.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:39:14.317096431Z | 78 | PC: 13e78 | Find first file |
| 2018-12-17T22:39:14.321670592Z | 61 | PC: 13e96 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:39:14.326362064Z | 63 | PC: 13ea9 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.330699989Z | 66 | PC: 13eb4 | Move file pointer |
| 2018-12-17T22:39:14.332231464Z | 66 | PC: 13ecd | Move file pointer |
| 2018-12-17T22:39:14.333661637Z | 63 | PC: 13ede | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.335757346Z | 64 | PC: 13f34 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:39:14.348514738Z | 66 | PC: 13f58 | Move file pointer |
| 2018-12-17T22:39:14.34988876Z | 64 | PC: 13f69 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:39:14.355308262Z | 62 | PC: 13f6d | Close file |
| 2018-12-17T22:39:14.36538866Z | 79 | PC: 13e86 | Find next file |
| 2018-12-17T22:39:14.368688616Z | 61 | PC: 13e96 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:39:14.375981034Z | 63 | PC: 13ea9 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.382617667Z | 66 | PC: 13eb4 | Move file pointer |
| 2018-12-17T22:39:14.384761163Z | 66 | PC: 13ecd | Move file pointer |
| 2018-12-17T22:39:14.386662841Z | 63 | PC: 13ede | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.389147933Z | 64 | PC: 13f34 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:39:14.39227728Z | 66 | PC: 13f58 | Move file pointer |
| 2018-12-17T22:39:14.393876459Z | 64 | PC: 13f69 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:39:14.396331983Z | 62 | PC: 13f6d | Close file |
| 2018-12-17T22:39:14.407692005Z | 79 | PC: 13e86 | Find next file |
| 2018-12-17T22:39:14.41030074Z | 61 | PC: 13e96 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:39:14.41670093Z | 63 | PC: 13ea9 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.423362126Z | 66 | PC: 13eb4 | Move file pointer |
| 2018-12-17T22:39:14.426212423Z | 66 | PC: 13ecd | Move file pointer |
| 2018-12-17T22:39:14.428905298Z | 63 | PC: 13ede | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.431807638Z | 64 | PC: 13f34 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:39:14.434592503Z | 66 | PC: 13f58 | Move file pointer |
| 2018-12-17T22:39:14.435912397Z | 64 | PC: 13f69 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:39:14.439356885Z | 62 | PC: 13f6d | Close file |
| 2018-12-17T22:39:14.447518585Z | 79 | PC: 13e86 | Find next file |
| 2018-12-17T22:39:14.450363782Z | 61 | PC: 13e96 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:39:14.456745569Z | 63 | PC: 13ea9 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.46340186Z | 66 | PC: 13eb4 | Move file pointer |
| 2018-12-17T22:39:14.464755478Z | 66 | PC: 13ecd | Move file pointer |
| 2018-12-17T22:39:14.465972239Z | 63 | PC: 13ede | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.468651732Z | 64 | PC: 13f34 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:39:14.47121753Z | 66 | PC: 13f58 | Move file pointer |
| 2018-12-17T22:39:14.472644447Z | 64 | PC: 13f69 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:39:14.475429459Z | 62 | PC: 13f6d | Close file |
| 2018-12-17T22:39:14.483118891Z | 79 | PC: 13e86 | Find next file |
| 2018-12-17T22:39:14.485789382Z | 61 | PC: 13e96 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:39:14.50265162Z | 63 | PC: 13ea9 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.509255654Z | 66 | PC: 13eb4 | Move file pointer |
| 2018-12-17T22:39:14.510969156Z | 66 | PC: 13ecd | Move file pointer |
| 2018-12-17T22:39:14.513727759Z | 63 | PC: 13ede | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.516921126Z | 64 | PC: 13f34 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:39:14.519559868Z | 66 | PC: 13f58 | Move file pointer |
| 2018-12-17T22:39:14.521561264Z | 64 | PC: 13f69 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:39:14.52408812Z | 62 | PC: 13f6d | Close file |
| 2018-12-17T22:39:14.531555749Z | 79 | PC: 13e86 | Find next file |
| 2018-12-17T22:39:14.534795389Z | 61 | PC: 13e96 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:39:14.541256672Z | 63 | PC: 13ea9 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.547418913Z | 66 | PC: 13eb4 | Move file pointer |
| 2018-12-17T22:39:14.549684036Z | 66 | PC: 13ecd | Move file pointer |
| 2018-12-17T22:39:14.551052884Z | 63 | PC: 13ede | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.553765326Z | 64 | PC: 13f34 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:39:14.561871728Z | 66 | PC: 13f58 | Move file pointer |
| 2018-12-17T22:39:14.563057353Z | 64 | PC: 13f69 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:39:14.569484823Z | 62 | PC: 13f6d | Close file |
| 2018-12-17T22:39:14.581743545Z | 79 | PC: 13e86 | Find next file |
| 2018-12-17T22:39:14.584289468Z | 61 | PC: 13e96 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:39:14.591272672Z | 63 | PC: 13ea9 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.598415086Z | 66 | PC: 13eb4 | Move file pointer |
| 2018-12-17T22:39:14.599876166Z | 66 | PC: 13ecd | Move file pointer |
| 2018-12-17T22:39:14.601375585Z | 63 | PC: 13ede | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.605275106Z | 64 | PC: 13f34 | Write file or device (Write 349 bytes on handle 5) |
| 2018-12-17T22:39:14.608171042Z | 66 | PC: 13f58 | Move file pointer |
| 2018-12-17T22:39:14.609677454Z | 64 | PC: 13f69 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:39:14.612646359Z | 62 | PC: 13f6d | Close file |
| 2018-12-17T22:39:14.61983311Z | 79 | PC: 13e86 | Find next file |
| 2018-12-17T22:39:14.622211143Z | 61 | PC: 13e96 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:39:14.628889563Z | 63 | PC: 13ea9 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.631277802Z | 66 | PC: 13eb4 | Move file pointer |
| 2018-12-17T22:39:14.632921326Z | 66 | PC: 13ecd | Move file pointer |
| 2018-12-17T22:39:14.635732038Z | 63 | PC: 13ede | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:39:14.639934617Z | 62 | PC: 13f6d | Close file |
| 2018-12-17T22:39:14.642137414Z | 79 | PC: 13e86 | Find next file |
| 2018-12-17T22:39:14.645825263Z | 9 | PC: 12a85 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ') |
| 2018-12-17T22:39:14.652249346Z | 0 | PC: 12a89 | Program terminate |