.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:28:37.322297524Z | 26 | PC: 22a78 | Set disk transfer address |
| 2018-12-17T22:28:37.324437452Z | 78 | PC: 22a82 | Find first file |
| 2018-12-17T22:28:37.3305427Z | 61 | PC: 22a8c | Open file (Filename = '') |
| 2018-12-17T22:28:37.336825243Z | 63 | PC: 22a99 | Read file or device (Read 407 bytes on handle 5) |
| 2018-12-17T22:28:37.343307016Z | 66 | PC: 22aac | Move file pointer |
| 2018-12-17T22:28:37.373749743Z | 64 | PC: 22b00 | Write file or device (Write 611 bytes on handle 5) |
| 2018-12-17T22:28:37.386177664Z | 44 | PC: 22b07 | Get time 0x22b07: mov byte ptr [0x1ab], dl 0x22b0b: ret 0x22b0c: call 0x22b4a 0x22b12: mov ah, 0x4c 0x22b14: int 0x21 0x22b16: mov edx, dword ptr [esp + 4] 0x22b1c: mov ah, 9 0x22b1e: int 0x21 0x22b20: nop 0x22b21: ret 0x22b23: mov ah, 8 0x22b25: int 0x21 0x22b27: nop 0x22b28: ret 0x22b2a: sub esp, 0x10 0x22b2e: mov ah, 0x2c 0x22b30: int 0x21 0x22b32: mov dword ptr [esp + 0xc], ecx 0x22b38: mov dword ptr [esp + 8], edx 0x22b3e: mov eax, dword ptr [esp + 8] |
| 2018-12-17T22:28:37.390180673Z | 62 | PC: 22ab8 | Close file |
| 2018-12-17T22:28:37.397248295Z | 79 | PC: 22a82 | Find next file |
| 2018-12-17T22:28:37.399489837Z | 61 | PC: 22a8c | Open file (Filename = '') |
| 2018-12-17T22:28:37.40394849Z | 63 | PC: 22a99 | Read file or device (Read 27 bytes on handle 5) |
| 2018-12-17T22:28:37.409521287Z | 66 | PC: 22aac | Move file pointer |
| 2018-12-17T22:28:37.410892643Z | 64 | PC: 22b00 | Write file or device (Write 231 bytes on handle 5) |
| 2018-12-17T22:28:37.412866795Z | 44 | PC: 22b07 | Get time 0x22b07: mov byte ptr [0x1ab], dl 0x22b0b: ret 0x22b0c: mov dx, 0x10b 0x22b0f: mov ah, 9 0x22b11: int 0x21 0x22b13: mov ah, 0x4c 0x22b15: int 0x21 0x22b17: dec ax 0x22b18: insb byte ptr es:[di], dx 0x22b1a: insb byte ptr es:[di], dx 0x22b1b: outsw dx, word ptr [si] 0x22b1c: sub al, 0x20 0x22b1e: push di 0x22b1f: outsw dx, word ptr [si] 0x22b20: jb 0x22b8e 0x22b22: and word ptr fs:[di], cx 0x22b25: or ah, byte ptr [si] 0x22b27: nop 0x22b28: ret 0x22b2a: sub esp, 0x10 |
| 2018-12-17T22:28:37.415296935Z | 62 | PC: 22ab8 | Close file |
| 2018-12-17T22:28:37.42092398Z | 79 | PC: 22a82 | Find next file |
| 2018-12-17T22:28:37.424740837Z | 61 | PC: 22a8c | Open file (Filename = '') |
| 2018-12-17T22:28:37.429650848Z | 63 | PC: 22a99 | Read file or device (Read 92 bytes on handle 5) |
| 2018-12-17T22:28:37.436470314Z | 66 | PC: 22aac | Move file pointer |
| 2018-12-17T22:28:37.43876577Z | 64 | PC: 22b00 | Write file or device (Write 296 bytes on handle 5) |
