.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:46:13.655347509Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T22:46:13.65675088Z | 37 | PC: 12a80 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:46:13.6581426Z | 37 | PC: 12a84 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:46:13.659105937Z | 78 | PC: 12acf | Find first file |
| 2018-12-17T22:46:13.662853628Z | 61 | PC: 12b7c | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:46:13.667672435Z | 63 | PC: 12b8b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:13.671581751Z | 66 | PC: 12b9a | Move file pointer |
| 2018-12-17T22:46:13.672593323Z | 66 | PC: 12ba9 | Move file pointer |
| 2018-12-17T22:46:13.674146626Z | 64 | PC: 12bb5 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:46:13.675897803Z | 66 | PC: 12bc1 | Move file pointer |
| 2018-12-17T22:46:13.677240814Z | 44 | PC: 12bc5 | Get time 0x12bc5: mov byte ptr [bp + 0x1a8], dl 0x12bc9: call 0x12bdf 0x12bcc: mov ah, 0x40 0x12bce: mov cx, 0x1a8 0x12bd1: lea dx, word ptr [bp + 6] 0x12bd5: int 0x21 0x12bd7: call 0x12bdf 0x12bda: mov ah, 0x3e 0x12bdc: int 0x21 0x12bde: ret 0x12bdf: lea si, word ptr [bp + 0x1f] 0x12be3: mov cx, 0x16a 0x12be6: xor byte ptr [si], 0 0x12be9: inc si 0x12bea: dec cx 0x12beb: jne 0x12be6 0x12bed: ret 0x12bee: add word ptr [bx], di 0x12bf0: aas 0x12bf1: aas |
| 2018-12-17T22:46:13.685737921Z | 64 | PC: 12bd7 | Write file or device (Write 424 bytes on handle 5) |
| 2018-12-17T22:46:13.70076492Z | 62 | PC: 12bde | Close file |
| 2018-12-17T22:46:13.70870826Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:46:13.720180608Z | 61 | PC: 12b7c | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:46:13.726477394Z | 63 | PC: 12b8b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:13.732947203Z | 66 | PC: 12b9a | Move file pointer |
| 2018-12-17T22:46:13.735613192Z | 66 | PC: 12ba9 | Move file pointer |
| 2018-12-17T22:46:13.737047631Z | 64 | PC: 12bb5 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:46:13.739587542Z | 66 | PC: 12bc1 | Move file pointer |
| 2018-12-17T22:46:13.741721766Z | 44 | PC: 12bc5 | Get time 0x12bc5: mov byte ptr [bp + 0x1a8], dl 0x12bc9: call 0x12bdf 0x12bcc: mov ah, 0x40 0x12bce: mov cx, 0x1a8 0x12bd1: lea dx, word ptr [bp + 6] 0x12bd5: int 0x21 0x12bd7: call 0x12bdf 0x12bda: mov ah, 0x3e 0x12bdc: int 0x21 0x12bde: ret 0x12bdf: lea si, word ptr [bp + 0x1f] 0x12be3: mov cx, 0x16a 0x12be6: xor byte ptr [si], 0x41 0x12be9: inc si 0x12bea: dec cx 0x12beb: jne 0x12be6 0x12bed: ret 0x12bee: add word ptr [bx], di 0x12bf0: aas 0x12bf1: aas |
| 2018-12-17T22:46:13.744340646Z | 64 | PC: 12bd7 | Write file or device (Write 424 bytes on handle 5) |
| 2018-12-17T22:46:13.747267733Z | 62 | PC: 12bde | Close file |
| 2018-12-17T22:46:13.755020087Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:46:13.757894751Z | 61 | PC: 12b7c | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:46:13.764510777Z | 63 | PC: 12b8b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:13.770924243Z | 66 | PC: 12b9a | Move file pointer |
| 2018-12-17T22:46:13.772945782Z | 66 | PC: 12ba9 | Move file pointer |
