.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:31:51.714222051Z | 26 | PC: 12da5 | Set disk transfer address |
| 2018-12-17T22:31:51.717366017Z | 53 | PC: 12ad4 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:31:51.718418992Z | 37 | PC: 12aea | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:31:51.719348856Z | 71 | PC: 12afa | Get current directory |
| 2018-12-17T22:31:51.722497372Z | 78 | PC: 12b94 | Find first file |
| 2018-12-17T22:31:51.728127595Z | 78 | PC: 12b94 | Find first file |
| 2018-12-17T22:31:51.738507596Z | 61 | PC: 12db0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:31:51.750785497Z | 63 | PC: 12bb7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:31:51.75702838Z | 62 | PC: 12bbb | Close file |
| 2018-12-17T22:31:51.758765656Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:51.776303114Z | 61 | PC: 12db0 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:31:51.782944428Z | 64 | PC: 12cc8 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:31:51.785577336Z | 66 | PC: 12d9e | Move file pointer |
| 2018-12-17T22:31:51.786874361Z | 44 | PC: 12cd9 | Get time 0x12cd9: cmp dh, 0
0x12cdc: xchg ax, dx
0x12cdd: xchg ax, dx
0x12cde: je 0x12cd3
0x12ce0: mov byte ptr cs:[bp + 0x51c], dh
0x12ce5: xchg ax, dx
0x12ce6: xchg ax, dx
0x12ce7: call 0x12e18
0x12cea: xchg ax, dx
0x12ceb: xchg ax, dx
0x12cec: inc byte ptr cs:[bp + 0x51d]
0x12cf1: mov ax, 0x5701
0x12cf4: xchg ax, dx
0x12cf5: xchg ax, dx
0x12cf6: mov cx, word ptr cs:[bp + 0x590]
0x12cfb: mov dx, word ptr cs:[bp + 0x592]
0x12d00: xchg ax, dx
0x12d01: xchg ax, dx
0x12d02: int 0x21
0x12d04: mov ah, 0x3e
|
| 2018-12-17T22:31:51.78961866Z | 64 | PC: 12e71 | Write file or device (Write 1033 bytes on handle 5) |
| 2018-12-17T22:31:51.798490169Z | 87 | PC: 12d04 | Get or set file date and time |
| 2018-12-17T22:31:51.799855686Z | 62 | PC: 12d0a | Close file |
| 2018-12-17T22:31:51.821824081Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:51.845479121Z | 79 | PC: 12b94 | Find next file |
| 2018-12-17T22:31:51.848438532Z | 61 | PC: 12db0 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:31:51.856857405Z | 63 | PC: 12bb7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:31:51.863187395Z | 62 | PC: 12bbb | Close file |
| 2018-12-17T22:31:51.865184196Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:51.876947663Z | 61 | PC: 12db0 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:31:51.884432061Z | 64 | PC: 12cc8 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:31:51.887516472Z | 66 | PC: 12d9e | Move file pointer |
| 2018-12-17T22:31:51.889949708Z | 44 | PC: 12cd9 | Get time 0x12cd9: cmp dh, 0
0x12cdc: xchg ax, dx
0x12cdd: xchg ax, dx
0x12cde: je 0x12cd3
0x12ce0: mov byte ptr cs:[bp + 0x51c], dh
0x12ce5: xchg ax, dx
0x12ce6: xchg ax, dx
0x12ce7: call 0x12e18
0x12cea: xchg ax, dx
0x12ceb: xchg ax, dx
0x12cec: inc byte ptr cs:[bp + 0x51d]
0x12cf1: mov ax, 0x5701
0x12cf4: xchg ax, dx
0x12cf5: xchg ax, dx
0x12cf6: mov cx, word ptr cs:[bp + 0x590]
0x12cfb: mov dx, word ptr cs:[bp + 0x592]
0x12d00: xchg ax, dx
0x12d01: xchg ax, dx
0x12d02: int 0x21
0x12d04: mov ah, 0x3e
|
| 2018-12-17T22:31:51.892689535Z | 64 | PC: 12e71 | Write file or device (Write 1033 bytes on handle 5) |
| 2018-12-17T22:31:51.902729793Z | 87 | PC: 12d04 | Get or set file date and time |
