.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:45:35.903840941Z | 26 | PC: 12a64 | Set disk transfer address |
| 2018-12-17T22:45:35.905494341Z | 37 | PC: 12a6f | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:45:35.906769768Z | 37 | PC: 12a73 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:45:35.908503655Z | 78 | PC: 12aba | Find first file |
| 2018-12-17T22:45:35.914163393Z | 61 | PC: 12b67 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:45:35.91870688Z | 63 | PC: 12b76 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:35.925091117Z | 66 | PC: 12b85 | Move file pointer |
| 2018-12-17T22:45:35.926655786Z | 66 | PC: 12b94 | Move file pointer |
| 2018-12-17T22:45:35.928479262Z | 64 | PC: 12ba0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:35.931078239Z | 66 | PC: 12bac | Move file pointer |
| 2018-12-17T22:45:35.932356715Z | 44 | PC: 12bb0 | Get time 0x12bb0: mov byte ptr [bp + 0x193], dl 0x12bb4: call 0x12bca 0x12bb7: mov ah, 0x40 0x12bb9: mov cx, 0x193 0x12bbc: lea dx, word ptr [bp + 6] 0x12bc0: int 0x21 0x12bc2: call 0x12bca 0x12bc5: mov ah, 0x3e 0x12bc7: int 0x21 0x12bc9: ret 0x12bca: lea si, word ptr [bp + 0x11] 0x12bce: mov cx, 0x163 0x12bd1: xor byte ptr [si], 0 0x12bd4: inc si 0x12bd5: dec cx 0x12bd6: jne 0x12bd1 0x12bd8: ret 0x12bd9: add word ptr [bx], di 0x12bdb: aas 0x12bdc: aas |
| 2018-12-17T22:45:35.938803915Z | 64 | PC: 12bc2 | Write file or device (Write 403 bytes on handle 5) |
| 2018-12-17T22:45:35.95325081Z | 62 | PC: 12bc9 | Close file |
| 2018-12-17T22:45:35.96166675Z | 79 | PC: 12aba | Find next file |
| 2018-12-17T22:45:35.965174976Z | 61 | PC: 12b67 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:45:35.971876283Z | 63 | PC: 12b76 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:35.978639991Z | 66 | PC: 12b85 | Move file pointer |
| 2018-12-17T22:45:35.98126954Z | 66 | PC: 12b94 | Move file pointer |
| 2018-12-17T22:45:35.982998914Z | 64 | PC: 12ba0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:35.985919084Z | 66 | PC: 12bac | Move file pointer |
| 2018-12-17T22:45:35.990102976Z | 44 | PC: 12bb0 | Get time 0x12bb0: mov byte ptr [bp + 0x193], dl 0x12bb4: call 0x12bca 0x12bb7: mov ah, 0x40 0x12bb9: mov cx, 0x193 0x12bbc: lea dx, word ptr [bp + 6] 0x12bc0: int 0x21 0x12bc2: call 0x12bca 0x12bc5: mov ah, 0x3e 0x12bc7: int 0x21 0x12bc9: ret 0x12bca: lea si, word ptr [bp + 0x11] 0x12bce: mov cx, 0x163 0x12bd1: xor byte ptr [si], 0x35 0x12bd4: inc si 0x12bd5: dec cx 0x12bd6: jne 0x12bd1 0x12bd8: ret 0x12bd9: add word ptr [bx], di 0x12bdb: aas 0x12bdc: aas |
| 2018-12-17T22:45:35.992847344Z | 64 | PC: 12bc2 | Write file or device (Write 403 bytes on handle 5) |
| 2018-12-17T22:45:35.995501127Z | 62 | PC: 12bc9 | Close file |
| 2018-12-17T22:45:36.004526433Z | 79 | PC: 12aba | Find next file |
| 2018-12-17T22:45:36.007183425Z | 61 | PC: 12b67 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:45:36.013610179Z | 63 | PC: 12b76 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:36.02098985Z | 66 | PC: 12b85 | Move file pointer |
| 2018-12-17T22:45:36.022028609Z | 66 | PC: 12b94 | Move file pointer |
