.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:46:12.719152039Z | 78 | PC: 12aea | Find first file |
| 2018-12-17T22:46:12.726081082Z | 67 | PC: 12b2f | Get or set file attributes |
| 2018-12-17T22:46:12.749832461Z | 61 | PC: 12b3d | Open file (Filename = '>!.>��tI') |
| 2018-12-17T22:46:12.757370057Z | 63 | PC: 12b54 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:12.764387968Z | 66 | PC: 12b75 | Move file pointer |
| 2018-12-17T22:46:12.766907239Z | 66 | PC: 12baf | Move file pointer |
| 2018-12-17T22:46:12.768563981Z | 63 | PC: 12bc3 | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:46:12.771281685Z | 66 | PC: 12bef | Move file pointer |
| 2018-12-17T22:46:12.774005622Z | 64 | PC: 12c01 | Write file or device (Write 676 bytes on handle 5) |
| 2018-12-17T22:46:12.783323642Z | 66 | PC: 12c13 | Move file pointer |
| 2018-12-17T22:46:12.785453292Z | 64 | PC: 12c24 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:46:12.794242639Z | 42 | PC: 12c2a | Get date 0x12c2a: sub dh, 3
0x12c2d: jns 0x12c32
0x12c2f: jmp 0x12c4d
0x12c31: nop
0x12c32: mov cx, 0x28
0x12c35: mov bx, 0
0x12c38: mov al, byte ptr [bx + 0x2df]
0x12c3c: sub al, 1
0x12c3e: mov byte ptr [bx + 0x2df], al
0x12c42: inc bx
0x12c43: loop 0x12c38
0x12c45: lea dx, word ptr [0x2df]
0x12c49: mov ah, 9
0x12c4b: int 0x21
0x12c4d: cmp word ptr [0x329], -1
0x12c52: je 0x12c5c
0x12c54: mov bx, word ptr [0x329]
0x12c58: mov ah, 0x3e
0x12c5a: int 0x21
0x12c5c: cmp word ptr cs:[0x103], -1
|
| 2018-12-17T22:46:12.796773563Z | 9 | PC: 12c4d | Display string (String= '�@!r'*!�y��(����,��C�� !>)�t��)�>!.>��tI���2�.�Cȣ���*KIPA Ver1.0 Sergey K. school 654 class 9') |
| 2018-12-17T22:46:12.799512006Z | 62 | PC: 12c5c | Close file |
| 2018-12-17T22:46:12.808965862Z | 9 | PC: 12aa2 | Display string (String= 'Hello - This is a 100 COM test file, 1993
') |