| 2018-12-17T22:31:51.905033624Z | 62 | PC: 12d0a | Close file |
| 2018-12-17T22:31:51.924784513Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:51.934891569Z | 79 | PC: 12b94 | Find next file |
| 2018-12-17T22:31:51.938940867Z | 61 | PC: 12db0 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:31:51.945453732Z | 63 | PC: 12bb7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:31:51.952342642Z | 62 | PC: 12bbb | Close file |
| 2018-12-17T22:31:51.96507711Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:51.975930659Z | 61 | PC: 12db0 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:31:51.982492489Z | 64 | PC: 12cc8 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:31:51.985747666Z | 66 | PC: 12d9e | Move file pointer |
| 2018-12-17T22:31:51.987200243Z | 44 | PC: 12cd9 | Get time 0x12cd9: cmp dh, 0
0x12cdc: xchg ax, dx
0x12cdd: xchg ax, dx
0x12cde: je 0x12cd3
0x12ce0: mov byte ptr cs:[bp + 0x51c], dh
0x12ce5: xchg ax, dx
0x12ce6: xchg ax, dx
0x12ce7: call 0x12e18
0x12cea: xchg ax, dx
0x12ceb: xchg ax, dx
0x12cec: inc byte ptr cs:[bp + 0x51d]
0x12cf1: mov ax, 0x5701
0x12cf4: xchg ax, dx
0x12cf5: xchg ax, dx
0x12cf6: mov cx, word ptr cs:[bp + 0x590]
0x12cfb: mov dx, word ptr cs:[bp + 0x592]
0x12d00: xchg ax, dx
0x12d01: xchg ax, dx
0x12d02: int 0x21
0x12d04: mov ah, 0x3e
|
| 2018-12-17T22:31:51.990785268Z | 64 | PC: 12e71 | Write file or device (Write 1033 bytes on handle 5) |
| 2018-12-17T22:31:52.000602483Z | 87 | PC: 12d04 | Get or set file date and time |
| 2018-12-17T22:31:52.002579253Z | 62 | PC: 12d0a | Close file |
| 2018-12-17T22:31:52.008629197Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.029256964Z | 79 | PC: 12b94 | Find next file |
| 2018-12-17T22:31:52.031388986Z | 61 | PC: 12db0 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:31:52.037189496Z | 63 | PC: 12bb7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:31:52.042493196Z | 62 | PC: 12bbb | Close file |
| 2018-12-17T22:31:52.044902694Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.054833066Z | 61 | PC: 12db0 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:31:52.061670915Z | 64 | PC: 12cc8 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:31:52.064718174Z | 66 | PC: 12d9e | Move file pointer |
| 2018-12-17T22:31:52.065982157Z | 44 | PC: 12cd9 | Get time 0x12cd9: cmp dh, 0
0x12cdc: xchg ax, dx
0x12cdd: xchg ax, dx
0x12cde: je 0x12cd3
0x12ce0: mov byte ptr cs:[bp + 0x51c], dh
0x12ce5: xchg ax, dx
0x12ce6: xchg ax, dx
0x12ce7: call 0x12e18
0x12cea: xchg ax, dx
0x12ceb: xchg ax, dx
0x12cec: inc byte ptr cs:[bp + 0x51d]
0x12cf1: mov ax, 0x5701
0x12cf4: xchg ax, dx
0x12cf5: xchg ax, dx
0x12cf6: mov cx, word ptr cs:[bp + 0x590]
0x12cfb: mov dx, word ptr cs:[bp + 0x592]
0x12d00: xchg ax, dx
0x12d01: xchg ax, dx
0x12d02: int 0x21
0x12d04: mov ah, 0x3e
|
| 2018-12-17T22:31:52.068853585Z | 64 | PC: 12e71 | Write file or device (Write 1033 bytes on handle 5) |
| 2018-12-17T22:31:52.07796778Z | 87 | PC: 12d04 | Get or set file date and time |
| 2018-12-17T22:31:52.079464687Z | 62 | PC: 12d0a | Close file |
| 2018-12-17T22:31:52.087523123Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.09850532Z | 79 | PC: 12b94 | Find next file |
| 2018-12-17T22:31:52.102183193Z | 61 | PC: 12db0 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:31:52.10893391Z | 63 | PC: 12bb7 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:31:52.115825012Z | 62 | PC: 12bbb | Close file |
