.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:46:29.470852453Z | 74 | PC: 148e2 | Reallocate memory |
| 2018-12-17T22:46:29.589130678Z | 74 | PC: 1cd26 | Reallocate memory |
| 2018-12-17T22:46:29.590842178Z | 25 | PC: 12a58 | Get default drive |
| 2018-12-17T22:46:29.593252035Z | 98 | PC: 1c1f6 | Get current PSP |
| 2018-12-17T22:46:29.595592888Z | 44 | PC: 12b2f | Get time 0x12b2f: xchg dx, cx 0x12b31: mov al, dh 0x12b33: mov ah, 0 0x12b35: mov bl, 0xa 0x12b37: jmp 0x12b4d 0x12b39: div bl 0x12b3b: add al, 0x30 0x12b3d: mov byte ptr [di], al 0x12b3f: inc di 0x12b40: xchg al, ah 0x12b42: add al, 0x30 0x12b44: mov byte ptr [di], al 0x12b46: inc di 0x12b47: mov al, 0x3a 0x12b49: mov byte ptr [di], al 0x12b4b: inc di 0x12b4c: ret 0x12b4d: call 0x22b39 0x12b50: mov al, dl 0x12b52: mov ah, 0 |
| 2018-12-17T22:46:29.59780274Z | 71 | PC: 12c36 | Get current directory |
| 2018-12-17T22:46:29.601080986Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:29.61503341Z | 65 | PC: 136c7 | Delete file (Filename = 'anti-vir.dat') |
| 2018-12-17T22:46:29.621077837Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:29.626641733Z | 65 | PC: 136c7 | Delete file (Filename = 'chklist.ms') |
| 2018-12-17T22:46:29.633590407Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:29.639516498Z | 65 | PC: 136c7 | Delete file (Filename = 'chklist.cps') |
| 2018-12-17T22:46:29.64562044Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:29.651055669Z | 65 | PC: 136c7 | Delete file (Filename = 'vs.vsn') |
| 2018-12-17T22:46:29.657654475Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:29.663497625Z | 65 | PC: 136c7 | Delete file (Filename = 'ivb.ntz') |
| 2018-12-17T22:46:29.669482862Z | 26 | PC: 12cf7 | Set disk transfer address |
| 2018-12-17T22:46:29.676723558Z | 78 | PC: 12d09 | Find first file |
| 2018-12-17T22:46:29.683110989Z | 67 | PC: 13dad | Get or set file attributes |
| 2018-12-17T22:46:29.68869837Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:29.706222846Z | 61 | PC: 13f29 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:46:29.71271965Z | 63 | PC: 13fcb | Read file or device (Read 9100 bytes on handle 5) |
| 2018-12-17T22:46:29.720548263Z | 62 | PC: 14011 | Close file |
| 2018-12-17T22:46:29.723337786Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:29.734632505Z | 47 | PC: 1c035 | Get disk transfer address |
| 2018-12-17T22:46:29.735836243Z | 26 | PC: 1c040 | Set disk transfer address |
| 2018-12-17T22:46:29.737671238Z | 78 | PC: 1c04c | Find first file |
| 2018-12-17T22:46:29.744194718Z | 26 | PC: 1c05e | Set disk transfer address |
| 2018-12-17T22:46:29.747657882Z | 26 | PC: 13578 | Set disk transfer address |
| 2018-12-17T22:46:29.750279446Z | 78 | PC: 1358a | Find first file |
| 2018-12-17T22:46:29.756550964Z | 67 | PC: 13dad | Get or set file attributes |
| 2018-12-17T22:46:29.76727674Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:29.778246548Z | 61 | PC: 13f29 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:46:29.785286552Z | 66 | PC: 1c31b | Move file pointer |
| 2018-12-17T22:46:29.787392316Z | 63 | PC: 13fcb | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:29.794898973Z | 62 | PC: 14011 | Close file |
| 2018-12-17T22:46:29.797091367Z | 67 | PC: 13de4 | Get or set file attributes |
| 2018-12-17T22:46:30.023109413Z | 47 | PC: 1c072 | Get disk transfer address |
| 2018-12-17T22:46:30.024978311Z | 26 | PC: 1c07d | Set disk transfer address |
| 2018-12-17T22:46:30.026626682Z | 79 | PC: 1c081 | Find next file |
| 2018-12-17T22:46:30.029112555Z | 26 | PC: 1c091 | Set disk transfer address |
| 2018-12-17T22:46:30.034130206Z | 76 | PC: 130b2 | Terminate with return code (Return code = '0') |