| 2018-12-17T22:28:37.443406763Z | 44 | PC: 22b07 | Get time 0x22b07: mov byte ptr [0x1ab], dl 0x22b0b: ret 0x22b0c: call 0x22b16 0x22b12: mov ah, 0x4c 0x22b14: int 0x21 0x22b16: mov edx, 0x11d 0x22b1c: mov ah, 9 0x22b1e: int 0x21 0x22b20: mov ah, 8 0x22b22: int 0x21 0x22b24: xor eax, eax 0x22b27: ret 0x22b29: dec ax 0x22b2a: insb byte ptr es:[di], dx 0x22b2c: insb byte ptr es:[di], dx 0x22b2d: outsw dx, word ptr [si] 0x22b2e: sub al, 0x20 0x22b30: push dx 0x22b31: arpl word ptr gs:[di + 0x72], si 0x22b35: jae 0x22b9c |
| 2018-12-17T22:28:37.445775176Z | 62 | PC: 22ab8 | Close file |
| 2018-12-17T22:28:37.454306951Z | 79 | PC: 22a82 | Find next file |
| 2018-12-17T22:28:37.458174893Z | 61 | PC: 22a8c | Open file (Filename = '') |
| 2018-12-17T22:28:37.464836032Z | 63 | PC: 22a99 | Read file or device (Read 29 bytes on handle 5) |
| 2018-12-17T22:28:37.471509404Z | 66 | PC: 22aac | Move file pointer |
| 2018-12-17T22:28:37.474780297Z | 64 | PC: 22b00 | Write file or device (Write 233 bytes on handle 5) |
| 2018-12-17T22:28:37.478077278Z | 44 | PC: 22b07 | Get time 0x22b07: mov byte ptr [0x1ab], dl 0x22b0b: ret 0x22b0c: mov dx, 0x10d 0x22b0f: mov ah, 9 0x22b11: int 0x21 0x22b13: jmp 0x22b13 0x22b15: mov ah, 0x4c 0x22b17: int 0x21 0x22b19: dec ax 0x22b1a: insb byte ptr es:[di], dx 0x22b1c: insb byte ptr es:[di], dx 0x22b1d: outsw dx, word ptr [si] 0x22b1e: sub al, 0x20 0x22b20: push di 0x22b21: outsw dx, word ptr [si] 0x22b22: jb 0x22b90 0x22b24: and word ptr fs:[di], cx 0x22b27: or ah, byte ptr [si] 0x22b29: dec ax 0x22b2a: insb byte ptr es:[di], dx |
| 2018-12-17T22:28:37.480482408Z | 62 | PC: 22ab8 | Close file |
| 2018-12-17T22:28:37.491306529Z | 79 | PC: 22a82 | Find next file |
| 2018-12-17T22:28:37.494115294Z | 61 | PC: 22a8c | Open file (Filename = '') |
| 2018-12-17T22:28:37.501085007Z | 63 | PC: 22a99 | Read file or device (Read 29 bytes on handle 5) |
| 2018-12-17T22:28:37.508468436Z | 66 | PC: 22aac | Move file pointer |
| 2018-12-17T22:28:37.511427128Z | 64 | PC: 22b00 | Write file or device (Write 233 bytes on handle 5) |
| 2018-12-17T22:28:37.515018675Z | 44 | PC: 22b07 | Get time 0x22b07: mov byte ptr [0x1ab], dl 0x22b0b: ret 0x22b0c: mov dx, 0x10d 0x22b0f: mov ah, 9 0x22b11: int 0x21 0x22b13: jmp 0x22b13 0x22b15: mov ah, 0x4c 0x22b17: int 0x21 0x22b19: dec ax 0x22b1a: insb byte ptr es:[di], dx 0x22b1c: insb byte ptr es:[di], dx 0x22b1d: outsw dx, word ptr [si] 0x22b1e: sub al, 0x20 0x22b20: push di 0x22b21: outsw dx, word ptr [si] 0x22b22: jb 0x22b90 0x22b24: and word ptr fs:[di], cx 0x22b27: or ah, byte ptr [si] 0x22b29: dec ax 0x22b2a: insb byte ptr es:[di], dx |
