.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:47:19.787273106Z | 26 | PC: 12a72 | Set disk transfer address |
| 2018-12-17T22:47:19.789120215Z | 37 | PC: 12a80 | Set interrupt vector (Interrupt = '1' AKA 'Character input') |
| 2018-12-17T22:47:19.790437029Z | 37 | PC: 12a84 | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input') |
| 2018-12-17T22:47:19.791774238Z | 78 | PC: 12acf | Find first file |
| 2018-12-17T22:47:19.798181981Z | 61 | PC: 12c33 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:47:19.802227099Z | 63 | PC: 12c42 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:19.807133669Z | 66 | PC: 12c51 | Move file pointer |
| 2018-12-17T22:47:19.809035319Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-17T22:47:19.810476935Z | 64 | PC: 12c6c | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:19.812299667Z | 66 | PC: 12c78 | Move file pointer |
| 2018-12-17T22:47:19.815794325Z | 44 | PC: 12c7c | Get time 0x12c7c: mov byte ptr [bp + 0x25f], dl 0x12c80: call 0x12c96 0x12c83: mov ah, 0x40 0x12c85: mov cx, 0x25f 0x12c88: lea dx, word ptr [bp + 6] 0x12c8c: int 0x21 0x12c8e: call 0x12c96 0x12c91: mov ah, 0x3e 0x12c93: int 0x21 0x12c95: ret 0x12c96: lea si, word ptr [bp + 0x1f] 0x12c9a: mov cx, 0x221 0x12c9d: xor byte ptr [si], 0 0x12ca0: inc si 0x12ca1: dec cx 0x12ca2: jne 0x12c9d 0x12ca4: ret 0x12ca5: add word ptr [bx], di 0x12ca7: aas 0x12ca8: aas |
| 2018-12-17T22:47:19.817876705Z | 64 | PC: 12c8e | Write file or device (Write 607 bytes on handle 5) |
| 2018-12-17T22:47:19.827957138Z | 62 | PC: 12c95 | Close file |
| 2018-12-17T22:47:19.836311607Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:47:19.839353344Z | 61 | PC: 12c33 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:47:19.846153688Z | 63 | PC: 12c42 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:19.852761141Z | 66 | PC: 12c51 | Move file pointer |
| 2018-12-17T22:47:19.854069181Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-17T22:47:19.855316532Z | 64 | PC: 12c6c | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:19.857936538Z | 66 | PC: 12c78 | Move file pointer |
| 2018-12-17T22:47:19.859439481Z | 44 | PC: 12c7c | Get time 0x12c7c: mov byte ptr [bp + 0x25f], dl 0x12c80: call 0x12c96 0x12c83: mov ah, 0x40 0x12c85: mov cx, 0x25f 0x12c88: lea dx, word ptr [bp + 6] 0x12c8c: int 0x21 0x12c8e: call 0x12c96 0x12c91: mov ah, 0x3e 0x12c93: int 0x21 0x12c95: ret 0x12c96: lea si, word ptr [bp + 0x1f] 0x12c9a: mov cx, 0x221 0x12c9d: xor byte ptr [si], 0x43 0x12ca0: inc si 0x12ca1: dec cx 0x12ca2: jne 0x12c9d 0x12ca4: ret 0x12ca5: add word ptr [bx], di 0x12ca7: aas 0x12ca8: aas |
| 2018-12-17T22:47:19.86163909Z | 64 | PC: 12c8e | Write file or device (Write 607 bytes on handle 5) |
| 2018-12-17T22:47:19.869422877Z | 62 | PC: 12c95 | Close file |
| 2018-12-17T22:47:19.877461548Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:47:19.879824051Z | 61 | PC: 12c33 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:47:19.886054453Z | 63 | PC: 12c42 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:19.891669343Z | 66 | PC: 12c51 | Move file pointer |
| 2018-12-17T22:47:19.892855349Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-17T22:47:19.894216735Z | 64 | PC: 12c6c | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:19.897272505Z | 66 | PC: 12c78 | Move file pointer |
| 2018-12-17T22:47:19.898395913Z | 44 | PC: 12c7c | Get time 0x12c7c: mov byte ptr [bp + 0x25f], dl 0x12c80: call 0x12c96 0x12c83: mov ah, 0x40 0x12c85: mov cx, 0x25f 0x12c88: lea dx, word ptr [bp + 6] 0x12c8c: int 0x21 0x12c8e: call 0x12c96 0x12c91: mov ah, 0x3e 0x12c93: int 0x21 0x12c95: ret 0x12c96: lea si, word ptr [bp + 0x1f] 0x12c9a: mov cx, 0x221 0x12c9d: xor byte ptr [si], 0x43 0x12ca0: inc si 0x12ca1: dec cx 0x12ca2: jne 0x12c9d 0x12ca4: ret 0x12ca5: add word ptr [bx], di 0x12ca7: aas 0x12ca8: aas |
