.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:42:16.108140522Z | 9 | PC: 12a49 | Display string (String= 'This program requires Microsoft Windows. ') |
| 2018-12-17T22:42:16.111884087Z | 53 | PC: 15172 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:42:16.115716227Z | 37 | PC: 15180 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:42:16.117357441Z | 26 | PC: 152e2 | Set disk transfer address |
| 2018-12-17T22:42:16.118974343Z | 78 | PC: 1519a | Find first file |
| 2018-12-17T22:42:16.126847424Z | 67 | PC: 151c9 | Get or set file attributes |
| 2018-12-17T22:42:16.144649967Z | 61 | PC: 151d5 | Open file |
| 2018-12-17T22:42:16.152542845Z | 63 | PC: 151f0 | Read file or device (Read 57 bytes on handle 5) |
| 2018-12-17T22:42:16.160464011Z | 66 | PC: 15217 | Move file pointer |
| 2018-12-17T22:42:16.162349874Z | 44 | PC: 15227 | Get time 0x15227: mov byte ptr [si - 1], dl 0x1522a: mov al, dl 0x1522c: xor al, 0xad 0x1522e: mov byte ptr [bx + 0x96], al 0x15232: mov ah, dl 0x15234: push dx 0x15235: mov di, si 0x15237: add di, 0x267 0x1523b: call 0x25157 0x1523e: mov di, si 0x15240: add di, 0x30 0x15243: nop 0x15244: push di 0x15245: mov cx, 0x1d 0x15248: sub si, 0x237 0x1524c: rep movsb byte ptr es:[di], byte ptr [si] 0x1524e: pop dx 0x1524f: pop cx 0x15250: add di, 0x21a 0x15254: push cx |
| 2018-12-17T22:42:16.166832643Z | 64 | PC: 15266 | Write file or device (Write 638 bytes on handle 5) |
| 2018-12-17T22:42:16.177446897Z | 66 | PC: 15291 | Move file pointer |
| 2018-12-17T22:42:16.179444016Z | 64 | PC: 1529a | Write file or device (Write 57 bytes on handle 5) |
| 2018-12-17T22:42:16.187217198Z | 87 | PC: 152af | Get or set file date and time |
| 2018-12-17T22:42:16.190090956Z | 62 | PC: 152c9 | Close file |
| 2018-12-17T22:42:16.199300279Z | 67 | PC: 152dd | Get or set file attributes |
| 2018-12-17T22:42:16.204879205Z | 79 | PC: 1519a | Find next file |
| 2018-12-17T22:42:16.209037202Z | 79 | PC: 1519a | Find next file |
| 2018-12-17T22:42:16.212904807Z | 67 | PC: 151c9 | Get or set file attributes |
| 2018-12-17T22:42:16.224177547Z | 61 | PC: 151d5 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:42:16.231942076Z | 63 | PC: 151f0 | Read file or device (Read 57 bytes on handle 5) |
| 2018-12-17T22:42:16.240527396Z | 66 | PC: 15217 | Move file pointer |
| 2018-12-17T22:42:16.242418435Z | 44 | PC: 15227 | Get time 0x15227: mov byte ptr [si - 1], dl 0x1522a: mov al, dl 0x1522c: xor al, 0xad 0x1522e: mov byte ptr [bx + 0x96], al 0x15232: mov ah, dl 0x15234: push dx 0x15235: mov di, si 0x15237: add di, 0x267 0x1523b: call 0x25157 0x1523e: mov di, si 0x15240: add di, 0x30 0x15243: nop 0x15244: push di 0x15245: mov cx, 0x1d 0x15248: sub si, 0x237 0x1524c: rep movsb byte ptr es:[di], byte ptr [si] 0x1524e: pop dx 0x1524f: pop cx 0x15250: add di, 0x21a 0x15254: push cx |
| 2018-12-17T22:42:16.247093619Z | 64 | PC: 15266 | Write file or device (Write 644 bytes on handle 5) |
| 2018-12-17T22:42:16.25719603Z | 66 | PC: 15291 | Move file pointer |
| 2018-12-17T22:42:16.259170411Z | 64 | PC: 1529a | Write file or device (Write 57 bytes on handle 5) |
| 2018-12-17T22:42:16.266717156Z | 87 | PC: 152af | Get or set file date and time |
| 2018-12-17T22:42:16.269381158Z | 62 | PC: 152c9 | Close file |
| 2018-12-17T22:42:16.278728892Z | 67 | PC: 152dd | Get or set file attributes |
| 2018-12-17T22:42:16.283864087Z | 79 | PC: 1519a | Find next file |
| 2018-12-17T22:42:16.288038749Z | 79 | PC: 1519a | Find next file |
| 2018-12-17T22:42:16.291314908Z | 79 | PC: 1519a | Find next file |
| 2018-12-17T22:42:16.294139245Z | 67 | PC: 151c9 | Get or set file attributes |
| 2018-12-17T22:42:16.305228199Z | 61 | PC: 151d5 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:42:16.322689975Z | 63 | PC: 151f0 | Read file or device (Read 57 bytes on handle 5) |
| 2018-12-17T22:42:16.330536004Z | 66 | PC: 15217 | Move file pointer |
| 2018-12-17T22:42:16.33264662Z | 44 | PC: 15227 | Get time 0x15227: mov byte ptr [si - 1], dl 0x1522a: mov al, dl 0x1522c: xor al, 0xad 0x1522e: mov byte ptr [bx + 0x96], al 0x15232: mov ah, dl 0x15234: push dx 0x15235: mov di, si 0x15237: add di, 0x267 0x1523b: call 0x25157 0x1523e: mov di, si 0x15240: add di, 0x30 0x15243: nop 0x15244: push di 0x15245: mov cx, 0x1d 0x15248: sub si, 0x237 0x1524c: rep movsb byte ptr es:[di], byte ptr [si] 0x1524e: pop dx 0x1524f: pop cx 0x15250: add di, 0x21a 0x15254: push cx |
| 2018-12-17T22:42:16.337992958Z | 64 | PC: 15266 | Write file or device (Write 649 bytes on handle 5) |
| 2018-12-17T22:42:16.34806906Z | 66 | PC: 15291 | Move file pointer |
| 2018-12-17T22:42:16.349900223Z | 64 | PC: 1529a | Write file or device (Write 57 bytes on handle 5) |
| 2018-12-17T22:42:16.357774421Z | 87 | PC: 152af | Get or set file date and time |
| 2018-12-17T22:42:16.359624985Z | 62 | PC: 152c9 | Close file |
| 2018-12-17T22:42:16.368847497Z | 67 | PC: 152dd | Get or set file attributes |
| 2018-12-17T22:42:16.375225072Z | 79 | PC: 1519a | Find next file |
| 2018-12-17T22:42:16.378559558Z | 79 | PC: 1519a | Find next file |
| 2018-12-17T22:42:16.381847967Z | 67 | PC: 151c9 | Get or set file attributes |
| 2018-12-17T22:42:16.393661285Z | 61 | PC: 151d5 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:42:16.40143937Z | 63 | PC: 151f0 | Read file or device (Read 57 bytes on handle 5) |
| 2018-12-17T22:42:16.404871751Z | 62 | PC: 152c9 | Close file |
| 2018-12-17T22:42:16.407762761Z | 67 | PC: 152dd | Get or set file attributes |
| 2018-12-17T22:42:16.419039625Z | 79 | PC: 1519a | Find next file |
| 2018-12-17T22:42:16.426100977Z | 37 | PC: 152b9 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:42:16.427808364Z | 26 | PC: 152e2 | Set disk transfer address |