.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:28:53.396575297Z | 44 | PC: 1380f | Get time 0x1380f: xor dh, dh 0x13811: and dl, 7 0x13814: cmp dx, 6 0x13817: jg 0x1380b 0x13819: push dx 0x1381a: add dx, 0x138 0x1381e: mov si, dx 0x13820: mov dl, byte ptr cs:[si] 0x13823: mov byte ptr [0x103], dl 0x13827: pop dx 0x13828: push dx 0x13829: add dx, 0x14d 0x1382d: mov si, dx 0x1382f: mov dl, byte ptr cs:[si] 0x13832: mov byte ptr [0x100], dl 0x13836: mov ah, 0x2c 0x13838: int 0x21 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 |
| 2018-12-17T22:28:53.39972574Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.402029518Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.40479433Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.408323698Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.410718679Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.413247581Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.415920751Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.418778378Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.422220428Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.424196859Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.426977564Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.42905979Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.431062308Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.433554809Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.435941133Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.437942195Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.440589591Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.442599652Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.444542385Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.447514793Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.449713888Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.451764085Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.45434794Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.45668223Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.458735542Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.4676922Z | 44 | PC: 1383a | Get time 0x1383a: xor dh, dh 0x1383c: and dl, 7 0x1383f: cmp dx, 6 0x13842: jg 0x13836 0x13844: pop ax 0x13845: push ax 0x13846: cmp ax, dx 0x13848: je 0x13836 0x1384a: pop ax 0x1384b: push dx 0x1384c: add dx, 0x13f 0x13850: mov si, dx 0x13852: mov dl, byte ptr cs:[si] 0x13855: mov byte ptr [0x104], dl 0x13859: pop dx 0x1385a: add dx, 0x146 0x1385e: mov si, dx 0x13860: mov dl, byte ptr cs:[si] 0x13863: mov byte ptr [0x106], dl 0x13867: mov ah, 0x2c |
| 2018-12-17T22:28:53.470494563Z | 44 | PC: 1386b | Get time 0x1386b: cmp byte ptr [0x10a], 0 0x13870: je 0x13877 0x13872: cmp dh, 0xf 0x13875: jg 0x13880 0x13877: cmp dl, 0 0x1387a: je 0x1380b 0x1387c: mov byte ptr [0x10a], dl 0x13880: mov byte ptr [0xec0], 0 0x13885: mov byte ptr [0xec1], 4 0x1388a: mov byte ptr [0xeca], 0 0x1388f: mov cx, 0x27 0x13892: mov dx, 0xcd5 0x13895: mov ah, 0x4e 0x13897: int 0x21 0x13899: cmp ax, 0x12 0x1389c: je 0x138a1 0x1389e: call 0x138c3 0x138a1: mov cx, 0x27 0x138a4: mov dx, 0xcdb 0x138a7: mov ah, 0x4e |
| 2018-12-17T22:28:53.474319976Z | 78 | PC: 13899 | Find first file |
| 2018-12-17T22:28:53.480357522Z | 67 | PC: 138e4 | Get or set file attributes |
| 2018-12-17T22:28:53.496566367Z | 61 | PC: 138ea | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:28:53.503940392Z | 63 | PC: 138f9 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:28:53.507028775Z | 62 | PC: 13945 | Close file |
| 2018-12-17T22:28:53.509394695Z | 61 | PC: 1394e | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:28:53.517578348Z | 64 | PC: 12a5e | Write file or device (Write 4161 bytes on handle 5) |
| 2018-12-17T22:28:53.526557402Z | 87 | PC: 13976 | Get or set file date and time |
| 2018-12-17T22:28:53.528654886Z | 62 | PC: 1397e | Close file |
| 2018-12-17T22:28:53.536090729Z | 67 | PC: 1398b | Get or set file attributes |
| 2018-12-17T22:28:53.541902376Z | 79 | PC: 13935 | Find next file |
| 2018-12-17T22:28:53.545001953Z | 78 | PC: 138ab | Find first file |
| 2018-12-17T22:28:53.550710934Z | 67 | PC: 138e4 | Get or set file attributes |
| 2018-12-17T22:28:53.560243268Z | 61 | PC: 138ea | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:28:53.56724126Z | 63 | PC: 138f9 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:28:53.573585358Z | 62 | PC: 13945 | Close file |
