.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:45:47.547311782Z | 26 | PC: 12b3e | Set disk transfer address |
| 2018-12-17T22:45:47.549652839Z | 78 | PC: 12b47 | Find first file |
| 2018-12-17T22:45:47.555376408Z | 47 | PC: 12b53 | Get disk transfer address |
| 2018-12-17T22:45:47.55673534Z | 79 | PC: 12b47 | Find next file |
| 2018-12-17T22:45:47.559927466Z | 47 | PC: 12b53 | Get disk transfer address |
| 2018-12-17T22:45:47.561868872Z | 67 | PC: 12b7b | Get or set file attributes |
| 2018-12-17T22:45:47.577246834Z | 61 | PC: 12b89 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:45:47.586012247Z | 63 | PC: 12ba2 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:47.59424552Z | 66 | PC: 12bb4 | Move file pointer |
| 2018-12-17T22:45:47.596297193Z | 87 | PC: 12bb9 | Get or set file date and time |
| 2018-12-17T22:45:47.598305405Z | 64 | PC: 12bcc | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:47.602518778Z | 66 | PC: 12bd5 | Move file pointer |
| 2018-12-17T22:45:47.607432267Z | 64 | PC: 12be3 | Write file or device (Write 306 bytes on handle 5) |
| 2018-12-17T22:45:47.618757246Z | 44 | PC: 12be8 | Get time 0x12be8: mov cl, dl 0x12bea: mov al, cl 0x12bec: mov ax, 0x2c00 0x12bef: int 0x21 0x12bf1: mov cl, dl 0x12bf3: add cl, al 0x12bf5: ror cl, 1 0x12bf7: xor ch, ch 0x12bf9: xor dx, dx 0x12bfb: mov ah, 0x30 0x12bfd: add ah, 0x10 0x12c00: int 0x21 0x12c02: mov cx, word ptr [0x236] 0x12c06: mov dx, word ptr [0x234] 0x12c0a: mov ax, 0x5701 0x12c0d: int 0x21 0x12c0f: mov ah, 0x3e 0x12c11: int 0x21 0x12c13: mov ah, 0x4f 0x12c15: jmp 0x12b41 |
| 2018-12-17T22:45:47.624279088Z | 44 | PC: 12bf1 | Get time 0x12bf1: mov cl, dl 0x12bf3: add cl, al 0x12bf5: ror cl, 1 0x12bf7: xor ch, ch 0x12bf9: xor dx, dx 0x12bfb: mov ah, 0x30 0x12bfd: add ah, 0x10 0x12c00: int 0x21 0x12c02: mov cx, word ptr [0x236] 0x12c06: mov dx, word ptr [0x234] 0x12c0a: mov ax, 0x5701 0x12c0d: int 0x21 0x12c0f: mov ah, 0x3e 0x12c11: int 0x21 0x12c13: mov ah, 0x4f 0x12c15: jmp 0x12b41 0x12c18: mov ah, 0x1a 0x12c1a: mov dx, 0x80 0x12c1d: int 0x21 0x12c1f: mov bx, 0x102 |
| 2018-12-17T22:45:47.627966282Z | 64 | PC: 12c02 | Write file or device (Write 161 bytes on handle 5) |
| 2018-12-17T22:45:47.631290576Z | 87 | PC: 12c0f | Get or set file date and time |
| 2018-12-17T22:45:47.633604983Z | 62 | PC: 12c13 | Close file |
| 2018-12-17T22:45:47.643146032Z | 79 | PC: 12b47 | Find next file |
| 2018-12-17T22:45:47.646271984Z | 47 | PC: 12b53 | Get disk transfer address |
| 2018-12-17T22:45:47.647858563Z | 79 | PC: 12b47 | Find next file |
| 2018-12-17T22:45:47.651634445Z | 47 | PC: 12b53 | Get disk transfer address |
| 2018-12-17T22:45:47.652808059Z | 79 | PC: 12b47 | Find next file |
| 2018-12-17T22:45:47.655906909Z | 47 | PC: 12b53 | Get disk transfer address |
| 2018-12-17T22:45:47.666383796Z | 242 | PC: 12b7b | UNKNOWN! |
| 2018-12-17T22:45:47.667624466Z | 61 | PC: 12b89 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:45:47.677473434Z | 63 | PC: 12ba2 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:45:47.685566153Z | 66 | PC: 12bb4 | Move file pointer |
| 2018-12-17T22:45:47.688350823Z | 87 | PC: 12bb9 | Get or set file date and time |
| 2018-12-17T22:45:47.690483659Z | 64 | PC: 12bcc | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:45:47.697328635Z | 66 | PC: 12bd5 | Move file pointer |
| 2018-12-17T22:45:47.700006725Z | 64 | PC: 12be3 | Write file or device (Write 306 bytes on handle 5) |
| 2018-12-17T22:45:47.703922439Z | 44 | PC: 12be8 | Get time 0x12be8: mov cl, dl 0x12bea: mov al, cl 0x12bec: mov ax, 0x2c00 0x12bef: int 0x21 0x12bf1: mov cl, dl 0x12bf3: add cl, al 0x12bf5: ror cl, 1 0x12bf7: xor ch, ch 0x12bf9: xor dx, dx 0x12bfb: mov ah, 0x30 0x12bfd: add ah, 0x10 0x12c00: int 0x21 0x12c02: mov cx, word ptr [0x236] 0x12c06: mov dx, word ptr [0x234] 0x12c0a: mov ax, 0x5701 0x12c0d: int 0x21 0x12c0f: mov ah, 0x3e 0x12c11: int 0x21 0x12c13: mov ah, 0x4f 0x12c15: jmp 0x12b41 |
| 2018-12-17T22:45:47.70882665Z | 44 | PC: 12bf1 | Get time 0x12bf1: mov cl, dl 0x12bf3: add cl, al 0x12bf5: ror cl, 1 0x12bf7: xor ch, ch 0x12bf9: xor dx, dx 0x12bfb: mov ah, 0x30 0x12bfd: add ah, 0x10 0x12c00: int 0x21 0x12c02: mov cx, word ptr [0x236] 0x12c06: mov dx, word ptr [0x234] 0x12c0a: mov ax, 0x5701 0x12c0d: int 0x21 0x12c0f: mov ah, 0x3e 0x12c11: int 0x21 0x12c13: mov ah, 0x4f 0x12c15: jmp 0x12b41 0x12c18: mov ah, 0x1a 0x12c1a: mov dx, 0x80 0x12c1d: int 0x21 0x12c1f: mov bx, 0x102 |
| 2018-12-17T22:45:47.713102811Z | 64 | PC: 12c02 | Write file or device (Write 164 bytes on handle 5) |
| 2018-12-17T22:45:47.717726985Z | 87 | PC: 12c0f | Get or set file date and time |
| 2018-12-17T22:45:47.720314235Z | 62 | PC: 12c13 | Close file |
| 2018-12-17T22:45:47.732260742Z | 79 | PC: 12b47 | Find next file |
| 2018-12-17T22:45:47.73643909Z | 47 | PC: 12b53 | Get disk transfer address |
| 2018-12-17T22:45:47.738549774Z | 79 | PC: 12b47 | Find next file |
| 2018-12-17T22:45:47.747978032Z | 47 | PC: 12b53 | Get disk transfer address |