| 2018-12-17T22:31:52.117596678Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.122083038Z | 61 | PC: 12db0 | Open file (Filename = 'PRINTA~1.COM��') |
| 2018-12-17T22:31:52.127836365Z | 64 | PC: 12cc8 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:31:52.130732639Z | 66 | PC: 12d9e | Move file pointer |
| 2018-12-17T22:31:52.132352357Z | 44 | PC: 12cd9 | Get time 0x12cd9: cmp dh, 0
0x12cdc: xchg ax, dx
0x12cdd: xchg ax, dx
0x12cde: je 0x12cd3
0x12ce0: mov byte ptr cs:[bp + 0x51c], dh
0x12ce5: xchg ax, dx
0x12ce6: xchg ax, dx
0x12ce7: call 0x12e18
0x12cea: xchg ax, dx
0x12ceb: xchg ax, dx
0x12cec: inc byte ptr cs:[bp + 0x51d]
0x12cf1: mov ax, 0x5701
0x12cf4: xchg ax, dx
0x12cf5: xchg ax, dx
0x12cf6: mov cx, word ptr cs:[bp + 0x590]
0x12cfb: mov dx, word ptr cs:[bp + 0x592]
0x12d00: xchg ax, dx
0x12d01: xchg ax, dx
0x12d02: int 0x21
0x12d04: mov ah, 0x3e
|
| 2018-12-17T22:31:52.135608985Z | 64 | PC: 12e71 | Write file or device (Write 1033 bytes on handle 2) |
| 2018-12-17T22:31:52.147209394Z | 87 | PC: 12d04 | Get or set file date and time |
| 2018-12-17T22:31:52.148911337Z | 62 | PC: 12d0a | Close file |
| 2018-12-17T22:31:52.151868314Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.156346517Z | 79 | PC: 12b94 | Find next file |
| 2018-12-17T22:31:52.159159605Z | 61 | PC: 12db0 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:31:52.166653947Z | 63 | PC: 12bb7 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:31:52.173640344Z | 62 | PC: 12bbb | Close file |
| 2018-12-17T22:31:52.175444685Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.185866589Z | 61 | PC: 12db0 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:31:52.192296011Z | 64 | PC: 12cc8 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:31:52.194944933Z | 66 | PC: 12d9e | Move file pointer |
| 2018-12-17T22:31:52.197345582Z | 44 | PC: 12cd9 | Get time 0x12cd9: cmp dh, 0
0x12cdc: xchg ax, dx
0x12cdd: xchg ax, dx
0x12cde: je 0x12cd3
0x12ce0: mov byte ptr cs:[bp + 0x51c], dh
0x12ce5: xchg ax, dx
0x12ce6: xchg ax, dx
0x12ce7: call 0x12e18
0x12cea: xchg ax, dx
0x12ceb: xchg ax, dx
0x12cec: inc byte ptr cs:[bp + 0x51d]
0x12cf1: mov ax, 0x5701
0x12cf4: xchg ax, dx
0x12cf5: xchg ax, dx
0x12cf6: mov cx, word ptr cs:[bp + 0x590]
0x12cfb: mov dx, word ptr cs:[bp + 0x592]
0x12d00: xchg ax, dx
0x12d01: xchg ax, dx
0x12d02: int 0x21
0x12d04: mov ah, 0x3e
|
| 2018-12-17T22:31:52.200027408Z | 64 | PC: 12e71 | Write file or device (Write 1033 bytes on handle 2) |
| 2018-12-17T22:31:52.208983542Z | 87 | PC: 12d04 | Get or set file date and time |
| 2018-12-17T22:31:52.210620245Z | 62 | PC: 12d0a | Close file |
| 2018-12-17T22:31:52.218226017Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.227874477Z | 79 | PC: 12b94 | Find next file |
| 2018-12-17T22:31:52.231650836Z | 61 | PC: 12db0 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:31:52.238746023Z | 63 | PC: 12bb7 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:31:52.244967643Z | 62 | PC: 12bbb | Close file |
| 2018-12-17T22:31:52.247108304Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.257016819Z | 61 | PC: 12db0 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:31:52.26352159Z | 64 | PC: 12cc8 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:31:52.267415293Z | 66 | PC: 12d9e | Move file pointer |
