{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:04.884141024Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-25T11:53:04.886148376Z | 78 | PC: 12a92 | Find first file |
| 2018-12-25T11:53:04.891970809Z | 61 | PC: 12b9d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:04.898334125Z | 63 | PC: 12aa7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-25T11:53:04.905268394Z | 62 | PC: 12aab | Close file |
| 2018-12-25T11:53:04.907946243Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-25T11:53:04.929596046Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:04.937454111Z | 64 | PC: 12b65 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:04.94029408Z | 66 | PC: 12b6d | Move file pointer |
| 2018-12-25T11:53:04.9416609Z | 64 | PC: 12b78 | Write file or device (Write 364 bytes on handle 5) |
| 2018-12-25T11:53:04.949636412Z | 87 | PC: 12b85 | Get or set file date and time |
| 2018-12-25T11:53:04.951803646Z | 62 | PC: 12b89 | Close file |
| 2018-12-25T11:53:04.959853068Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:04.969890902Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:04.977540984Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:04.983980085Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:04.990289141Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:04.993280031Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.003330236Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.010670165Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:05.014302376Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:05.015727019Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:05.018296232Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:05.020258745Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:05.027877782Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.037700016Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:05.040592447Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.047235359Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:05.053792248Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:05.056854114Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.066677197Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.073955621Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:05.077212126Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:05.078839576Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:05.081403588Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:05.083100468Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:05.090967974Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.100672659Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:05.103267222Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.110836704Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:05.117056162Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:05.118831259Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.129203413Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.135858902Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:05.13964769Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:05.141915426Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:05.144639116Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:05.146365993Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:05.154181643Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.163218478Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:05.165594155Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.172239797Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:05.17789868Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:05.179501081Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.189023251Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.19527416Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:05.198159968Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:05.200559301Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:05.203973022Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:05.206396387Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:05.213851923Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.223098811Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:05.22569935Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.232155637Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:05.238651397Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:05.24044287Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.250893234Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.257374931Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:05.260042945Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:05.262151362Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:05.270154076Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:05.272534449Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:05.280320546Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.291005169Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:05.293705405Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.30626944Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:05.313445524Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:05.315323977Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.325543932Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.332782099Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:05.335406129Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:05.336690672Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:05.340504988Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:05.341822275Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:05.348947705Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:05.355822753Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:05.35772409Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:05.361800612Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:05.364560346Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:05.369520128Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:05.371400264Z | 42 | PC: 12acc | Get date 0x12acc: cmp dh, 0xa 0x12acf: jne 0x12adc 0x12ad1: cmp dl, 0x19 0x12ad4: jne 0x12adc 0x12ad6: cmp cx, 0x7d0 0x12ada: jae 0x12ae7 0x12adc: mov ah, 0x1a 0x12ade: mov dx, 0x80 0x12ae1: int 0x21 0x12ae3: ret 0x12ae4: mov dx, 0x10d 0x12ae7: mov cx, 0x1000 0x12aea: xor ax, ax 0x12aec: mov ds, ax 0x12aee: mov si, ax 0x12af0: mov es, ax 0x12af2: mov di, 0x4000 0x12af5: rep movsd dword ptr es:[di], dword ptr [si] 0x12af7: jmp 0x12adc 0x12af9: pop bx |
| 2018-12-25T11:53:05.374222367Z | 26 | PC: 12ae3 | Set disk transfer address |
{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:06.433095691Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-25T11:53:06.435069213Z | 78 | PC: 12a92 | Find first file |
| 2018-12-25T11:53:06.44164348Z | 61 | PC: 12b9d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:06.448799023Z | 63 | PC: 12aa7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-25T11:53:06.456254325Z | 62 | PC: 12aab | Close file |
| 2018-12-25T11:53:06.458632196Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-25T11:53:06.927580751Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:06.935511153Z | 64 | PC: 12b65 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:06.940446232Z | 66 | PC: 12b6d | Move file pointer |
| 2018-12-25T11:53:06.942516879Z | 64 | PC: 12b78 | Write file or device (Write 364 bytes on handle 5) |
| 2018-12-25T11:53:06.952439644Z | 87 | PC: 12b85 | Get or set file date and time |
| 2018-12-25T11:53:06.955320103Z | 62 | PC: 12b89 | Close file |
