 2018-12-17T22:24:42.914751762Z | 47 | PC: 12b35 | Get disk transfer address |
| 2018-12-17T22:24:42.916215692Z | 61 | PC: 12b58 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:24:42.923381545Z | 63 | PC: 12b63 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:24:42.925349297Z | 62 | PC: 12b67 | Close file |
| 2018-12-17T22:24:42.926738479Z | 67 | PC: 12b85 | Get or set file attributes |
| 2018-12-17T22:24:42.939199818Z | 61 | PC: 12b8a | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:24:42.950860411Z | 64 | PC: 12dd2 | Write file or device (Write 895 bytes on handle 5) |
| 2018-12-17T22:24:42.959586121Z | 87 | PC: 12b9b | Get or set file date and time |
| 2018-12-17T22:24:42.961334073Z | 62 | PC: 12b9f | Close file |
| 2018-12-17T22:24:42.968940055Z | 67 | PC: 12bac | Get or set file attributes |
| 2018-12-17T22:24:42.987142586Z | 26 | PC: 12b2f | Set disk transfer address |
| 2018-12-17T22:24:42.999904753Z | 42 | PC: 12bc3 | Get date 0x12bc3: cwde 0x12bc4: ret 0x12bc5: push sp 0x12bc6: push 0x7369 0x12bc9: and byte ptr [bx + si + 0x72], dh 0x12bcc: outsw dx, word ptr [si] 0x12bcd: jb 0x12c31 0x12bd0: insw word ptr es:[di], dx 0x12bd1: and byte ptr [bp + si + 0x65], dh 0x12bd4: jno 0x12c4b 0x12bd6: imul si, word ptr [bp + si + 0x65], 0x2073 0x12bdb: dec bp 0x12bdc: imul sp, word ptr [bp + di + 0x72], 0x736f 0x12be1: outsw dx, word ptr [si] 0x12be2: je 0x12c05 0x12be5: push di 0x12be6: imul bp, word ptr [bp + 0x64], 0x776f 0x12beb: jae 0x12c1b 0x12bed: movups xmm3, xmmword ptr [bx + si] 0x12bf0: sbb word ptr [0xdbdc], ax |
| 2018-12-17T22:24:43.002977466Z | 76 | PC: 12ae6 | Terminate with return code (Return code = '0') |