| 2018-12-17T22:46:13.774385986Z | 64 | PC: 12bb5 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:46:13.776871796Z | 66 | PC: 12bc1 | Move file pointer |
| 2018-12-17T22:46:13.778986106Z | 44 | PC: 12bc5 | Get time 0x12bc5: mov byte ptr [bp + 0x1a8], dl 0x12bc9: call 0x12bdf 0x12bcc: mov ah, 0x40 0x12bce: mov cx, 0x1a8 0x12bd1: lea dx, word ptr [bp + 6] 0x12bd5: int 0x21 0x12bd7: call 0x12bdf 0x12bda: mov ah, 0x3e 0x12bdc: int 0x21 0x12bde: ret 0x12bdf: lea si, word ptr [bp + 0x1f] 0x12be3: mov cx, 0x16a 0x12be6: xor byte ptr [si], 0x47 0x12be9: inc si 0x12bea: dec cx 0x12beb: jne 0x12be6 0x12bed: ret 0x12bee: add word ptr [bx], di 0x12bf0: aas 0x12bf1: aas |
| 2018-12-17T22:46:13.781194Z | 64 | PC: 12bd7 | Write file or device (Write 424 bytes on handle 5) |
| 2018-12-17T22:46:13.789232511Z | 62 | PC: 12bde | Close file |
| 2018-12-17T22:46:13.797724738Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:46:13.800691164Z | 61 | PC: 12b7c | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:46:13.807900969Z | 63 | PC: 12b8b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:13.81476405Z | 66 | PC: 12b9a | Move file pointer |
| 2018-12-17T22:46:13.816275113Z | 66 | PC: 12ba9 | Move file pointer |
| 2018-12-17T22:46:13.818152979Z | 64 | PC: 12bb5 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:46:13.829427133Z | 66 | PC: 12bc1 | Move file pointer |
| 2018-12-17T22:46:13.830641298Z | 44 | PC: 12bc5 | Get time 0x12bc5: mov byte ptr [bp + 0x1a8], dl 0x12bc9: call 0x12bdf 0x12bcc: mov ah, 0x40 0x12bce: mov cx, 0x1a8 0x12bd1: lea dx, word ptr [bp + 6] 0x12bd5: int 0x21 0x12bd7: call 0x12bdf 0x12bda: mov ah, 0x3e 0x12bdc: int 0x21 0x12bde: ret 0x12bdf: lea si, word ptr [bp + 0x1f] 0x12be3: mov cx, 0x16a 0x12be6: xor byte ptr [si], 0x47 0x12be9: inc si 0x12bea: dec cx 0x12beb: jne 0x12be6 0x12bed: ret 0x12bee: add word ptr [bx], di 0x12bf0: aas 0x12bf1: aas |
| 2018-12-17T22:46:13.832232796Z | 64 | PC: 12bd7 | Write file or device (Write 424 bytes on handle 5) |
| 2018-12-17T22:46:13.834832216Z | 62 | PC: 12bde | Close file |
| 2018-12-17T22:46:13.839845427Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:46:13.841564749Z | 61 | PC: 12b7c | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:46:13.8462374Z | 63 | PC: 12b8b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:13.850877264Z | 66 | PC: 12b9a | Move file pointer |
| 2018-12-17T22:46:13.852640687Z | 66 | PC: 12ba9 | Move file pointer |
| 2018-12-17T22:46:13.855326197Z | 64 | PC: 12bb5 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:46:13.858091351Z | 66 | PC: 12bc1 | Move file pointer |
| 2018-12-17T22:46:13.859523522Z | 44 | PC: 12bc5 | Get time 0x12bc5: mov byte ptr [bp + 0x1a8], dl 0x12bc9: call 0x12bdf 0x12bcc: mov ah, 0x40 0x12bce: mov cx, 0x1a8 0x12bd1: lea dx, word ptr [bp + 6] 0x12bd5: int 0x21 0x12bd7: call 0x12bdf 0x12bda: mov ah, 0x3e 0x12bdc: int 0x21 0x12bde: ret 0x12bdf: lea si, word ptr [bp + 0x1f] 0x12be3: mov cx, 0x16a 0x12be6: xor byte ptr [si], 0x4c 0x12be9: inc si 0x12bea: dec cx 0x12beb: jne 0x12be6 0x12bed: ret 0x12bee: add word ptr [bx], di 0x12bf0: aas 0x12bf1: aas |
