.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:44:49.854442761Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T22:44:49.857763648Z | 37 | PC: 12a80 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:44:49.859177753Z | 37 | PC: 12a84 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:44:49.860579386Z | 78 | PC: 12acf | Find first file |
| 2018-12-17T22:44:49.867058575Z | 61 | PC: 12c87 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:44:49.874705567Z | 63 | PC: 12c96 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:49.881425368Z | 66 | PC: 12ca5 | Move file pointer |
| 2018-12-17T22:44:49.883212054Z | 66 | PC: 12cb4 | Move file pointer |
| 2018-12-17T22:44:49.886076394Z | 64 | PC: 12cc0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:49.889062171Z | 66 | PC: 12ccc | Move file pointer |
| 2018-12-17T22:44:49.890706229Z | 44 | PC: 12cd0 | Get time 0x12cd0: mov byte ptr [bp + 0x2b3], dl 0x12cd4: call 0x12cea 0x12cd7: mov ah, 0x40 0x12cd9: mov cx, 0x2b3 0x12cdc: lea dx, word ptr [bp + 6] 0x12ce0: int 0x21 0x12ce2: call 0x12cea 0x12ce5: mov ah, 0x3e 0x12ce7: int 0x21 0x12ce9: ret 0x12cea: lea si, word ptr [bp + 0x1f] 0x12cee: mov cx, 0x275 0x12cf1: xor byte ptr [si], 0 0x12cf4: inc si 0x12cf5: dec cx 0x12cf6: jne 0x12cf1 0x12cf8: ret 0x12cf9: add word ptr [bx], di 0x12cfb: aas 0x12cfc: aas |
| 2018-12-17T22:44:49.894676095Z | 64 | PC: 12ce2 | Write file or device (Write 691 bytes on handle 5) |
| 2018-12-17T22:44:49.910873897Z | 62 | PC: 12ce9 | Close file |
| 2018-12-17T22:44:49.923919027Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:44:49.927463164Z | 61 | PC: 12c87 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:44:49.935472296Z | 63 | PC: 12c96 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:49.944614146Z | 66 | PC: 12ca5 | Move file pointer |
| 2018-12-17T22:44:49.947377115Z | 66 | PC: 12cb4 | Move file pointer |
| 2018-12-17T22:44:49.9489929Z | 64 | PC: 12cc0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:49.952668984Z | 66 | PC: 12ccc | Move file pointer |
| 2018-12-17T22:44:49.955843246Z | 44 | PC: 12cd0 | Get time 0x12cd0: mov byte ptr [bp + 0x2b3], dl 0x12cd4: call 0x12cea 0x12cd7: mov ah, 0x40 0x12cd9: mov cx, 0x2b3 0x12cdc: lea dx, word ptr [bp + 6] 0x12ce0: int 0x21 0x12ce2: call 0x12cea 0x12ce5: mov ah, 0x3e 0x12ce7: int 0x21 0x12ce9: ret 0x12cea: lea si, word ptr [bp + 0x1f] 0x12cee: mov cx, 0x275 0x12cf1: xor byte ptr [si], 0x43 0x12cf4: inc si 0x12cf5: dec cx 0x12cf6: jne 0x12cf1 0x12cf8: ret 0x12cf9: add word ptr [bx], di 0x12cfb: aas 0x12cfc: aas |
| 2018-12-17T22:44:49.96010492Z | 64 | PC: 12ce2 | Write file or device (Write 691 bytes on handle 5) |
| 2018-12-17T22:44:49.969399577Z | 62 | PC: 12ce9 | Close file |
| 2018-12-17T22:44:49.97813842Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:44:49.982024248Z | 61 | PC: 12c87 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:44:49.989758043Z | 63 | PC: 12c96 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:49.996668642Z | 66 | PC: 12ca5 | Move file pointer |