| 2018-12-25T11:53:06.964587368Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:06.98138538Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:06.985645455Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:06.993859789Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.001358879Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.004831088Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.01664477Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.024372396Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.028652407Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.030447491Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.033763879Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.036052986Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.045121619Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.056391355Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.059673017Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.067719624Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.075093507Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.077434117Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.089919954Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.097500809Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.100830672Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.103810108Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.107551184Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.109475412Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.118960565Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.13125152Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.134887711Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.1429552Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.152770723Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.154858708Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.166148255Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.173858701Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.176862576Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.178293235Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.182563634Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.184428933Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.192851718Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.204555099Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.207457895Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.215394478Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.223398534Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.22543303Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.236337185Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.244532254Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.247742073Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.249350115Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.252477839Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.254628217Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.262503739Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.273927231Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.27824426Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.285759724Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.293019142Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.296342964Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.307773815Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.31532525Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.319421506Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.321618602Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.330620186Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.332827239Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.342474951Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.353323662Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.357323236Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.365116604Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.372721376Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.374954117Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.386284063Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.393997675Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.397512576Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.400432136Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.403636164Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.406106996Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.414570269Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.425330444Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.42806077Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.439710093Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.442935198Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.444930633Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.447567464Z | 42 | PC: 12acc | Get date 0x12acc: cmp dh, 0xa 0x12acf: jne 0x12adc 0x12ad1: cmp dl, 0x19 0x12ad4: jne 0x12adc 0x12ad6: cmp cx, 0x7d0 0x12ada: jae 0x12ae7 0x12adc: mov ah, 0x1a 0x12ade: mov dx, 0x80 0x12ae1: int 0x21 0x12ae3: ret 0x12ae4: mov dx, 0x10d 0x12ae7: mov cx, 0x1000 0x12aea: xor ax, ax 0x12aec: mov ds, ax 0x12aee: mov si, ax 0x12af0: mov es, ax 0x12af2: mov di, 0x4000 0x12af5: rep movsd dword ptr es:[di], dword ptr [si] 0x12af7: jmp 0x12adc 0x12af9: pop bx |
| 2018-12-25T11:53:07.450409146Z | 26 | PC: 12ae3 | Set disk transfer address |
{"DateBased":true,"Day":25,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:06.653733069Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-25T11:53:06.655161198Z | 78 | PC: 12a92 | Find first file |
| 2018-12-25T11:53:06.661789128Z | 61 | PC: 12b9d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:06.668957451Z | 63 | PC: 12aa7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-25T11:53:06.676173927Z | 62 | PC: 12aab | Close file |
| 2018-12-25T11:53:06.678743491Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-25T11:53:06.92808719Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:06.932986797Z | 64 | PC: 12b65 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:06.936523127Z | 66 | PC: 12b6d | Move file pointer |
| 2018-12-25T11:53:06.938560473Z | 64 | PC: 12b78 | Write file or device (Write 364 bytes on handle 5) |
| 2018-12-25T11:53:06.948063469Z | 87 | PC: 12b85 | Get or set file date and time |
| 2018-12-25T11:53:06.951088889Z | 62 | PC: 12b89 | Close file |
| 2018-12-25T11:53:06.960426153Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:06.97210674Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:06.977492951Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:06.984971959Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:06.992337542Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:06.994784105Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.007404982Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.015625891Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.019525051Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.021245574Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.024031493Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.025732289Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.034406082Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.040986696Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.043719767Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.05143671Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.058673517Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.060756152Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.072540346Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.079957157Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.083864941Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.085866935Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.088916762Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.090549681Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.098928708Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.110214591Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.113182078Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.120717798Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.128819345Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.131235484Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.142730092Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.151727704Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.154851325Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.156426949Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.16009355Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.161831096Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.170228769Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.183753562Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.187552015Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.195511584Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.20356502Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.206641155Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.219113454Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.227611038Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.232425387Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.234148181Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.23722905Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.240288148Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.248633794Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.260504774Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.264742197Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.272618524Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.280510572Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.283349385Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.294885439Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.303303507Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.307105756Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.308944368Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.315884995Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.317752674Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.32732055Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.336467091Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.339317757Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.348522547Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.355967334Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.358244548Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.372554787Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.380583142Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.384122974Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.386756816Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.391230065Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.393082161Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.402224423Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.414437403Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.417677828Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.426070089Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.429693866Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.432063493Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.435102106Z | 42 | PC: 12acc | Get date 0x12acc: cmp dh, 0xa 0x12acf: jne 0x12adc 0x12ad1: cmp dl, 0x19 0x12ad4: jne 0x12adc 0x12ad6: cmp cx, 0x7d0 0x12ada: jae 0x12ae7 0x12adc: mov ah, 0x1a 0x12ade: mov dx, 0x80 0x12ae1: int 0x21 0x12ae3: ret 0x12ae4: mov dx, 0x10d 0x12ae7: mov cx, 0x1000 0x12aea: xor ax, ax 0x12aec: mov ds, ax 0x12aee: mov si, ax 0x12af0: mov es, ax 0x12af2: mov di, 0x4000 0x12af5: rep movsd dword ptr es:[di], dword ptr [si] 0x12af7: jmp 0x12adc 0x12af9: pop bx |
| 2018-12-25T11:53:07.438489502Z | 26 | PC: 12ae3 | Set disk transfer address |
{"DateBased":true,"Day":25,"Month":10,"Year":2001,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:07.412794541Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-25T11:53:07.415067474Z | 78 | PC: 12a92 | Find first file |
| 2018-12-25T11:53:07.421940491Z | 61 | PC: 12b9d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:07.429122998Z | 63 | PC: 12aa7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-25T11:53:07.436460115Z | 62 | PC: 12aab | Close file |
| 2018-12-25T11:53:07.439344498Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-25T11:53:07.456623296Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.46373012Z | 64 | PC: 12b65 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:07.467369815Z | 66 | PC: 12b6d | Move file pointer |
| 2018-12-25T11:53:07.469240619Z | 64 | PC: 12b78 | Write file or device (Write 364 bytes on handle 5) |
| 2018-12-25T11:53:07.478270985Z | 87 | PC: 12b85 | Get or set file date and time |
| 2018-12-25T11:53:07.481249582Z | 62 | PC: 12b89 | Close file |
| 2018-12-25T11:53:07.489621926Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.500946587Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.504725824Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.512450723Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.519395404Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.522266272Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.53286248Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.53997637Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.543629849Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.545239297Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.548143313Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.550073323Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.557232378Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.568241925Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.57193146Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.57973146Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.60060357Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.602711094Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.615102554Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.622610385Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.625900573Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.628431894Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.631957479Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.635230618Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.645342892Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.656511499Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.659912759Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.667895859Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.675555543Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.677782582Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.688934623Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.697875843Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.701255648Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.703114161Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.7074842Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.709227733Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.718202347Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.730806081Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.734425266Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.74233562Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.75117649Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.754053281Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.766003213Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.774536402Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.78614799Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.787929845Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.791608072Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.794627024Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.802794735Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.814174077Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.81815158Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.825828051Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.833699764Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.836770941Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.848593696Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.856294497Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.860370298Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.862134134Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.871648247Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.873875425Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.883425597Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.894596014Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.897845739Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.909079555Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.916395161Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.918628421Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.930806902Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.938856251Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:07.94228575Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:07.944816189Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:07.948027355Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:07.954793988Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:07.966384242Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:07.978216581Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:07.981213594Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.989834362Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:07.993473451Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:07.996749702Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.000867902Z | 42 | PC: 12acc | Get date 0x12acc: cmp dh, 0xa 0x12acf: jne 0x12adc 0x12ad1: cmp dl, 0x19 0x12ad4: jne 0x12adc 0x12ad6: cmp cx, 0x7d0 0x12ada: jae 0x12ae7 0x12adc: mov ah, 0x1a 0x12ade: mov dx, 0x80 0x12ae1: int 0x21 0x12ae3: ret 0x12ae4: mov dx, 0x10d 0x12ae7: mov cx, 0x1000 0x12aea: xor ax, ax 0x12aec: mov ds, ax 0x12aee: mov si, ax 0x12af0: mov es, ax 0x12af2: mov di, 0x4000 0x12af5: rep movsd dword ptr es:[di], dword ptr [si] 0x12af7: jmp 0x12adc 0x12af9: pop bx |
