.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:35:01.527160262Z | 26 | PC: 12d91 | Set disk transfer address |
| 2018-12-17T22:35:01.528958242Z | 53 | PC: 12ac0 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:35:01.530210595Z | 37 | PC: 12ad6 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:35:01.531792948Z | 71 | PC: 12ae6 | Get current directory |
| 2018-12-17T22:35:01.53572104Z | 78 | PC: 12b80 | Find first file |
| 2018-12-17T22:35:01.541543298Z | 78 | PC: 12b80 | Find first file |
| 2018-12-17T22:35:01.548313062Z | 61 | PC: 12d9c | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:35:01.561762698Z | 63 | PC: 12ba3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:35:01.569684287Z | 62 | PC: 12ba7 | Close file |
| 2018-12-17T22:35:01.571383623Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.587800153Z | 61 | PC: 12d9c | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:35:01.59431021Z | 64 | PC: 12cb4 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:35:01.596886218Z | 66 | PC: 12d8a | Move file pointer |
| 2018-12-17T22:35:01.598112944Z | 44 | PC: 12cc5 | Get time 0x12cc5: cmp dh, 0
0x12cc8: xchg ax, dx
0x12cc9: xchg ax, dx
0x12cca: je 0x12cbf
0x12ccc: mov byte ptr cs:[bp + 0x508], dh
0x12cd1: xchg ax, dx
0x12cd2: xchg ax, dx
0x12cd3: call 0x12e04
0x12cd6: xchg ax, dx
0x12cd7: xchg ax, dx
0x12cd8: inc byte ptr cs:[bp + 0x509]
0x12cdd: mov ax, 0x5701
0x12ce0: xchg ax, dx
0x12ce1: xchg ax, dx
0x12ce2: mov cx, word ptr cs:[bp + 0x57c]
0x12ce7: mov dx, word ptr cs:[bp + 0x57e]
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: int 0x21
0x12cf0: mov ah, 0x3e
|
| 2018-12-17T22:35:01.601009142Z | 64 | PC: 12e5d | Write file or device (Write 1013 bytes on handle 5) |
| 2018-12-17T22:35:01.609785931Z | 87 | PC: 12cf0 | Get or set file date and time |
| 2018-12-17T22:35:01.611885973Z | 62 | PC: 12cf6 | Close file |
| 2018-12-17T22:35:01.620041165Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.629650341Z | 79 | PC: 12b80 | Find next file |
| 2018-12-17T22:35:01.632209857Z | 61 | PC: 12d9c | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:35:01.639611715Z | 63 | PC: 12ba3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:35:01.645825961Z | 62 | PC: 12ba7 | Close file |
| 2018-12-17T22:35:01.647610968Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.65812994Z | 61 | PC: 12d9c | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:35:01.66502872Z | 64 | PC: 12cb4 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:35:01.667881077Z | 66 | PC: 12d8a | Move file pointer |
| 2018-12-17T22:35:01.67049858Z | 44 | PC: 12cc5 | Get time 0x12cc5: cmp dh, 0
0x12cc8: xchg ax, dx
0x12cc9: xchg ax, dx
0x12cca: je 0x12cbf
0x12ccc: mov byte ptr cs:[bp + 0x508], dh
0x12cd1: xchg ax, dx
0x12cd2: xchg ax, dx
0x12cd3: call 0x12e04
0x12cd6: xchg ax, dx
0x12cd7: xchg ax, dx
0x12cd8: inc byte ptr cs:[bp + 0x509]
0x12cdd: mov ax, 0x5701
0x12ce0: xchg ax, dx
0x12ce1: xchg ax, dx
0x12ce2: mov cx, word ptr cs:[bp + 0x57c]
0x12ce7: mov dx, word ptr cs:[bp + 0x57e]
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: int 0x21
0x12cf0: mov ah, 0x3e
|
| 2018-12-17T22:35:01.673052257Z | 64 | PC: 12e5d | Write file or device (Write 1013 bytes on handle 5) |
| 2018-12-17T22:35:01.682650025Z | 87 | PC: 12cf0 | Get or set file date and time |