| 2018-12-17T22:44:49.999361811Z | 66 | PC: 12cb4 | Move file pointer |
| 2018-12-17T22:44:50.001659295Z | 64 | PC: 12cc0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:50.004807328Z | 66 | PC: 12ccc | Move file pointer |
| 2018-12-17T22:44:50.007776414Z | 44 | PC: 12cd0 | Get time 0x12cd0: mov byte ptr [bp + 0x2b3], dl 0x12cd4: call 0x12cea 0x12cd7: mov ah, 0x40 0x12cd9: mov cx, 0x2b3 0x12cdc: lea dx, word ptr [bp + 6] 0x12ce0: int 0x21 0x12ce2: call 0x12cea 0x12ce5: mov ah, 0x3e 0x12ce7: int 0x21 0x12ce9: ret 0x12cea: lea si, word ptr [bp + 0x1f] 0x12cee: mov cx, 0x275 0x12cf1: xor byte ptr [si], 0x49 0x12cf4: inc si 0x12cf5: dec cx 0x12cf6: jne 0x12cf1 0x12cf8: ret 0x12cf9: add word ptr [bx], di 0x12cfb: aas 0x12cfc: aas |
| 2018-12-17T22:44:50.010711838Z | 64 | PC: 12ce2 | Write file or device (Write 691 bytes on handle 5) |
| 2018-12-17T22:44:50.01940265Z | 62 | PC: 12ce9 | Close file |
| 2018-12-17T22:44:50.029116154Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:44:50.033363621Z | 61 | PC: 12c87 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:44:50.041080585Z | 63 | PC: 12c96 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:50.053371068Z | 66 | PC: 12ca5 | Move file pointer |
| 2018-12-17T22:44:50.05600794Z | 66 | PC: 12cb4 | Move file pointer |
| 2018-12-17T22:44:50.057858195Z | 64 | PC: 12cc0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:50.060939793Z | 66 | PC: 12ccc | Move file pointer |
| 2018-12-17T22:44:50.063632901Z | 44 | PC: 12cd0 | Get time 0x12cd0: mov byte ptr [bp + 0x2b3], dl 0x12cd4: call 0x12cea 0x12cd7: mov ah, 0x40 0x12cd9: mov cx, 0x2b3 0x12cdc: lea dx, word ptr [bp + 6] 0x12ce0: int 0x21 0x12ce2: call 0x12cea 0x12ce5: mov ah, 0x3e 0x12ce7: int 0x21 0x12ce9: ret 0x12cea: lea si, word ptr [bp + 0x1f] 0x12cee: mov cx, 0x275 0x12cf1: xor byte ptr [si], 0x4e 0x12cf4: inc si 0x12cf5: dec cx 0x12cf6: jne 0x12cf1 0x12cf8: ret 0x12cf9: add word ptr [bx], di 0x12cfb: aas 0x12cfc: aas |
| 2018-12-17T22:44:50.066467475Z | 64 | PC: 12ce2 | Write file or device (Write 691 bytes on handle 5) |
| 2018-12-17T22:44:50.076578275Z | 62 | PC: 12ce9 | Close file |
| 2018-12-17T22:44:50.087928071Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:44:50.091009428Z | 61 | PC: 12c87 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:44:50.098423093Z | 63 | PC: 12c96 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:50.105951772Z | 66 | PC: 12ca5 | Move file pointer |
| 2018-12-17T22:44:50.108054752Z | 66 | PC: 12cb4 | Move file pointer |
| 2018-12-17T22:44:50.109855334Z | 64 | PC: 12cc0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:50.113760649Z | 66 | PC: 12ccc | Move file pointer |
| 2018-12-17T22:44:50.115654726Z | 44 | PC: 12cd0 | Get time 0x12cd0: mov byte ptr [bp + 0x2b3], dl 0x12cd4: call 0x12cea 0x12cd7: mov ah, 0x40 0x12cd9: mov cx, 0x2b3 0x12cdc: lea dx, word ptr [bp + 6] 0x12ce0: int 0x21 0x12ce2: call 0x12cea 0x12ce5: mov ah, 0x3e 0x12ce7: int 0x21 0x12ce9: ret 0x12cea: lea si, word ptr [bp + 0x1f] 0x12cee: mov cx, 0x275 0x12cf1: xor byte ptr [si], 0x54 0x12cf4: inc si 0x12cf5: dec cx 0x12cf6: jne 0x12cf1 0x12cf8: ret 0x12cf9: add word ptr [bx], di 0x12cfb: aas 0x12cfc: aas |
