.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:28:24.129020841Z | 42 | PC: 12a7a | Get date 0x12a7a: mov word ptr [0xf2], dx 0x12a7e: mov word ptr [0xf4], cx 0x12a82: stc 0x12a83: mov dx, 0x25d 0x12a86: mov ah, 0x4e 0x12a88: mov cx, 0x20 0x12a8b: int 0x21 0x12a8d: or ax, ax 0x12a8f: je 0x12a94 0x12a91: jmp 0x12b5e 0x12a94: mov ah, 0x2f 0x12a96: int 0x21 0x12a98: mov ax, word ptr es:[bx + 0x1a] 0x12a9c: mov word ptr [0xfc], ax 0x12a9f: add bx, 0x1e 0x12aa2: mov word ptr [0xfe], bx 0x12aa6: mov ax, 0x4f43 0x12aa9: sub ax, word ptr [0x9e] 0x12aad: jne 0x12ab2 0x12aaf: jmp 0x12b52 |
| 2018-12-17T22:28:24.132283668Z | 78 | PC: 12a8d | Find first file |
| 2018-12-17T22:28:24.138064202Z | 47 | PC: 12a98 | Get disk transfer address |
| 2018-12-17T22:28:24.139125626Z | 43 | PC: 12aee | Set date |
| 2018-12-17T22:28:24.142823044Z | 61 | PC: 12af6 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:28:24.153974489Z | 63 | PC: 12b04 | Read file or device (Read 407 bytes on handle 5) |
| 2018-12-17T22:28:24.160575708Z | 60 | PC: 12b36 | Create or truncate file |
| 2018-12-17T22:28:24.179774875Z | 64 | PC: 12b48 | Write file or device (Write 765 bytes on handle 6) |
| 2018-12-17T22:28:24.188842587Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T22:28:24.196577514Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:28:24.199005476Z | 47 | PC: 12a98 | Get disk transfer address |
| 2018-12-17T22:28:24.200597627Z | 43 | PC: 12aee | Set date |
| 2018-12-17T22:28:24.203792272Z | 61 | PC: 12af6 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:28:24.214985113Z | 63 | PC: 12b04 | Read file or device (Read 27 bytes on handle 6) |
| 2018-12-17T22:28:24.229028493Z | 60 | PC: 12b36 | Create or truncate file |
| 2018-12-17T22:28:24.240897398Z | 64 | PC: 12b48 | Write file or device (Write 385 bytes on handle 7) |
| 2018-12-17T22:28:24.244443255Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T22:28:24.253181565Z | 79 | PC: 12b57 | Find next file |
| 2018-12-17T22:28:24.256132023Z | 47 | PC: 12a98 | Get disk transfer address |
| 2018-12-17T22:28:24.257771154Z | 43 | PC: 12aee | Set date |
| 2018-12-17T22:28:24.262129351Z | 61 | PC: 12af6 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:28:24.273507581Z | 63 | PC: 12b04 | Read file or device (Read 92 bytes on handle 7) |
| 2018-12-17T22:28:24.280217802Z | 60 | PC: 12b36 | Create or truncate file |
| 2018-12-17T22:28:24.293245985Z | 64 | PC: 12b48 | Write file or device (Write 450 bytes on handle 8) |
| 2018-12-17T22:28:24.297236696Z | 62 | PC: 12b4c | Close file |
| 2018-12-17T22:28:24.305406699Z | 43 | PC: 12b6a | Set date |
| 2018-12-17T22:28:24.311224133Z | 76 | PC: 12a45 | Terminate with return code (Return code = '0') |