| 2018-12-17T22:35:01.685488558Z | 62 | PC: 12cf6 | Close file |
| 2018-12-17T22:35:01.693232084Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.702930771Z | 79 | PC: 12b80 | Find next file |
| 2018-12-17T22:35:01.706306179Z | 61 | PC: 12d9c | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:35:01.712672224Z | 63 | PC: 12ba3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:35:01.718878972Z | 62 | PC: 12ba7 | Close file |
| 2018-12-17T22:35:01.721344334Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.731096872Z | 61 | PC: 12d9c | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:35:01.742951233Z | 64 | PC: 12cb4 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:35:01.750106067Z | 66 | PC: 12d8a | Move file pointer |
| 2018-12-17T22:35:01.751395774Z | 44 | PC: 12cc5 | Get time 0x12cc5: cmp dh, 0
0x12cc8: xchg ax, dx
0x12cc9: xchg ax, dx
0x12cca: je 0x12cbf
0x12ccc: mov byte ptr cs:[bp + 0x508], dh
0x12cd1: xchg ax, dx
0x12cd2: xchg ax, dx
0x12cd3: call 0x12e04
0x12cd6: xchg ax, dx
0x12cd7: xchg ax, dx
0x12cd8: inc byte ptr cs:[bp + 0x509]
0x12cdd: mov ax, 0x5701
0x12ce0: xchg ax, dx
0x12ce1: xchg ax, dx
0x12ce2: mov cx, word ptr cs:[bp + 0x57c]
0x12ce7: mov dx, word ptr cs:[bp + 0x57e]
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: int 0x21
0x12cf0: mov ah, 0x3e
|
| 2018-12-17T22:35:01.753819456Z | 64 | PC: 12e5d | Write file or device (Write 1013 bytes on handle 5) |
| 2018-12-17T22:35:01.762354488Z | 87 | PC: 12cf0 | Get or set file date and time |
| 2018-12-17T22:35:01.764074406Z | 62 | PC: 12cf6 | Close file |
| 2018-12-17T22:35:01.77149318Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.781233918Z | 79 | PC: 12b80 | Find next file |
| 2018-12-17T22:35:01.78464314Z | 61 | PC: 12d9c | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:35:01.790801169Z | 63 | PC: 12ba3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:35:01.796831841Z | 62 | PC: 12ba7 | Close file |
| 2018-12-17T22:35:01.799227148Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.809807876Z | 61 | PC: 12d9c | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:35:01.817014079Z | 64 | PC: 12cb4 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:35:01.821125471Z | 66 | PC: 12d8a | Move file pointer |
| 2018-12-17T22:35:01.822682368Z | 44 | PC: 12cc5 | Get time 0x12cc5: cmp dh, 0
0x12cc8: xchg ax, dx
0x12cc9: xchg ax, dx
0x12cca: je 0x12cbf
0x12ccc: mov byte ptr cs:[bp + 0x508], dh
0x12cd1: xchg ax, dx
0x12cd2: xchg ax, dx
0x12cd3: call 0x12e04
0x12cd6: xchg ax, dx
0x12cd7: xchg ax, dx
0x12cd8: inc byte ptr cs:[bp + 0x509]
0x12cdd: mov ax, 0x5701
0x12ce0: xchg ax, dx
0x12ce1: xchg ax, dx
0x12ce2: mov cx, word ptr cs:[bp + 0x57c]
0x12ce7: mov dx, word ptr cs:[bp + 0x57e]
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: int 0x21
0x12cf0: mov ah, 0x3e
|
| 2018-12-17T22:35:01.824815717Z | 64 | PC: 12e5d | Write file or device (Write 1013 bytes on handle 5) |
| 2018-12-17T22:35:01.832178075Z | 87 | PC: 12cf0 | Get or set file date and time |
| 2018-12-17T22:35:01.833650288Z | 62 | PC: 12cf6 | Close file |
| 2018-12-17T22:35:01.838980465Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.845715573Z | 79 | PC: 12b80 | Find next file |
| 2018-12-17T22:35:01.847738895Z | 61 | PC: 12d9c | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:35:01.852065389Z | 63 | PC: 12ba3 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:35:01.856745303Z | 62 | PC: 12ba7 | Close file |
