.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:42:57.131370067Z | 60 | PC: 1304a | Create or truncate file |
| 2018-12-17T22:42:57.477985972Z | 64 | PC: 13061 | Write file or device (Write 0 bytes on handle 5) |
| 2018-12-17T22:42:57.480347833Z | 62 | PC: 13077 | Close file |
| 2018-12-17T22:42:57.487855455Z | 26 | PC: 13118 | Set disk transfer address |
| 2018-12-17T22:42:57.489031092Z | 78 | PC: 1312f | Find first file |
| 2018-12-17T22:42:57.495464356Z | 61 | PC: 13255 | Open file (Filename = 'sleep.com') |
| 2018-12-17T22:42:57.501871382Z | 66 | PC: 13281 | Move file pointer |
| 2018-12-17T22:42:57.503390141Z | 66 | PC: 132f9 | Move file pointer |
| 2018-12-17T22:42:57.50546905Z | 63 | PC: 1332c | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:42:57.511456976Z | 62 | PC: 1337b | Close file |
| 2018-12-17T22:42:57.513986331Z | 61 | PC: 133c5 | Open file (Filename = 'sleep.com') |
| 2018-12-17T22:42:57.522040176Z | 63 | PC: 133dc | Read file or device (Read 407 bytes on handle 5) |
| 2018-12-17T22:42:57.525185803Z | 62 | PC: 133e8 | Close file |
| 2018-12-17T22:42:57.527516463Z | 60 | PC: 13413 | Create or truncate file |
| 2018-12-17T22:42:57.548154034Z | 64 | PC: 1342a | Write file or device (Write 3648 bytes on handle 5) |
| 2018-12-17T22:42:57.557546555Z | 62 | PC: 13440 | Close file |
| 2018-12-17T22:42:57.566599836Z | 61 | PC: 1345a | Open file (Filename = 'sleep.com') |
| 2018-12-17T22:42:57.574395223Z | 66 | PC: 13486 | Move file pointer |
| 2018-12-17T22:42:57.57630159Z | 64 | PC: 134c3 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:42:57.580275371Z | 62 | PC: 134e6 | Close file |
| 2018-12-17T22:42:57.589663958Z | 26 | PC: 13118 | Set disk transfer address |
| 2018-12-17T22:42:57.590816875Z | 78 | PC: 1312f | Find first file |
| 2018-12-17T22:42:57.60171669Z | 61 | PC: 13255 | Open file (Filename = 'c:\dos\edit.com') |
| 2018-12-17T22:42:57.609418666Z | 66 | PC: 13281 | Move file pointer |
| 2018-12-17T22:42:57.611171024Z | 66 | PC: 132f9 | Move file pointer |
| 2018-12-17T22:42:57.612691205Z | 63 | PC: 1332c | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:42:57.618885225Z | 62 | PC: 1337b | Close file |
| 2018-12-17T22:42:57.621212407Z | 61 | PC: 133c5 | Open file (Filename = 'c:\dos\edit.com') |
| 2018-12-17T22:42:57.628844483Z | 63 | PC: 133dc | Read file or device (Read 413 bytes on handle 5) |
| 2018-12-17T22:42:57.631513735Z | 62 | PC: 133e8 | Close file |
| 2018-12-17T22:42:57.634472474Z | 60 | PC: 13413 | Create or truncate file |
| 2018-12-17T22:42:57.647773196Z | 64 | PC: 1342a | Write file or device (Write 3654 bytes on handle 5) |
| 2018-12-17T22:42:57.658695285Z | 62 | PC: 13440 | Close file |
| 2018-12-17T22:42:57.66834197Z | 61 | PC: 1345a | Open file (Filename = 'c:\dos\edit.com') |
| 2018-12-17T22:42:57.676007696Z | 66 | PC: 13486 | Move file pointer |
| 2018-12-17T22:42:57.677568647Z | 64 | PC: 134c3 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:42:57.68227608Z | 62 | PC: 134e6 | Close file |
| 2018-12-17T22:42:57.690495962Z | 26 | PC: 13118 | Set disk transfer address |
| 2018-12-17T22:42:57.691711949Z | 78 | PC: 1312f | Find first file |
| 2018-12-17T22:42:57.70271969Z | 61 | PC: 13255 | Open file (Filename = 'c:\windows\win.com') |
| 2018-12-17T22:42:57.710655242Z | 66 | PC: 13281 | Move file pointer |
| 2018-12-17T22:42:57.712390868Z | 66 | PC: 132f9 | Move file pointer |
| 2018-12-17T22:42:57.714074009Z | 63 | PC: 1332c | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:42:57.721490089Z | 62 | PC: 1337b | Close file |
| 2018-12-17T22:42:57.72347255Z | 61 | PC: 133c5 | Open file (Filename = 'c:\windows\win.com') |
| 2018-12-17T22:42:57.731595693Z | 63 | PC: 133dc | Read file or device (Read 44170 bytes on handle 5) |
| 2018-12-17T22:42:57.745394861Z | 62 | PC: 133e8 | Close file |
| 2018-12-17T22:42:57.747343615Z | 60 | PC: 13413 | Create or truncate file |
| 2018-12-17T22:42:57.760517499Z | 64 | PC: 1342a | Write file or device (Write 47411 bytes on handle 5) |
| 2018-12-17T22:42:57.778463626Z | 62 | PC: 13440 | Close file |
| 2018-12-17T22:42:57.786850994Z | 61 | PC: 1345a | Open file (Filename = 'c:\windows\win.com') |
| 2018-12-17T22:42:57.795288543Z | 66 | PC: 13486 | Move file pointer |
| 2018-12-17T22:42:57.797262795Z | 64 | PC: 134c3 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:42:57.800722711Z | 62 | PC: 134e6 | Close file |
| 2018-12-17T22:42:57.808566408Z | 26 | PC: 13118 | Set disk transfer address |
| 2018-12-17T22:42:57.809886484Z | 78 | PC: 1312f | Find first file |
| 2018-12-17T22:42:57.821794455Z | 74 | PC: 13506 | Reallocate memory |
| 2018-12-17T22:42:57.824392554Z | 75 | PC: 13534 | Execute program |
| 2018-12-17T22:42:57.834067057Z | 65 | PC: 13565 | Delete file (Filename = 'c:\FILE0001.CHK') |
| 2018-12-17T22:42:57.844045397Z | 44 | PC: 13571 | Get time 0x13571: xchg dx, cx 0x13573: mov al, dh 0x13575: mov ah, 0 0x13577: mov bl, 0xa 0x13579: jmp 0x1358f 0x1357b: div bl 0x1357d: add al, 0x30 0x1357f: mov byte ptr [di], al 0x13581: inc di 0x13582: xchg al, ah 0x13584: add al, 0x30 0x13586: mov byte ptr [di], al 0x13588: inc di 0x13589: mov al, 0x3a 0x1358b: mov byte ptr [di], al 0x1358d: inc di 0x1358e: ret 0x1358f: call 0x2357b 0x13592: mov al, dl 0x13594: mov ah, 0 |
| 2018-12-17T22:42:57.8466263Z | 76 | PC: 13672 | Terminate with return code (Return code = '0') |