| 2018-12-17T22:28:53.575440198Z | 61 | PC: 1394e | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:28:53.597679728Z | 64 | PC: 12a5e | Write file or device (Write 4161 bytes on handle 5) |
| 2018-12-17T22:28:53.607319213Z | 87 | PC: 13976 | Get or set file date and time |
| 2018-12-17T22:28:53.608782024Z | 62 | PC: 1397e | Close file |
| 2018-12-17T22:28:53.617316253Z | 67 | PC: 1398b | Get or set file attributes |
| 2018-12-17T22:28:53.622162481Z | 79 | PC: 13935 | Find next file |
| 2018-12-17T22:28:53.624914947Z | 67 | PC: 138e4 | Get or set file attributes |
| 2018-12-17T22:28:53.640411454Z | 61 | PC: 138ea | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:28:53.647344884Z | 63 | PC: 138f9 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:28:53.654033757Z | 87 | PC: 13976 | Get or set file date and time |
| 2018-12-17T22:28:53.657002065Z | 62 | PC: 1397e | Close file |
| 2018-12-17T22:28:53.66662481Z | 67 | PC: 1398b | Get or set file attributes |
| 2018-12-17T22:28:53.67709471Z | 79 | PC: 13935 | Find next file |
| 2018-12-17T22:28:53.684572342Z | 67 | PC: 138e4 | Get or set file attributes |
| 2018-12-17T22:28:53.694848625Z | 61 | PC: 138ea | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:28:53.70168516Z | 63 | PC: 138f9 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:28:53.709683326Z | 62 | PC: 13945 | Close file |
| 2018-12-17T22:28:53.711398982Z | 61 | PC: 1394e | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:28:53.719145484Z | 64 | PC: 12a5e | Write file or device (Write 4161 bytes on handle 5) |
| 2018-12-17T22:28:53.857536173Z | 87 | PC: 13976 | Get or set file date and time |
| 2018-12-17T22:28:53.864433413Z | 62 | PC: 1397e | Close file |
| 2018-12-17T22:28:54.063437431Z | 67 | PC: 1398b | Get or set file attributes |
| 2018-12-17T22:28:54.069340741Z | 79 | PC: 13935 | Find next file |
| 2018-12-17T22:28:54.073428102Z | 67 | PC: 138e4 | Get or set file attributes |
| 2018-12-17T22:28:54.083370375Z | 61 | PC: 138ea | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:28:54.090778636Z | 63 | PC: 138f9 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:28:54.098917004Z | 87 | PC: 13976 | Get or set file date and time |
| 2018-12-17T22:28:54.100700776Z | 62 | PC: 1397e | Close file |
| 2018-12-17T22:28:54.108227964Z | 67 | PC: 1398b | Get or set file attributes |
| 2018-12-17T22:28:54.118903409Z | 79 | PC: 13935 | Find next file |
| 2018-12-17T22:28:54.123911073Z | 67 | PC: 138e4 | Get or set file attributes |
| 2018-12-17T22:28:54.135773043Z | 61 | PC: 138ea | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:28:54.143712316Z | 63 | PC: 138f9 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:28:54.148815568Z | 87 | PC: 13976 | Get or set file date and time |
| 2018-12-17T22:28:54.149988908Z | 62 | PC: 1397e | Close file |
| 2018-12-17T22:28:54.155177983Z | 67 | PC: 1398b | Get or set file attributes |
| 2018-12-17T22:28:54.158305375Z | 79 | PC: 13935 | Find next file |
| 2018-12-17T22:28:54.160544603Z | 67 | PC: 138e4 | Get or set file attributes |
| 2018-12-17T22:28:54.167364585Z | 61 | PC: 138ea | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:28:54.176838007Z | 63 | PC: 138f9 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:28:54.183412358Z | 62 | PC: 13945 | Close file |
| 2018-12-17T22:28:54.185790992Z | 61 | PC: 1394e | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:28:54.198809779Z | 64 | PC: 12a5e | Write file or device (Write 4161 bytes on handle 5) |
| 2018-12-17T22:28:54.207475457Z | 87 | PC: 13976 | Get or set file date and time |
| 2018-12-17T22:28:54.209667345Z | 62 | PC: 1397e | Close file |
| 2018-12-17T22:28:54.217212831Z | 67 | PC: 1398b | Get or set file attributes |
| 2018-12-17T22:28:54.22211156Z | 44 | PC: 139a1 | Get time 0x139a1: xor dh, dh 0x139a3: and dl, 0x3f 0x139a6: cmp dx, 0x69 0x139a9: jg 0x1399d 0x139ab: mov ah, 9 0x139ad: add dx, dx 0x139af: add dx, 0x154 0x139b3: mov si, dx 0x139b5: mov dx, word ptr cs:[si] 0x139b8: int 0x21 0x139ba: int 0x20 0x139bc: mov ah, 0xf 0x139be: int 0x10 0x139c0: xor ah, ah 0x139c2: int 0x10 0x139c4: mov ah, 1 0x139c6: mov cx, 0x2607 0x139c9: int 0x10 0x139cb: mov ax, 0xb800 0x139ce: mov es, ax |
| 2018-12-17T22:28:54.224896715Z | 9 | PC: 139ba | Display string (String= 'Bad command or file name ') |