.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:35:33.708779117Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T22:35:33.711498769Z | 37 | PC: 12a80 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:35:33.712843581Z | 37 | PC: 12a84 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:35:33.714281844Z | 78 | PC: 12acf | Find first file |
| 2018-12-17T22:35:33.721299574Z | 61 | PC: 12b6a | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:35:33.727895082Z | 63 | PC: 12b79 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:35:33.734383368Z | 66 | PC: 12b88 | Move file pointer |
| 2018-12-17T22:35:33.736342998Z | 66 | PC: 12b97 | Move file pointer |
| 2018-12-17T22:35:33.737763311Z | 64 | PC: 12ba3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:35:33.740456232Z | 66 | PC: 12baf | Move file pointer |
| 2018-12-17T22:35:33.743006475Z | 44 | PC: 12bb3 | Get time 0x12bb3: mov byte ptr [bp + 0x196], dl 0x12bb7: call 0x12bcd 0x12bba: mov ah, 0x40 0x12bbc: mov cx, 0x196 0x12bbf: lea dx, word ptr [bp + 6] 0x12bc3: int 0x21 0x12bc5: call 0x12bcd 0x12bc8: mov ah, 0x3e 0x12bca: int 0x21 0x12bcc: ret 0x12bcd: lea si, word ptr [bp + 0x1f] 0x12bd1: mov cx, 0x158 0x12bd4: xor byte ptr [si], 0 0x12bd7: inc si 0x12bd8: dec cx 0x12bd9: jne 0x12bd4 0x12bdb: ret 0x12bdc: add word ptr [bx], di 0x12bde: aas 0x12bdf: aas |
| 2018-12-17T22:35:33.745637586Z | 64 | PC: 12bc5 | Write file or device (Write 406 bytes on handle 5) |
| 2018-12-17T22:35:33.759112787Z | 62 | PC: 12bcc | Close file |
| 2018-12-17T22:35:33.769984255Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:35:33.772631812Z | 61 | PC: 12b6a | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:35:33.779501791Z | 63 | PC: 12b79 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:35:33.786528866Z | 66 | PC: 12b88 | Move file pointer |
| 2018-12-17T22:35:33.790305366Z | 66 | PC: 12b97 | Move file pointer |
| 2018-12-17T22:35:33.791518087Z | 64 | PC: 12ba3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:35:33.794085887Z | 66 | PC: 12baf | Move file pointer |
| 2018-12-17T22:35:33.800933705Z | 44 | PC: 12bb3 | Get time 0x12bb3: mov byte ptr [bp + 0x196], dl 0x12bb7: call 0x12bcd 0x12bba: mov ah, 0x40 0x12bbc: mov cx, 0x196 0x12bbf: lea dx, word ptr [bp + 6] 0x12bc3: int 0x21 0x12bc5: call 0x12bcd 0x12bc8: mov ah, 0x3e 0x12bca: int 0x21 0x12bcc: ret 0x12bcd: lea si, word ptr [bp + 0x1f] 0x12bd1: mov cx, 0x158 0x12bd4: xor byte ptr [si], 0x42 0x12bd7: inc si 0x12bd8: dec cx 0x12bd9: jne 0x12bd4 0x12bdb: ret 0x12bdc: add word ptr [bx], di 0x12bde: aas 0x12bdf: aas |
| 2018-12-17T22:35:33.803231355Z | 64 | PC: 12bc5 | Write file or device (Write 406 bytes on handle 5) |
| 2018-12-17T22:35:33.80613894Z | 62 | PC: 12bcc | Close file |
| 2018-12-17T22:35:33.81419466Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:35:33.817452557Z | 61 | PC: 12b6a | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:35:33.825887369Z | 63 | PC: 12b79 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:35:33.834705733Z | 66 | PC: 12b88 | Move file pointer |
| 2018-12-17T22:35:33.836276163Z | 66 | PC: 12b97 | Move file pointer |
| 2018-12-17T22:35:33.837708929Z | 64 | PC: 12ba3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:35:33.841439529Z | 66 | PC: 12baf | Move file pointer |
