.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:35:09.720733794Z | 44 | PC: 12abc | Get time 0x12abc: mov word ptr ds:[bp + 0x110], dx 0x12ac1: cmp cx, 0x81e 0x12ac5: je 0x12aaa 0x12ac7: mov ah, 0x1a 0x12ac9: lea dx, word ptr [bp + 0x2b1] 0x12acd: int 0x21 0x12acf: mov di, 0x100 0x12ad2: push di 0x12ad3: lea si, word ptr [bp + 0x2aa] 0x12ad7: movsb byte ptr es:[di], byte ptr [si] 0x12ad8: movsw word ptr es:[di], word ptr [si] 0x12ad9: mov byte ptr ds:[bp + 0x2b0], 0 0x12adf: mov ah, 0x47 0x12ae1: xor dl, dl 0x12ae3: lea si, word ptr [bp + 0x2dc] 0x12ae7: int 0x21 0x12ae9: mov ah, 0x4e 0x12aeb: mov cx, 7 0x12aee: lea dx, word ptr [bp + 0x29f] 0x12af2: int 0x21 |
| 2018-12-17T22:35:09.723509409Z | 26 | PC: 12acf | Set disk transfer address |
| 2018-12-17T22:35:09.725661066Z | 71 | PC: 12ae9 | Get current directory |
| 2018-12-17T22:35:09.728914353Z | 78 | PC: 12af4 | Find first file |
| 2018-12-17T22:35:09.735805823Z | 67 | PC: 12b3c | Get or set file attributes |
| 2018-12-17T22:35:09.755799193Z | 61 | PC: 12b41 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:35:09.764093774Z | 63 | PC: 12b4d | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:35:09.773107324Z | 66 | PC: 12aa9 | Move file pointer |
| 2018-12-17T22:35:09.778752762Z | 64 | PC: 12a6a | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:35:09.781798913Z | 66 | PC: 12aa9 | Move file pointer |
| 2018-12-17T22:35:09.783562545Z | 64 | PC: 12a7f | Write file or device (Write 427 bytes on handle 5) |
| 2018-12-17T22:35:09.796367617Z | 87 | PC: 12b70 | Get or set file date and time |
| 2018-12-17T22:35:09.798748036Z | 62 | PC: 12b74 | Close file |
| 2018-12-17T22:35:09.807939253Z | 67 | PC: 12b84 | Get or set file attributes |
| 2018-12-17T22:35:09.820822691Z | 79 | PC: 12af4 | Find next file |
| 2018-12-17T22:35:09.835503387Z | 67 | PC: 12b3c | Get or set file attributes |
| 2018-12-17T22:35:09.847355167Z | 61 | PC: 12b41 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:35:09.855722053Z | 63 | PC: 12b4d | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:35:09.864554412Z | 66 | PC: 12aa9 | Move file pointer |
| 2018-12-17T22:35:09.866610216Z | 64 | PC: 12a6a | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:35:09.869953094Z | 66 | PC: 12aa9 | Move file pointer |
| 2018-12-17T22:35:09.872795195Z | 64 | PC: 12a7f | Write file or device (Write 427 bytes on handle 5) |
| 2018-12-17T22:35:09.888458949Z | 87 | PC: 12b70 | Get or set file date and time |
| 2018-12-17T22:35:09.890467592Z | 62 | PC: 12b74 | Close file |
| 2018-12-17T22:35:09.899306437Z | 67 | PC: 12b84 | Get or set file attributes |
| 2018-12-17T22:35:09.91031324Z | 79 | PC: 12af4 | Find next file |
| 2018-12-17T22:35:09.9136332Z | 67 | PC: 12b3c | Get or set file attributes |
| 2018-12-17T22:35:09.925813154Z | 61 | PC: 12b41 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:35:09.934288027Z | 63 | PC: 12b4d | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:35:09.941834969Z | 66 | PC: 12aa9 | Move file pointer |
| 2018-12-17T22:35:09.944627291Z | 64 | PC: 12a6a | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:35:09.947935435Z | 66 | PC: 12aa9 | Move file pointer |
| 2018-12-17T22:35:09.949683075Z | 64 | PC: 12a7f | Write file or device (Write 427 bytes on handle 5) |
| 2018-12-17T22:35:09.959174824Z | 87 | PC: 12b70 | Get or set file date and time |
| 2018-12-17T22:35:09.961597093Z | 62 | PC: 12b74 | Close file |
| 2018-12-17T22:35:09.970507686Z | 67 | PC: 12b84 | Get or set file attributes |
| 2018-12-17T22:35:09.982449594Z | 79 | PC: 12af4 | Find next file |
| 2018-12-17T22:35:09.986598352Z | 67 | PC: 12b3c | Get or set file attributes |
| 2018-12-17T22:35:09.998690247Z | 61 | PC: 12b41 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:35:10.006695956Z | 63 | PC: 12b4d | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:35:10.014889089Z | 66 | PC: 12aa9 | Move file pointer |
| 2018-12-17T22:35:10.016907263Z | 64 | PC: 12a6a | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:35:10.02037601Z | 66 | PC: 12aa9 | Move file pointer |
| 2018-12-17T22:35:10.023634939Z | 64 | PC: 12a7f | Write file or device (Write 427 bytes on handle 5) |
| 2018-12-17T22:35:10.027621787Z | 87 | PC: 12b70 | Get or set file date and time |
| 2018-12-17T22:35:10.029787044Z | 62 | PC: 12b74 | Close file |
| 2018-12-17T22:35:10.038788414Z | 67 | PC: 12b84 | Get or set file attributes |
| 2018-12-17T22:35:10.050881696Z | 26 | PC: 12b98 | Set disk transfer address |
| 2018-12-17T22:35:10.052742068Z | 59 | PC: 12ba0 | Change current directory |
| 2018-12-17T22:35:10.058499339Z | 59 | PC: 12ba8 | Change current directory |