.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:44:24.609828053Z | 26 | PC: 12ab1 | Set disk transfer address |
| 2018-12-17T22:44:24.611442596Z | 78 | PC: 12ab9 | Find first file |
| 2018-12-17T22:44:24.618648439Z | 47 | PC: 12abf | Get disk transfer address |
| 2018-12-17T22:44:24.619908888Z | 61 | PC: 12aca | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:44:24.627989344Z | 87 | PC: 12ad0 | Get or set file date and time |
| 2018-12-17T22:44:24.630672027Z | 63 | PC: 12af0 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:24.637880483Z | 66 | PC: 12b02 | Move file pointer |
| 2018-12-17T22:44:24.639746626Z | 64 | PC: 12b0d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:24.644840573Z | 66 | PC: 12b16 | Move file pointer |
| 2018-12-17T22:44:24.646363879Z | 44 | PC: 12a75 | Get time 0x12a75: mov byte ptr [bp + 0x12d], cl 0x12a79: mov cx, 0xd1 0x12a7c: lea si, word ptr [bp + 0x15e] 0x12a80: lea di, word ptr [bp + 0x219] 0x12a84: movsb byte ptr es:[di], byte ptr [si] 0x12a85: mov al, byte ptr [bp + 0x219] 0x12a89: xor al, byte ptr [bp + 0x12d] 0x12a8d: mov byte ptr [bp + 0x219], al 0x12a91: lea di, word ptr [si - 1] 0x12a94: lea si, word ptr [bp + 0x219] 0x12a98: movsb byte ptr es:[di], byte ptr [si] 0x12a99: mov si, di 0x12a9b: loop 0x12a80 0x12a9d: ret 0x12a9e: lea bx, word ptr [bp + 0x22b] 0x12aa2: push word ptr [bx] 0x12aa4: add bx, 2 0x12aa7: push word ptr [bx] 0x12aa9: mov ah, 0x1a 0x12aab: lea dx, word ptr [bp + 0x22f] |
| 2018-12-17T22:44:24.649095536Z | 64 | PC: 12a60 | Write file or device (Write 303 bytes on handle 5) |
| 2018-12-17T22:44:24.666042557Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:44:24.669298293Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:44:24.67922446Z | 79 | PC: 12ab9 | Find next file |
| 2018-12-17T22:44:24.682717744Z | 47 | PC: 12abf | Get disk transfer address |
| 2018-12-17T22:44:24.685813821Z | 61 | PC: 12aca | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:44:24.692911283Z | 87 | PC: 12ad0 | Get or set file date and time |
| 2018-12-17T22:44:24.694471307Z | 63 | PC: 12af0 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:24.702475569Z | 66 | PC: 12b02 | Move file pointer |
| 2018-12-17T22:44:24.704431292Z | 64 | PC: 12b0d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:24.708034184Z | 66 | PC: 12b16 | Move file pointer |
| 2018-12-17T22:44:24.711363607Z | 44 | PC: 12a75 | Get time 0x12a75: mov byte ptr [bp + 0x12d], cl 0x12a79: mov cx, 0xd1 0x12a7c: lea si, word ptr [bp + 0x15e] 0x12a80: lea di, word ptr [bp + 0x219] 0x12a84: movsb byte ptr es:[di], byte ptr [si] 0x12a85: mov al, byte ptr [bp + 0x219] 0x12a89: xor al, byte ptr [bp + 0x12d] 0x12a8d: mov byte ptr [bp + 0x219], al 0x12a91: lea di, word ptr [si - 1] 0x12a94: lea si, word ptr [bp + 0x219] 0x12a98: movsb byte ptr es:[di], byte ptr [si] 0x12a99: mov si, di 0x12a9b: loop 0x12a80 0x12a9d: ret 0x12a9e: lea bx, word ptr [bp + 0x22b] 0x12aa2: push word ptr [bx] 0x12aa4: add bx, 2 0x12aa7: push word ptr [bx] 0x12aa9: mov ah, 0x1a 0x12aab: lea dx, word ptr [bp + 0x22f] |
| 2018-12-17T22:44:24.714783464Z | 64 | PC: 12a60 | Write file or device (Write 303 bytes on handle 5) |
| 2018-12-17T22:44:24.718548846Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:44:24.721271054Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:44:24.729394205Z | 79 | PC: 12ab9 | Find next file |
| 2018-12-17T22:44:24.732408152Z | 47 | PC: 12abf | Get disk transfer address |
| 2018-12-17T22:44:24.734347944Z | 61 | PC: 12aca | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:44:24.742089652Z | 87 | PC: 12ad0 | Get or set file date and time |
| 2018-12-17T22:44:24.744063598Z | 63 | PC: 12af0 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:24.755422954Z | 66 | PC: 12b02 | Move file pointer |
| 2018-12-17T22:44:24.764425632Z | 64 | PC: 12b0d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:24.767626479Z | 66 | PC: 12b16 | Move file pointer |
| 2018-12-17T22:44:24.769397657Z | 44 | PC: 12a75 | Get time 0x12a75: mov byte ptr [bp + 0x12d], cl 0x12a79: mov cx, 0xd1 0x12a7c: lea si, word ptr [bp + 0x15e] 0x12a80: lea di, word ptr [bp + 0x219] 0x12a84: movsb byte ptr es:[di], byte ptr [si] 0x12a85: mov al, byte ptr [bp + 0x219] 0x12a89: xor al, byte ptr [bp + 0x12d] 0x12a8d: mov byte ptr [bp + 0x219], al 0x12a91: lea di, word ptr [si - 1] 0x12a94: lea si, word ptr [bp + 0x219] 0x12a98: movsb byte ptr es:[di], byte ptr [si] 0x12a99: mov si, di 0x12a9b: loop 0x12a80 0x12a9d: ret 0x12a9e: lea bx, word ptr [bp + 0x22b] 0x12aa2: push word ptr [bx] 0x12aa4: add bx, 2 0x12aa7: push word ptr [bx] 0x12aa9: mov ah, 0x1a 0x12aab: lea dx, word ptr [bp + 0x22f] |
| 2018-12-17T22:44:24.773502153Z | 64 | PC: 12a60 | Write file or device (Write 303 bytes on handle 5) |
| 2018-12-17T22:44:24.777001436Z | 87 | PC: 12b28 | Get or set file date and time |
| 2018-12-17T22:44:24.778904094Z | 62 | PC: 12b2c | Close file |
| 2018-12-17T22:44:24.787809819Z | 26 | PC: 12b40 | Set disk transfer address |