| 2018-12-25T11:53:08.004727217Z | 26 | PC: 1b9f | Set disk transfer address |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:07.90371851Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-25T11:53:07.914425087Z | 78 | PC: 12a92 | Find first file |
| 2018-12-25T11:53:07.920214335Z | 61 | PC: 12b9d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:07.926496663Z | 63 | PC: 12aa7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-25T11:53:07.93082198Z | 62 | PC: 12aab | Close file |
| 2018-12-25T11:53:07.932573999Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-25T11:53:07.955080254Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:07.962180709Z | 64 | PC: 12b65 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:07.968808167Z | 66 | PC: 12b6d | Move file pointer |
| 2018-12-25T11:53:07.969901997Z | 64 | PC: 12b78 | Write file or device (Write 364 bytes on handle 5) |
| 2018-12-25T11:53:07.978348799Z | 87 | PC: 12b85 | Get or set file date and time |
| 2018-12-25T11:53:07.989964725Z | 62 | PC: 12b89 | Close file |
| 2018-12-25T11:53:07.997489341Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.007522933Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.014516755Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.024614775Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.030650023Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.033712919Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.042981197Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.049534925Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.052651463Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.054147884Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.056638669Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.058342104Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.065624868Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.075568157Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.078922285Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.085315377Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.091439799Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.093592898Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.10596254Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.112028939Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.116506056Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.117476577Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.119262247Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.120692017Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.125561224Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.131987818Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.134578277Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.138908443Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.143060548Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.14437975Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.157320987Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.169079301Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.175393446Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.177370277Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.179858568Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.181166855Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.18848234Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.197975815Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.20051163Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.210571122Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.216712841Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.218357686Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.229029739Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.235977874Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.23789329Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.239500514Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.241304378Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.242405199Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.248058617Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.254358965Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.256135227Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.262063748Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.268114034Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.269833105Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.415767535Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.427180517Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.433309246Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.435409861Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.589958173Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.59136717Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.615787584Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.637566445Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.640228193Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.646857606Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.652735662Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.654616089Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.672409507Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.680134277Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.681951371Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.683239875Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.68685934Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.688542358Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.703191678Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.755756534Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.758527435Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.765080756Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.772419056Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.774259211Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.776762678Z | 42 | PC: 12acc | Get date 0x12acc: cmp dh, 0xa 0x12acf: jne 0x12adc 0x12ad1: cmp dl, 0x19 0x12ad4: jne 0x12adc 0x12ad6: cmp cx, 0x7d0 0x12ada: jae 0x12ae7 0x12adc: mov ah, 0x1a 0x12ade: mov dx, 0x80 0x12ae1: int 0x21 0x12ae3: ret 0x12ae4: mov dx, 0x10d 0x12ae7: mov cx, 0x1000 0x12aea: xor ax, ax 0x12aec: mov ds, ax 0x12aee: mov si, ax 0x12af0: mov es, ax 0x12af2: mov di, 0x4000 0x12af5: rep movsd dword ptr es:[di], dword ptr [si] 0x12af7: jmp 0x12adc 0x12af9: pop bx |
| 2018-12-25T11:53:08.780169821Z | 26 | PC: 12ae3 | Set disk transfer address |
{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:08.032210434Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-25T11:53:08.033701769Z | 78 | PC: 12a92 | Find first file |
| 2018-12-25T11:53:08.037439471Z | 61 | PC: 12b9d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:08.041291511Z | 63 | PC: 12aa7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-25T11:53:08.045845118Z | 62 | PC: 12aab | Close file |
| 2018-12-25T11:53:08.047592114Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-25T11:53:08.06110702Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.075063739Z | 64 | PC: 12b65 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:08.081836999Z | 66 | PC: 12b6d | Move file pointer |
| 2018-12-25T11:53:08.083661734Z | 64 | PC: 12b78 | Write file or device (Write 364 bytes on handle 5) |
| 2018-12-25T11:53:08.092585888Z | 87 | PC: 12b85 | Get or set file date and time |
| 2018-12-25T11:53:08.094100685Z | 62 | PC: 12b89 | Close file |