| 2018-12-17T22:35:33.8430245Z | 44 | PC: 12bb3 | Get time 0x12bb3: mov byte ptr [bp + 0x196], dl 0x12bb7: call 0x12bcd 0x12bba: mov ah, 0x40 0x12bbc: mov cx, 0x196 0x12bbf: lea dx, word ptr [bp + 6] 0x12bc3: int 0x21 0x12bc5: call 0x12bcd 0x12bc8: mov ah, 0x3e 0x12bca: int 0x21 0x12bcc: ret 0x12bcd: lea si, word ptr [bp + 0x1f] 0x12bd1: mov cx, 0x158 0x12bd4: xor byte ptr [si], 0x48 0x12bd7: inc si 0x12bd8: dec cx 0x12bd9: jne 0x12bd4 0x12bdb: ret 0x12bdc: add word ptr [bx], di 0x12bde: aas 0x12bdf: aas |
| 2018-12-17T22:35:33.845155909Z | 64 | PC: 12bc5 | Write file or device (Write 406 bytes on handle 5) |
| 2018-12-17T22:35:33.853082528Z | 62 | PC: 12bcc | Close file |
| 2018-12-17T22:35:33.860674724Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:35:33.863117354Z | 61 | PC: 12b6a | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:35:33.870321853Z | 63 | PC: 12b79 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:35:33.876712718Z | 66 | PC: 12b88 | Move file pointer |
| 2018-12-17T22:35:33.877947226Z | 66 | PC: 12b97 | Move file pointer |
| 2018-12-17T22:35:33.879789796Z | 64 | PC: 12ba3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:35:33.882247142Z | 66 | PC: 12baf | Move file pointer |
| 2018-12-17T22:35:33.883512689Z | 44 | PC: 12bb3 | Get time 0x12bb3: mov byte ptr [bp + 0x196], dl 0x12bb7: call 0x12bcd 0x12bba: mov ah, 0x40 0x12bbc: mov cx, 0x196 0x12bbf: lea dx, word ptr [bp + 6] 0x12bc3: int 0x21 0x12bc5: call 0x12bcd 0x12bc8: mov ah, 0x3e 0x12bca: int 0x21 0x12bcc: ret 0x12bcd: lea si, word ptr [bp + 0x1f] 0x12bd1: mov cx, 0x158 0x12bd4: xor byte ptr [si], 0x48 0x12bd7: inc si 0x12bd8: dec cx 0x12bd9: jne 0x12bd4 0x12bdb: ret 0x12bdc: add word ptr [bx], di 0x12bde: aas 0x12bdf: aas |
| 2018-12-17T22:35:33.886303318Z | 64 | PC: 12bc5 | Write file or device (Write 406 bytes on handle 5) |
| 2018-12-17T22:35:33.888933103Z | 62 | PC: 12bcc | Close file |
| 2018-12-17T22:35:33.896675488Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:35:33.899610322Z | 61 | PC: 12b6a | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:35:33.906159665Z | 63 | PC: 12b79 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:35:33.912436687Z | 66 | PC: 12b88 | Move file pointer |
| 2018-12-17T22:35:33.914710794Z | 66 | PC: 12b97 | Move file pointer |
| 2018-12-17T22:35:33.916210889Z | 64 | PC: 12ba3 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:35:33.918730299Z | 66 | PC: 12baf | Move file pointer |
| 2018-12-17T22:35:33.920260172Z | 44 | PC: 12bb3 | Get time 0x12bb3: mov byte ptr [bp + 0x196], dl 0x12bb7: call 0x12bcd 0x12bba: mov ah, 0x40 0x12bbc: mov cx, 0x196 0x12bbf: lea dx, word ptr [bp + 6] 0x12bc3: int 0x21 0x12bc5: call 0x12bcd 0x12bc8: mov ah, 0x3e 0x12bca: int 0x21 0x12bcc: ret 0x12bcd: lea si, word ptr [bp + 0x1f] 0x12bd1: mov cx, 0x158 0x12bd4: xor byte ptr [si], 0x4d 0x12bd7: inc si 0x12bd8: dec cx 0x12bd9: jne 0x12bd4 0x12bdb: ret 0x12bdc: add word ptr [bx], di 0x12bde: aas 0x12bdf: aas |
| 2018-12-17T22:35:33.923292921Z | 64 | PC: 12bc5 | Write file or device (Write 406 bytes on handle 5) |
| 2018-12-17T22:35:33.926363239Z | 62 | PC: 12bcc | Close file |
| 2018-12-17T22:35:34.019368007Z | 26 | PC: 12ae9 | Set disk transfer address |