| 2018-12-17T22:31:52.269998125Z | 44 | PC: 12cd9 | Get time 0x12cd9: cmp dh, 0
0x12cdc: xchg ax, dx
0x12cdd: xchg ax, dx
0x12cde: je 0x12cd3
0x12ce0: mov byte ptr cs:[bp + 0x51c], dh
0x12ce5: xchg ax, dx
0x12ce6: xchg ax, dx
0x12ce7: call 0x12e18
0x12cea: xchg ax, dx
0x12ceb: xchg ax, dx
0x12cec: inc byte ptr cs:[bp + 0x51d]
0x12cf1: mov ax, 0x5701
0x12cf4: xchg ax, dx
0x12cf5: xchg ax, dx
0x12cf6: mov cx, word ptr cs:[bp + 0x590]
0x12cfb: mov dx, word ptr cs:[bp + 0x592]
0x12d00: xchg ax, dx
0x12d01: xchg ax, dx
0x12d02: int 0x21
0x12d04: mov ah, 0x3e
|
| 2018-12-17T22:31:52.27795374Z | 64 | PC: 12e71 | Write file or device (Write 1033 bytes on handle 2) |
| 2018-12-17T22:31:52.287275398Z | 87 | PC: 12d04 | Get or set file date and time |
| 2018-12-17T22:31:52.291079125Z | 62 | PC: 12d0a | Close file |
| 2018-12-17T22:31:52.302742458Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.31263652Z | 79 | PC: 12b94 | Find next file |
| 2018-12-17T22:31:52.315972957Z | 61 | PC: 12db0 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:31:52.322776128Z | 63 | PC: 12bb7 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:31:52.329151291Z | 62 | PC: 12bbb | Close file |
| 2018-12-17T22:31:52.33207217Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.341987665Z | 61 | PC: 12db0 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:31:52.348962143Z | 64 | PC: 12cc8 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:31:52.353507024Z | 66 | PC: 12d9e | Move file pointer |
| 2018-12-17T22:31:52.354904963Z | 44 | PC: 12cd9 | Get time 0x12cd9: cmp dh, 0
0x12cdc: xchg ax, dx
0x12cdd: xchg ax, dx
0x12cde: je 0x12cd3
0x12ce0: mov byte ptr cs:[bp + 0x51c], dh
0x12ce5: xchg ax, dx
0x12ce6: xchg ax, dx
0x12ce7: call 0x12e18
0x12cea: xchg ax, dx
0x12ceb: xchg ax, dx
0x12cec: inc byte ptr cs:[bp + 0x51d]
0x12cf1: mov ax, 0x5701
0x12cf4: xchg ax, dx
0x12cf5: xchg ax, dx
0x12cf6: mov cx, word ptr cs:[bp + 0x590]
0x12cfb: mov dx, word ptr cs:[bp + 0x592]
0x12d00: xchg ax, dx
0x12d01: xchg ax, dx
0x12d02: int 0x21
0x12d04: mov ah, 0x3e
|
| 2018-12-17T22:31:52.357699861Z | 64 | PC: 12e71 | Write file or device (Write 1033 bytes on handle 2) |
| 2018-12-17T22:31:52.368814614Z | 87 | PC: 12d04 | Get or set file date and time |
| 2018-12-17T22:31:52.370274934Z | 62 | PC: 12d0a | Close file |
| 2018-12-17T22:31:52.378554043Z | 67 | PC: 12dc1 | Get or set file attributes |
| 2018-12-17T22:31:52.388543801Z | 79 | PC: 12b94 | Find next file |
| 2018-12-17T22:31:52.390908783Z | 59 | PC: 12b1a | Change current directory |
| 2018-12-17T22:31:52.394944983Z | 42 | PC: 12d1d | Get date 0x12d1d: xchg ax, dx
0x12d1e: xchg ax, dx
0x12d1f: cmp cx, 0x7cb
0x12d23: jb 0x12d91
0x12d25: cmp dh, 6
0x12d28: jb 0x12d91
0x12d2a: cmp dl, 5
0x12d2d: jb 0x12d91
0x12d2f: cmp al, 2
0x12d31: jb 0x12d91
0x12d33: xchg ax, dx
0x12d34: xchg ax, dx
0x12d35: mov ah, 0x2c
0x12d37: int 0x21
0x12d39: xchg ax, dx
0x12d3a: xchg ax, dx
0x12d3b: cmp ch, 9
0x12d3e: jb 0x12d91
0x12d40: cmp cl, 1
0x12d43: jb 0x12d91
|
| 2018-12-17T22:31:52.397758382Z | 37 | PC: 12b2d | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:31:52.398835656Z | 59 | PC: 12b3b | Change current directory |
| 2018-12-17T22:31:52.400471685Z | 26 | PC: 12da5 | Set disk transfer address |