| 2018-12-17T22:45:36.022956694Z | 64 | PC: 12ba0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:36.024915627Z | 66 | PC: 12bac | Move file pointer |
| 2018-12-17T22:45:36.026610564Z | 44 | PC: 12bb0 | Get time 0x12bb0: mov byte ptr [bp + 0x193], dl 0x12bb4: call 0x12bca 0x12bb7: mov ah, 0x40 0x12bb9: mov cx, 0x193 0x12bbc: lea dx, word ptr [bp + 6] 0x12bc0: int 0x21 0x12bc2: call 0x12bca 0x12bc5: mov ah, 0x3e 0x12bc7: int 0x21 0x12bc9: ret 0x12bca: lea si, word ptr [bp + 0x11] 0x12bce: mov cx, 0x163 0x12bd1: xor byte ptr [si], 0x3b 0x12bd4: inc si 0x12bd5: dec cx 0x12bd6: jne 0x12bd1 0x12bd8: ret 0x12bd9: add word ptr [bx], di 0x12bdb: aas 0x12bdc: aas |
| 2018-12-17T22:45:36.028078304Z | 64 | PC: 12bc2 | Write file or device (Write 403 bytes on handle 5) |
| 2018-12-17T22:45:36.029835914Z | 62 | PC: 12bc9 | Close file |
| 2018-12-17T22:45:36.038988802Z | 79 | PC: 12aba | Find next file |
| 2018-12-17T22:45:36.041572531Z | 61 | PC: 12b67 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:45:36.047950959Z | 63 | PC: 12b76 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:36.055024341Z | 66 | PC: 12b85 | Move file pointer |
| 2018-12-17T22:45:36.056344788Z | 66 | PC: 12b94 | Move file pointer |
| 2018-12-17T22:45:36.073741149Z | 64 | PC: 12ba0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:36.078164015Z | 66 | PC: 12bac | Move file pointer |
| 2018-12-17T22:45:36.079701952Z | 44 | PC: 12bb0 | Get time 0x12bb0: mov byte ptr [bp + 0x193], dl 0x12bb4: call 0x12bca 0x12bb7: mov ah, 0x40 0x12bb9: mov cx, 0x193 0x12bbc: lea dx, word ptr [bp + 6] 0x12bc0: int 0x21 0x12bc2: call 0x12bca 0x12bc5: mov ah, 0x3e 0x12bc7: int 0x21 0x12bc9: ret 0x12bca: lea si, word ptr [bp + 0x11] 0x12bce: mov cx, 0x163 0x12bd1: xor byte ptr [si], 0x3b 0x12bd4: inc si 0x12bd5: dec cx 0x12bd6: jne 0x12bd1 0x12bd8: ret 0x12bd9: add word ptr [bx], di 0x12bdb: aas 0x12bdc: aas |
| 2018-12-17T22:45:36.081975976Z | 64 | PC: 12bc2 | Write file or device (Write 403 bytes on handle 5) |
| 2018-12-17T22:45:36.085943381Z | 62 | PC: 12bc9 | Close file |
| 2018-12-17T22:45:36.093720495Z | 79 | PC: 12aba | Find next file |
| 2018-12-17T22:45:36.096419244Z | 61 | PC: 12b67 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:45:36.104729736Z | 63 | PC: 12b76 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:36.113447037Z | 66 | PC: 12b85 | Move file pointer |
| 2018-12-17T22:45:36.115384057Z | 66 | PC: 12b94 | Move file pointer |
| 2018-12-17T22:45:36.117589901Z | 64 | PC: 12ba0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:36.120358214Z | 66 | PC: 12bac | Move file pointer |
| 2018-12-17T22:45:36.121853366Z | 44 | PC: 12bb0 | Get time 0x12bb0: mov byte ptr [bp + 0x193], dl 0x12bb4: call 0x12bca 0x12bb7: mov ah, 0x40 0x12bb9: mov cx, 0x193 0x12bbc: lea dx, word ptr [bp + 6] 0x12bc0: int 0x21 0x12bc2: call 0x12bca 0x12bc5: mov ah, 0x3e 0x12bc7: int 0x21 0x12bc9: ret 0x12bca: lea si, word ptr [bp + 0x11] 0x12bce: mov cx, 0x163 0x12bd1: xor byte ptr [si], 0x40 0x12bd4: inc si 0x12bd5: dec cx 0x12bd6: jne 0x12bd1 0x12bd8: ret 0x12bd9: add word ptr [bx], di 0x12bdb: aas 0x12bdc: aas |