| 2018-12-17T22:35:01.858260836Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.864048208Z | 61 | PC: 12d9c | Open file (Filename = 'PRINTA~1.COM��') |
| 2018-12-17T22:35:01.871228999Z | 64 | PC: 12cb4 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:35:01.873254919Z | 66 | PC: 12d8a | Move file pointer |
| 2018-12-17T22:35:01.874517134Z | 44 | PC: 12cc5 | Get time 0x12cc5: cmp dh, 0
0x12cc8: xchg ax, dx
0x12cc9: xchg ax, dx
0x12cca: je 0x12cbf
0x12ccc: mov byte ptr cs:[bp + 0x508], dh
0x12cd1: xchg ax, dx
0x12cd2: xchg ax, dx
0x12cd3: call 0x12e04
0x12cd6: xchg ax, dx
0x12cd7: xchg ax, dx
0x12cd8: inc byte ptr cs:[bp + 0x509]
0x12cdd: mov ax, 0x5701
0x12ce0: xchg ax, dx
0x12ce1: xchg ax, dx
0x12ce2: mov cx, word ptr cs:[bp + 0x57c]
0x12ce7: mov dx, word ptr cs:[bp + 0x57e]
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: int 0x21
0x12cf0: mov ah, 0x3e
|
| 2018-12-17T22:35:01.87697145Z | 64 | PC: 12e5d | Write file or device (Write 1013 bytes on handle 2) |
| 2018-12-17T22:35:01.887623373Z | 87 | PC: 12cf0 | Get or set file date and time |
| 2018-12-17T22:35:01.888938665Z | 62 | PC: 12cf6 | Close file |
| 2018-12-17T22:35:01.890946525Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.895024724Z | 79 | PC: 12b80 | Find next file |
| 2018-12-17T22:35:01.901250634Z | 61 | PC: 12d9c | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:35:01.908582757Z | 63 | PC: 12ba3 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:35:01.914756724Z | 62 | PC: 12ba7 | Close file |
| 2018-12-17T22:35:01.916424348Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.932561447Z | 61 | PC: 12d9c | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:35:01.9395159Z | 64 | PC: 12cb4 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:35:01.942048444Z | 66 | PC: 12d8a | Move file pointer |
| 2018-12-17T22:35:01.943782202Z | 44 | PC: 12cc5 | Get time 0x12cc5: cmp dh, 0
0x12cc8: xchg ax, dx
0x12cc9: xchg ax, dx
0x12cca: je 0x12cbf
0x12ccc: mov byte ptr cs:[bp + 0x508], dh
0x12cd1: xchg ax, dx
0x12cd2: xchg ax, dx
0x12cd3: call 0x12e04
0x12cd6: xchg ax, dx
0x12cd7: xchg ax, dx
0x12cd8: inc byte ptr cs:[bp + 0x509]
0x12cdd: mov ax, 0x5701
0x12ce0: xchg ax, dx
0x12ce1: xchg ax, dx
0x12ce2: mov cx, word ptr cs:[bp + 0x57c]
0x12ce7: mov dx, word ptr cs:[bp + 0x57e]
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: int 0x21
0x12cf0: mov ah, 0x3e
|
| 2018-12-17T22:35:01.946355973Z | 64 | PC: 12e5d | Write file or device (Write 1013 bytes on handle 2) |
| 2018-12-17T22:35:01.95546313Z | 87 | PC: 12cf0 | Get or set file date and time |
| 2018-12-17T22:35:01.957919368Z | 62 | PC: 12cf6 | Close file |
| 2018-12-17T22:35:01.965482641Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:01.975629205Z | 79 | PC: 12b80 | Find next file |
| 2018-12-17T22:35:01.980121457Z | 61 | PC: 12d9c | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:35:01.986740126Z | 63 | PC: 12ba3 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:35:01.99323201Z | 62 | PC: 12ba7 | Close file |
| 2018-12-17T22:35:01.996144666Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:02.006569005Z | 61 | PC: 12d9c | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:35:02.013534022Z | 64 | PC: 12cb4 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:35:02.016707452Z | 66 | PC: 12d8a | Move file pointer |