| 2018-12-25T11:53:08.10140408Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.111722546Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.128043314Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.134680119Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.141886954Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.144657741Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.155778241Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.160520027Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.163080487Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.164156677Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.166053316Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.179753517Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.184814411Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.193073983Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.195627312Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.202496681Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.206396278Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.210874394Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.219203863Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.223166871Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.228127225Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.229231258Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.230958642Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.232358058Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.237621717Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.243755562Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.246169078Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.250795695Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.254623248Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.256234233Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.349237325Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.360548906Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.368044616Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.369626345Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.373014977Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.375317533Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.436159745Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.596683934Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.600434688Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.607473891Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.613822715Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.616682524Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.636880454Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.645530255Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.648883185Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.650368653Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.65461549Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.656100921Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.668819134Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.68323373Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.685320256Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.690458028Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.695279971Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.701995575Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.738678813Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.745037427Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.747940605Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.749870675Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.762176424Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.763836886Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.777145776Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.798946967Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.801427347Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.808403302Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.81457629Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.816380835Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.844485201Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.855442465Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:08.862214212Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:08.86445801Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:08.867270758Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:08.869033025Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:08.900326007Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.926355873Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.929075147Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.936535622Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.943391751Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.945244662Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.9485389Z | 42 | PC: 12acc | Get date 0x12acc: cmp dh, 0xa 0x12acf: jne 0x12adc 0x12ad1: cmp dl, 0x19 0x12ad4: jne 0x12adc 0x12ad6: cmp cx, 0x7d0 0x12ada: jae 0x12ae7 0x12adc: mov ah, 0x1a 0x12ade: mov dx, 0x80 0x12ae1: int 0x21 0x12ae3: ret 0x12ae4: mov dx, 0x10d 0x12ae7: mov cx, 0x1000 0x12aea: xor ax, ax 0x12aec: mov ds, ax 0x12aee: mov si, ax 0x12af0: mov es, ax 0x12af2: mov di, 0x4000 0x12af5: rep movsd dword ptr es:[di], dword ptr [si] 0x12af7: jmp 0x12adc 0x12af9: pop bx |
| 2018-12-25T11:53:08.95079713Z | 26 | PC: 12ae3 | Set disk transfer address |
{"DateBased":true,"Day":25,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:08.68234991Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-25T11:53:08.683749373Z | 78 | PC: 12a92 | Find first file |
| 2018-12-25T11:53:08.690260316Z | 61 | PC: 12b9d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:08.696953871Z | 63 | PC: 12aa7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-25T11:53:08.703752044Z | 62 | PC: 12aab | Close file |
| 2018-12-25T11:53:08.706459906Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-25T11:53:08.919413064Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.926452733Z | 64 | PC: 12b65 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:08.930358573Z | 66 | PC: 12b6d | Move file pointer |
| 2018-12-25T11:53:08.932120295Z | 64 | PC: 12b78 | Write file or device (Write 364 bytes on handle 5) |
| 2018-12-25T11:53:08.939979376Z | 87 | PC: 12b85 | Get or set file date and time |
| 2018-12-25T11:53:08.942181434Z | 62 | PC: 12b89 | Close file |
| 2018-12-25T11:53:08.949651733Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.959182272Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.962354918Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.973994627Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.980236847Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.982735282Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.992410188Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.997536582Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.000690845Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.001946944Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.004348942Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.006158106Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.01310569Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.022644371Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.025462119Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.036822974Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.042870439Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.045511614Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.05541025Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.062035385Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.064985911Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.066985264Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.069799607Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.071487731Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.078998765Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.088864633Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.091716561Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.104315043Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.110650448Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.112483553Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.123469005Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.130037793Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.133599957Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.136509059Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.139120989Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.140635985Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.148860725Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.158413574Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.160913423Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.168908096Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.175790702Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.177909794Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.188196788Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.195969631Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.198958488Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.200607093Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.204455216Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.2061862Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.213419628Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.224724068Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.227521108Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.235742408Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.242874002Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.244970579Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.254779622Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.262015515Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