| 2018-12-17T22:44:50.127688267Z | 64 | PC: 12ce2 | Write file or device (Write 691 bytes on handle 5) |
| 2018-12-17T22:44:50.137461592Z | 62 | PC: 12ce9 | Close file |
| 2018-12-17T22:44:50.146510969Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:44:50.149741065Z | 61 | PC: 12c87 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:44:50.157900901Z | 63 | PC: 12c96 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:50.164934982Z | 66 | PC: 12ca5 | Move file pointer |
| 2018-12-17T22:44:50.166705006Z | 66 | PC: 12cb4 | Move file pointer |
| 2018-12-17T22:44:50.168645851Z | 64 | PC: 12cc0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:50.172601882Z | 66 | PC: 12ccc | Move file pointer |
| 2018-12-17T22:44:50.174370604Z | 44 | PC: 12cd0 | Get time 0x12cd0: mov byte ptr [bp + 0x2b3], dl 0x12cd4: call 0x12cea 0x12cd7: mov ah, 0x40 0x12cd9: mov cx, 0x2b3 0x12cdc: lea dx, word ptr [bp + 6] 0x12ce0: int 0x21 0x12ce2: call 0x12cea 0x12ce5: mov ah, 0x3e 0x12ce7: int 0x21 0x12ce9: ret 0x12cea: lea si, word ptr [bp + 0x1f] 0x12cee: mov cx, 0x275 0x12cf1: xor byte ptr [si], 0x59 0x12cf4: inc si 0x12cf5: dec cx 0x12cf6: jne 0x12cf1 0x12cf8: ret 0x12cf9: add word ptr [bx], di 0x12cfb: aas 0x12cfc: aas |
| 2018-12-17T22:44:50.177095251Z | 64 | PC: 12ce2 | Write file or device (Write 691 bytes on handle 5) |
| 2018-12-17T22:44:50.486291899Z | 62 | PC: 12ce9 | Close file |
| 2018-12-17T22:44:50.506234474Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:44:50.509310822Z | 61 | PC: 12c87 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:44:50.517202955Z | 63 | PC: 12c96 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:44:50.52412791Z | 66 | PC: 12ca5 | Move file pointer |
| 2018-12-17T22:44:50.525878338Z | 66 | PC: 12cb4 | Move file pointer |
| 2018-12-17T22:44:50.528309184Z | 64 | PC: 12cc0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:44:50.531414215Z | 66 | PC: 12ccc | Move file pointer |
| 2018-12-17T22:44:50.533149404Z | 44 | PC: 12cd0 | Get time 0x12cd0: mov byte ptr [bp + 0x2b3], dl 0x12cd4: call 0x12cea 0x12cd7: mov ah, 0x40 0x12cd9: mov cx, 0x2b3 0x12cdc: lea dx, word ptr [bp + 6] 0x12ce0: int 0x21 0x12ce2: call 0x12cea 0x12ce5: mov ah, 0x3e 0x12ce7: int 0x21 0x12ce9: ret 0x12cea: lea si, word ptr [bp + 0x1f] 0x12cee: mov cx, 0x275 0x12cf1: xor byte ptr [si], 0x59 0x12cf4: inc si 0x12cf5: dec cx 0x12cf6: jne 0x12cf1 0x12cf8: ret 0x12cf9: add word ptr [bx], di 0x12cfb: aas 0x12cfc: aas |
| 2018-12-17T22:44:50.536887986Z | 64 | PC: 12ce2 | Write file or device (Write 691 bytes on handle 5) |
| 2018-12-17T22:44:50.545637499Z | 62 | PC: 12ce9 | Close file |
| 2018-12-17T22:44:50.554260164Z | 26 | PC: 12ae9 | Set disk transfer address |
| 2018-12-17T22:44:50.556014328Z | 19 | PC: 12afb | Delete file |
| 2018-12-17T22:44:50.562946057Z | 9 | PC: 12b2d | Display string (String= 'RISK You cannot discover new oceans unless you have the courage to lose sight of the shore Of couse, your boat will have a leak!!! ') |