| 2018-12-17T22:35:02.018035747Z | 44 | PC: 12cc5 | Get time 0x12cc5: cmp dh, 0
0x12cc8: xchg ax, dx
0x12cc9: xchg ax, dx
0x12cca: je 0x12cbf
0x12ccc: mov byte ptr cs:[bp + 0x508], dh
0x12cd1: xchg ax, dx
0x12cd2: xchg ax, dx
0x12cd3: call 0x12e04
0x12cd6: xchg ax, dx
0x12cd7: xchg ax, dx
0x12cd8: inc byte ptr cs:[bp + 0x509]
0x12cdd: mov ax, 0x5701
0x12ce0: xchg ax, dx
0x12ce1: xchg ax, dx
0x12ce2: mov cx, word ptr cs:[bp + 0x57c]
0x12ce7: mov dx, word ptr cs:[bp + 0x57e]
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: int 0x21
0x12cf0: mov ah, 0x3e
|
| 2018-12-17T22:35:02.020509686Z | 64 | PC: 12e5d | Write file or device (Write 1013 bytes on handle 2) |
| 2018-12-17T22:35:02.030871064Z | 87 | PC: 12cf0 | Get or set file date and time |
| 2018-12-17T22:35:02.03227713Z | 62 | PC: 12cf6 | Close file |
| 2018-12-17T22:35:02.039754076Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:02.050184009Z | 79 | PC: 12b80 | Find next file |
| 2018-12-17T22:35:02.052644796Z | 61 | PC: 12d9c | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:35:02.058969655Z | 63 | PC: 12ba3 | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:35:02.06626526Z | 62 | PC: 12ba7 | Close file |
| 2018-12-17T22:35:02.068138623Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:02.080546655Z | 61 | PC: 12d9c | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:35:02.08828901Z | 64 | PC: 12cb4 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:35:02.09512469Z | 66 | PC: 12d8a | Move file pointer |
| 2018-12-17T22:35:02.096603322Z | 44 | PC: 12cc5 | Get time 0x12cc5: cmp dh, 0
0x12cc8: xchg ax, dx
0x12cc9: xchg ax, dx
0x12cca: je 0x12cbf
0x12ccc: mov byte ptr cs:[bp + 0x508], dh
0x12cd1: xchg ax, dx
0x12cd2: xchg ax, dx
0x12cd3: call 0x12e04
0x12cd6: xchg ax, dx
0x12cd7: xchg ax, dx
0x12cd8: inc byte ptr cs:[bp + 0x509]
0x12cdd: mov ax, 0x5701
0x12ce0: xchg ax, dx
0x12ce1: xchg ax, dx
0x12ce2: mov cx, word ptr cs:[bp + 0x57c]
0x12ce7: mov dx, word ptr cs:[bp + 0x57e]
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: int 0x21
0x12cf0: mov ah, 0x3e
|
| 2018-12-17T22:35:02.100068668Z | 64 | PC: 12e5d | Write file or device (Write 1013 bytes on handle 2) |
| 2018-12-17T22:35:02.109391535Z | 87 | PC: 12cf0 | Get or set file date and time |
| 2018-12-17T22:35:02.111547786Z | 62 | PC: 12cf6 | Close file |
| 2018-12-17T22:35:02.119524101Z | 67 | PC: 12dad | Get or set file attributes |
| 2018-12-17T22:35:02.129929776Z | 79 | PC: 12b80 | Find next file |
| 2018-12-17T22:35:02.13219041Z | 59 | PC: 12b06 | Change current directory |
| 2018-12-17T22:35:02.136157469Z | 42 | PC: 12d09 | Get date 0x12d09: xchg ax, dx
0x12d0a: xchg ax, dx
0x12d0b: cmp cx, 0x7cb
0x12d0f: jb 0x12d7d
0x12d11: cmp dh, 6
0x12d14: jb 0x12d7d
0x12d16: cmp dl, 5
0x12d19: jb 0x12d7d
0x12d1b: cmp al, 2
0x12d1d: jb 0x12d7d
0x12d1f: xchg ax, dx
0x12d20: xchg ax, dx
0x12d21: mov ah, 0x2c
0x12d23: int 0x21
0x12d25: xchg ax, dx
0x12d26: xchg ax, dx
0x12d27: cmp ch, 9
0x12d2a: jb 0x12d7d
0x12d2c: cmp cl, 1
0x12d2f: jb 0x12d7d
|
| 2018-12-17T22:35:02.138897845Z | 37 | PC: 12b19 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:35:02.140682507Z | 59 | PC: 12b27 | Change current directory |
| 2018-12-17T22:35:02.142378902Z | 26 | PC: 12d91 | Set disk transfer address |