| 2018-12-17T22:28:37.518534974Z | 62 | PC: 22ab8 | Close file |
| 2018-12-17T22:28:37.532410553Z | 79 | PC: 22a82 | Find next file |
| 2018-12-17T22:28:37.537155723Z | 61 | PC: 22a8c | Open file (Filename = '') |
| 2018-12-17T22:28:37.544245885Z | 63 | PC: 22a99 | Read file or device (Read 501 bytes on handle 5) |
| 2018-12-17T22:28:37.551001912Z | 66 | PC: 22aac | Move file pointer |
| 2018-12-17T22:28:37.55283147Z | 64 | PC: 22b00 | Write file or device (Write 705 bytes on handle 5) |
| 2018-12-17T22:28:37.561660909Z | 44 | PC: 22b07 | Get time 0x22b07: mov byte ptr [0x1ab], dl 0x22b0b: ret 0x22b0c: fninit 0x22b0e: mov ah, 0xf 0x22b10: int 0x10 0x22b12: mov byte ptr [0x2cc], al 0x22b15: mov ax, 0x4f01 0x22b18: mov cx, 0x11b 0x22b1b: mov di, 0x4ed 0x22b1e: int 0x10 0x22b20: cmp ax, 0x4f 0x22b23: jne 0x22caf 0x22b27: mov ax, 0x4f02 0x22b2a: mov bx, 0x411b 0x22b2d: int 0x10 0x22b2f: cmp ax, 0x4f 0x22b32: jne 0x22caf 0x22b36: mov eax, ds 0x22b39: shl eax, 4 0x22b3d: add eax, 0x2dd |
| 2018-12-17T22:28:37.564349504Z | 62 | PC: 22ab8 | Close file |
| 2018-12-17T22:28:37.572692276Z | 79 | PC: 22a82 | Find next file |
| 2018-12-17T22:28:37.575317673Z | 61 | PC: 22a8c | Open file (Filename = '') |
| 2018-12-17T22:28:37.582008523Z | 63 | PC: 22a99 | Read file or device (Read 29 bytes on handle 5) |
| 2018-12-17T22:28:37.588261377Z | 66 | PC: 22aac | Move file pointer |
| 2018-12-17T22:28:37.589924591Z | 64 | PC: 22b00 | Write file or device (Write 233 bytes on handle 5) |
| 2018-12-17T22:28:37.595065539Z | 44 | PC: 22b07 | Get time 0x22b07: mov byte ptr [0x1ab], dl 0x22b0b: ret 0x22b0c: mov dx, 0x10d 0x22b0f: mov ah, 9 0x22b11: int 0x21 0x22b13: jmp 0x22b13 0x22b15: mov ah, 0x4c 0x22b17: int 0x21 0x22b19: dec ax 0x22b1a: insb byte ptr es:[di], dx 0x22b1c: insb byte ptr es:[di], dx 0x22b1d: outsw dx, word ptr [si] 0x22b1e: sub al, 0x20 0x22b20: push di 0x22b21: outsw dx, word ptr [si] 0x22b22: jb 0x22b90 0x22b24: and word ptr fs:[di], cx 0x22b27: or ah, byte ptr [si] 0x22b29: dec di 0x22b2a: mov bx, 0x411b |
| 2018-12-17T22:28:37.597492955Z | 62 | PC: 22ab8 | Close file |
| 2018-12-17T22:28:37.605609975Z | 79 | PC: 22a82 | Find next file |
| 2018-12-17T22:28:37.609059368Z | 61 | PC: 22a8c | Open file (Filename = '') |
| 2018-12-17T22:28:37.615846741Z | 63 | PC: 22a99 | Read file or device (Read 206 bytes on handle 5) |
| 2018-12-17T22:28:37.618705753Z | 62 | PC: 22ab8 | Close file |
| 2018-12-17T22:28:37.621493032Z | 79 | PC: 22a82 | Find next file |
| 2018-12-17T22:28:37.627099136Z | 26 | PC: 22acb | Set disk transfer address |