.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:41:28.434291716Z | 26 | PC: 12a87 | Set disk transfer address |
| 2018-12-17T22:41:28.435254042Z | 53 | PC: 12a8c | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:28.43671384Z | 37 | PC: 12a96 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:28.437688109Z | 78 | PC: 12aa0 | Find first file |
| 2018-12-17T22:41:28.442054168Z | 65 | PC: 12ac7 | Delete file (Filename = '.COM') |
| 2018-12-17T22:41:28.446145218Z | 65 | PC: 12ad0 | Delete file (Filename = '') |
| 2018-12-17T22:41:28.449631279Z | 44 | PC: 12ad6 | Get time 0x12ad6: mov al, ch
0x12ad8: cwde
0x12ad9: cmp ax, 0x12
0x12adc: jge 0x12ae1
0x12ade: jmp 0x12b51
0x12ae0: nop
0x12ae1: mov dx, 0x349
0x12ae4: mov si, 0x34f
0x12ae7: push di
0x12ae8: mov ah, 0x2f
0x12aea: int 0x21
0x12aec: mov di, bx
0x12aee: mov ah, 0x4e
0x12af0: mov cx, 0x27
0x12af3: int 0x21
0x12af5: jb 0x12b37
0x12af7: mov ax, 0x4301
0x12afa: xor cx, cx
0x12afc: lea dx, word ptr [di + 0x1e]
0x12aff: int 0x21
|
| 2018-12-17T22:41:28.451445119Z | 78 | PC: 12b6a | Find first file |
| 2018-12-17T22:41:28.456020612Z | 67 | PC: 12baf | Get or set file attributes |
| 2018-12-17T22:41:28.470913455Z | 61 | PC: 12bb6 | Open file (Filename = '��j�') |
| 2018-12-17T22:41:28.482240154Z | 63 | PC: 12bc3 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:41:28.490273212Z | 66 | PC: 12bdb | Move file pointer |
| 2018-12-17T22:41:28.492613621Z | 87 | PC: 12bf1 | Get or set file date and time |
| 2018-12-17T22:41:28.502016001Z | 64 | PC: 12c24 | Write file or device (Write 3433 bytes on handle 5) |
| 2018-12-17T22:41:28.515349794Z | 66 | PC: 12c2f | Move file pointer |
| 2018-12-17T22:41:28.517262511Z | 64 | PC: 12c39 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:41:28.524954206Z | 87 | PC: 12c40 | Get or set file date and time |
| 2018-12-17T22:41:28.527024206Z | 62 | PC: 12c4e | Close file |
| 2018-12-17T22:41:28.536192469Z | 37 | PC: 12b98 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:28.537741153Z | 26 | PC: 12ba1 | Set disk transfer address |
