.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T21:56:50.252503394Z | 78 | PC: 12afb | Find first file |
| 2018-12-17T21:56:50.258835838Z | 67 | PC: 12b47 | Get or set file attributes |
| 2018-12-17T21:56:50.274297228Z | 61 | PC: 12b54 | Open file (Filename = '&X=��') |
| 2018-12-17T21:56:50.280795356Z | 63 | PC: 12b6a | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T21:56:50.287342741Z | 66 | PC: 12b7c | Move file pointer |
| 2018-12-17T21:56:50.288642188Z | 66 | PC: 12bb4 | Move file pointer |
| 2018-12-17T21:56:50.289833152Z | 63 | PC: 12bc7 | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T21:56:50.292332765Z | 66 | PC: 12bf2 | Move file pointer |
| 2018-12-17T21:56:50.293612273Z | 87 | PC: 12bf9 | Get or set file date and time |
| 2018-12-17T21:56:50.294776352Z | 44 | PC: 12c99 | Get time 0x12c99: test dh, 1
0x12c9c: jne 0x12cb0
0x12c9e: test dl, 1
0x12ca1: jne 0x12cb0
0x12ca3: test cl, 1
0x12ca6: jne 0x12cb0
0x12ca8: mov dx, 0x3ca
0x12cab: mov ah, 9
0x12cad: int 0x21
0x12caf: ret
0x12cb0: cmp ch, 0x14
0x12cb3: jne 0x12cd6
0x12cb5: cmp cl, 0x14
0x12cb8: jne 0x12cd6
0x12cba: push es
0x12cbb: push ds
0x12cbc: mov ds, dx
0x12cbe: mov ax, 0xb800
0x12cc1: mov es, ax
0x12cc3: xor di, di
|
| 2018-12-17T21:56:50.29707562Z | 9 | PC: 12caf | Display string (String= '3����5!�������ë�3غ���%!��Q�Q�YY����L*.com�SLEEP.COM�M��Death Lord.So I dub thee Unforgiven.
') |
| 2018-12-17T21:56:50.300841092Z | 64 | PC: 12c21 | Write file or device (Write 752 bytes on handle 5) |
| 2018-12-17T21:56:50.309726114Z | 66 | PC: 12c30 | Move file pointer |
| 2018-12-17T21:56:50.311824854Z | 64 | PC: 12c40 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T21:56:50.318280461Z | 87 | PC: 12c4f | Get or set file date and time |
| 2018-12-17T21:56:50.319838706Z | 62 | PC: 12c60 | Close file |
| 2018-12-17T21:56:50.33237838Z | 9 | PC: 12aa2 | Display string (String= 'ABCDE - This is a 100 byte COM test, 1994
') |