.264934584Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.266298243Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.275455709Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.277378704Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.284977016Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.295819992Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.298819968Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.305323743Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.312413245Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.315148372Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.325004944Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.331626536Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.33560305Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.337204924Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.340011173Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.342640732Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.349814172Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.362907139Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.366505557Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.373051802Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.379440016Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.382221145Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.384734007Z | 42 | PC: 12acc | Get date 0x12acc: cmp dh, 0xa 0x12acf: jne 0x12adc 0x12ad1: cmp dl, 0x19 0x12ad4: jne 0x12adc 0x12ad6: cmp cx, 0x7d0 0x12ada: jae 0x12ae7 0x12adc: mov ah, 0x1a 0x12ade: mov dx, 0x80 0x12ae1: int 0x21 0x12ae3: ret 0x12ae4: mov dx, 0x10d 0x12ae7: mov cx, 0x1000 0x12aea: xor ax, ax 0x12aec: mov ds, ax 0x12aee: mov si, ax 0x12af0: mov es, ax 0x12af2: mov di, 0x4000 0x12af5: rep movsd dword ptr es:[di], dword ptr [si] 0x12af7: jmp 0x12adc 0x12af9: pop bx |
| 2018-12-25T11:53:09.386844519Z | 26 | PC: 12ae3 | Set disk transfer address |
{"DateBased":true,"Day":25,"Month":10,"Year":2001,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:08.773223948Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-25T11:53:08.775061302Z | 78 | PC: 12a92 | Find first file |
| 2018-12-25T11:53:08.781241132Z | 61 | PC: 12b9d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:08.787620429Z | 63 | PC: 12aa7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-25T11:53:08.794264373Z | 62 | PC: 12aab | Close file |
| 2018-12-25T11:53:08.796349129Z | 67 | PC: 12ba8 | Get or set file attributes |
| 2018-12-25T11:53:08.920026997Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.927925685Z | 64 | PC: 12b65 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:08.931296821Z | 66 | PC: 12b6d | Move file pointer |
| 2018-12-25T11:53:08.932784503Z | 64 | PC: 12b78 | Write file or device (Write 364 bytes on handle 5) |
| 2018-12-25T11:53:08.940958596Z | 87 | PC: 12b85 | Get or set file date and time |
| 2018-12-25T11:53:08.943984091Z | 62 | PC: 12b89 | Close file |
| 2018-12-25T11:53:08.951418812Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:08.961174243Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:08.965300221Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:08.972137483Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:08.989653548Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:08.992509015Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.002663956Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.010244056Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.013852139Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.015251136Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.017795399Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.019685957Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.028114044Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.038034822Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.041275874Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.048191637Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.054554046Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.056631093Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.068528329Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.075603152Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.078325271Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.081224146Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.084273778Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.085736537Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.093904759Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.103873688Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.106579235Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.113856593Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.120381591Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.122531388Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.133430693Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.139783594Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.142544802Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.144450587Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.146969702Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.148406874Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.156443766Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.166045969Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.183144426Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.190741854Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.19741773Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.199565198Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.21055044Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.217416819Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.220436509Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.222263551Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.225408589Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.227117282Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.234705359Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.244896206Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.247649698Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.254171394Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.261384288Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.263401568Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.276034758Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.283617146Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.290123129Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.291717972Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.30052652Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.302228252Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.30975272Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.320484869Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.323102291Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.329263151Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.336315253Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.337938376Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.347505255Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.354394845Z | 64 | PC: 12b65 | Write file or device (See above) |
| 2018-12-25T11:53:09.35705319Z | 66 | PC: 12b6d | Move file pointer (See above) |
| 2018-12-25T11:53:09.358404197Z | 64 | PC: 12b78 | Write file or device (See above) |
| 2018-12-25T11:53:09.361426114Z | 87 | PC: 12b85 | Get or set file date and time (See above) |
| 2018-12-25T11:53:09.36279117Z | 62 | PC: 12b89 | Close file (See above) |
| 2018-12-25T11:53:09.369727502Z | 67 | PC: 12ba8 | Get or set file attributes (See above) |
| 2018-12-25T11:53:09.379778898Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.382197826Z | 61 | PC: 12b9d | Open file (See above) |
| 2018-12-25T11:53:09.388338642Z | 63 | PC: 12aa7 | Read file or device (See above) |
| 2018-12-25T11:53:09.394886382Z | 62 | PC: 12aab | Close file (See above) |
| 2018-12-25T11:53:09.396579326Z | 79 | PC: 12a92 | Find next file (See above) |
| 2018-12-25T11:53:09.398847141Z | 42 | PC: 12acc | Get date 0x12acc: cmp dh, 0xa 0x12acf: jne 0x12adc 0x12ad1: cmp dl, 0x19 0x12ad4: jne 0x12adc 0x12ad6: cmp cx, 0x7d0 0x12ada: jae 0x12ae7 0x12adc: mov ah, 0x1a 0x12ade: mov dx, 0x80 0x12ae1: int 0x21 0x12ae3: ret 0x12ae4: mov dx, 0x10d 0x12ae7: mov cx, 0x1000 0x12aea: xor ax, ax 0x12aec: mov ds, ax 0x12aee: mov si, ax 0x12af0: mov es, ax 0x12af2: mov di, 0x4000 0x12af5: rep movsd dword ptr es:[di], dword ptr [si] 0x12af7: jmp 0x12adc 0x12af9: pop bx |
| 2018-12-25T11:53:09.402820976Z | 26 | PC: 1b9f | Set disk transfer address |