| 2018-12-17T22:46:13.862352634Z | 64 | PC: 12bd7 | Write file or device (Write 424 bytes on handle 5) |
| 2018-12-17T22:46:13.865384885Z | 62 | PC: 12bde | Close file |
| 2018-12-17T22:46:13.873103246Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:46:13.876232837Z | 61 | PC: 12b7c | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:46:13.882386606Z | 63 | PC: 12b8b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:13.888879138Z | 66 | PC: 12b9a | Move file pointer |
| 2018-12-17T22:46:13.890597841Z | 66 | PC: 12ba9 | Move file pointer |
| 2018-12-17T22:46:13.891853458Z | 64 | PC: 12bb5 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:46:13.897659333Z | 66 | PC: 12bc1 | Move file pointer |
| 2018-12-17T22:46:13.899620586Z | 44 | PC: 12bc5 | Get time 0x12bc5: mov byte ptr [bp + 0x1a8], dl 0x12bc9: call 0x12bdf 0x12bcc: mov ah, 0x40 0x12bce: mov cx, 0x1a8 0x12bd1: lea dx, word ptr [bp + 6] 0x12bd5: int 0x21 0x12bd7: call 0x12bdf 0x12bda: mov ah, 0x3e 0x12bdc: int 0x21 0x12bde: ret 0x12bdf: lea si, word ptr [bp + 0x1f] 0x12be3: mov cx, 0x16a 0x12be6: xor byte ptr [si], 0x4c 0x12be9: inc si 0x12bea: dec cx 0x12beb: jne 0x12be6 0x12bed: ret 0x12bee: add word ptr [bx], di 0x12bf0: aas 0x12bf1: aas |
| 2018-12-17T22:46:13.901681767Z | 64 | PC: 12bd7 | Write file or device (Write 424 bytes on handle 5) |
| 2018-12-17T22:46:13.910098805Z | 62 | PC: 12bde | Close file |
| 2018-12-17T22:46:13.918858769Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:46:13.92139535Z | 61 | PC: 12b7c | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:46:13.927669143Z | 63 | PC: 12b8b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:13.934870748Z | 66 | PC: 12b9a | Move file pointer |
| 2018-12-17T22:46:13.936388746Z | 66 | PC: 12ba9 | Move file pointer |
| 2018-12-17T22:46:13.937827333Z | 64 | PC: 12bb5 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:46:13.941584517Z | 66 | PC: 12bc1 | Move file pointer |
| 2018-12-17T22:46:13.943309659Z | 44 | PC: 12bc5 | Get time 0x12bc5: mov byte ptr [bp + 0x1a8], dl 0x12bc9: call 0x12bdf 0x12bcc: mov ah, 0x40 0x12bce: mov cx, 0x1a8 0x12bd1: lea dx, word ptr [bp + 6] 0x12bd5: int 0x21 0x12bd7: call 0x12bdf 0x12bda: mov ah, 0x3e 0x12bdc: int 0x21 0x12bde: ret 0x12bdf: lea si, word ptr [bp + 0x1f] 0x12be3: mov cx, 0x16a 0x12be6: xor byte ptr [si], 0x52 0x12be9: inc si 0x12bea: dec cx 0x12beb: jne 0x12be6 0x12bed: ret 0x12bee: add word ptr [bx], di 0x12bf0: aas 0x12bf1: aas |
| 2018-12-17T22:46:13.945971132Z | 64 | PC: 12bd7 | Write file or device (Write 424 bytes on handle 5) |
| 2018-12-17T22:46:13.949035914Z | 62 | PC: 12bde | Close file |
| 2018-12-17T22:46:13.957450235Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:46:13.962038066Z | 61 | PC: 12b7c | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:46:13.968480246Z | 63 | PC: 12b8b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:13.971307916Z | 62 | PC: 12bde | Close file |
| 2018-12-17T22:46:13.972980975Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:46:13.975213383Z | 26 | PC: 12adf | Set disk transfer address |
| 2018-12-17T22:46:13.976661397Z | 19 | PC: 12af1 | Delete file |