| 2018-12-17T22:45:36.124821406Z | 64 | PC: 12bc2 | Write file or device (Write 403 bytes on handle 5) |
| 2018-12-17T22:45:36.127956705Z | 62 | PC: 12bc9 | Close file |
| 2018-12-17T22:45:36.135725075Z | 79 | PC: 12aba | Find next file |
| 2018-12-17T22:45:36.139241692Z | 61 | PC: 12b67 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:45:36.146040775Z | 63 | PC: 12b76 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:36.152719892Z | 66 | PC: 12b85 | Move file pointer |
| 2018-12-17T22:45:36.155117366Z | 66 | PC: 12b94 | Move file pointer |
| 2018-12-17T22:45:36.156773865Z | 64 | PC: 12ba0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:36.159662486Z | 66 | PC: 12bac | Move file pointer |
| 2018-12-17T22:45:36.162084168Z | 44 | PC: 12bb0 | Get time 0x12bb0: mov byte ptr [bp + 0x193], dl 0x12bb4: call 0x12bca 0x12bb7: mov ah, 0x40 0x12bb9: mov cx, 0x193 0x12bbc: lea dx, word ptr [bp + 6] 0x12bc0: int 0x21 0x12bc2: call 0x12bca 0x12bc5: mov ah, 0x3e 0x12bc7: int 0x21 0x12bc9: ret 0x12bca: lea si, word ptr [bp + 0x11] 0x12bce: mov cx, 0x163 0x12bd1: xor byte ptr [si], 0x46 0x12bd4: inc si 0x12bd5: dec cx 0x12bd6: jne 0x12bd1 0x12bd8: ret 0x12bd9: add word ptr [bx], di 0x12bdb: aas 0x12bdc: aas |
| 2018-12-17T22:45:36.16493782Z | 64 | PC: 12bc2 | Write file or device (Write 403 bytes on handle 5) |
| 2018-12-17T22:45:36.173139469Z | 62 | PC: 12bc9 | Close file |
| 2018-12-17T22:45:36.181768692Z | 79 | PC: 12aba | Find next file |
| 2018-12-17T22:45:36.184827422Z | 61 | PC: 12b67 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:45:36.191624751Z | 63 | PC: 12b76 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:36.198129822Z | 66 | PC: 12b85 | Move file pointer |
| 2018-12-17T22:45:36.200864103Z | 66 | PC: 12b94 | Move file pointer |
| 2018-12-17T22:45:36.202444539Z | 64 | PC: 12ba0 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:36.20525452Z | 66 | PC: 12bac | Move file pointer |
| 2018-12-17T22:45:36.207877615Z | 44 | PC: 12bb0 | Get time 0x12bb0: mov byte ptr [bp + 0x193], dl 0x12bb4: call 0x12bca 0x12bb7: mov ah, 0x40 0x12bb9: mov cx, 0x193 0x12bbc: lea dx, word ptr [bp + 6] 0x12bc0: int 0x21 0x12bc2: call 0x12bca 0x12bc5: mov ah, 0x3e 0x12bc7: int 0x21 0x12bc9: ret 0x12bca: lea si, word ptr [bp + 0x11] 0x12bce: mov cx, 0x163 0x12bd1: xor byte ptr [si], 0x46 0x12bd4: inc si 0x12bd5: dec cx 0x12bd6: jne 0x12bd1 0x12bd8: ret 0x12bd9: add word ptr [bx], di 0x12bdb: aas 0x12bdc: aas |
| 2018-12-17T22:45:36.21038371Z | 64 | PC: 12bc2 | Write file or device (Write 403 bytes on handle 5) |
| 2018-12-17T22:45:36.213343913Z | 62 | PC: 12bc9 | Close file |
| 2018-12-17T22:45:36.222122626Z | 79 | PC: 12aba | Find next file |
| 2018-12-17T22:45:36.224883753Z | 61 | PC: 12b67 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:45:36.231491896Z | 63 | PC: 12b76 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:36.235122775Z | 62 | PC: 12bc9 | Close file |
| 2018-12-17T22:45:36.237474788Z | 79 | PC: 12aba | Find next file |
| 2018-12-17T22:45:36.240065875Z | 26 | PC: 12aca | Set disk transfer address |
| 2018-12-17T22:45:36.241765652Z | 9 | PC: 12adc | Display string (String= ' The Truth IS Out There! ') |