| 2018-12-17T22:47:19.899979521Z | 64 | PC: 12c8e | Write file or device (Write 607 bytes on handle 5) |
| 2018-12-17T22:47:19.906209177Z | 62 | PC: 12c95 | Close file |
| 2018-12-17T22:47:19.911790425Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:47:19.913597659Z | 61 | PC: 12c33 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:47:19.918555847Z | 63 | PC: 12c42 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:19.922512857Z | 66 | PC: 12c51 | Move file pointer |
| 2018-12-17T22:47:19.923849881Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-17T22:47:19.925507379Z | 64 | PC: 12c6c | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:19.927562521Z | 66 | PC: 12c78 | Move file pointer |
| 2018-12-17T22:47:19.92878849Z | 44 | PC: 12c7c | Get time 0x12c7c: mov byte ptr [bp + 0x25f], dl 0x12c80: call 0x12c96 0x12c83: mov ah, 0x40 0x12c85: mov cx, 0x25f 0x12c88: lea dx, word ptr [bp + 6] 0x12c8c: int 0x21 0x12c8e: call 0x12c96 0x12c91: mov ah, 0x3e 0x12c93: int 0x21 0x12c95: ret 0x12c96: lea si, word ptr [bp + 0x1f] 0x12c9a: mov cx, 0x221 0x12c9d: xor byte ptr [si], 0x49 0x12ca0: inc si 0x12ca1: dec cx 0x12ca2: jne 0x12c9d 0x12ca4: ret 0x12ca5: add word ptr [bx], di 0x12ca7: aas 0x12ca8: aas |
| 2018-12-17T22:47:19.930826887Z | 64 | PC: 12c8e | Write file or device (Write 607 bytes on handle 5) |
| 2018-12-17T22:47:19.938901432Z | 62 | PC: 12c95 | Close file |
| 2018-12-17T22:47:19.94676874Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:47:19.949952914Z | 61 | PC: 12c33 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:47:19.956575716Z | 63 | PC: 12c42 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:19.963118115Z | 66 | PC: 12c51 | Move file pointer |
| 2018-12-17T22:47:19.965823469Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-17T22:47:19.967232471Z | 64 | PC: 12c6c | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:19.97016254Z | 66 | PC: 12c78 | Move file pointer |
| 2018-12-17T22:47:19.972123311Z | 44 | PC: 12c7c | Get time 0x12c7c: mov byte ptr [bp + 0x25f], dl 0x12c80: call 0x12c96 0x12c83: mov ah, 0x40 0x12c85: mov cx, 0x25f 0x12c88: lea dx, word ptr [bp + 6] 0x12c8c: int 0x21 0x12c8e: call 0x12c96 0x12c91: mov ah, 0x3e 0x12c93: int 0x21 0x12c95: ret 0x12c96: lea si, word ptr [bp + 0x1f] 0x12c9a: mov cx, 0x221 0x12c9d: xor byte ptr [si], 0x49 0x12ca0: inc si 0x12ca1: dec cx 0x12ca2: jne 0x12c9d 0x12ca4: ret 0x12ca5: add word ptr [bx], di 0x12ca7: aas 0x12ca8: aas |
| 2018-12-17T22:47:19.974597716Z | 64 | PC: 12c8e | Write file or device (Write 607 bytes on handle 5) |
| 2018-12-17T22:47:19.983052054Z | 62 | PC: 12c95 | Close file |
| 2018-12-17T22:47:19.991057733Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:47:19.993518091Z | 61 | PC: 12c33 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:47:20.000132167Z | 63 | PC: 12c42 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:20.007069878Z | 66 | PC: 12c51 | Move file pointer |
| 2018-12-17T22:47:20.008582905Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-17T22:47:20.009901069Z | 64 | PC: 12c6c | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:20.01260473Z | 66 | PC: 12c78 | Move file pointer |
| 2018-12-17T22:47:20.014103851Z | 44 | PC: 12c7c | Get time 0x12c7c: mov byte ptr [bp + 0x25f], dl 0x12c80: call 0x12c96 0x12c83: mov ah, 0x40 0x12c85: mov cx, 0x25f 0x12c88: lea dx, word ptr [bp + 6] 0x12c8c: int 0x21 0x12c8e: call 0x12c96 0x12c91: mov ah, 0x3e 0x12c93: int 0x21 0x12c95: ret 0x12c96: lea si, word ptr [bp + 0x1f] 0x12c9a: mov cx, 0x221 0x12c9d: xor byte ptr [si], 0x4e 0x12ca0: inc si 0x12ca1: dec cx 0x12ca2: jne 0x12c9d 0x12ca4: ret 0x12ca5: add word ptr [bx], di 0x12ca7: aas 0x12ca8: aas |
| 2018-12-17T22:47:20.016543505Z | 64 | PC: 12c8e | Write file or device (Write 607 bytes on handle 5) |
| 2018-12-17T22:47:20.02655254Z | 62 | PC: 12c95 | Close file |
| 2018-12-17T22:47:20.035100977Z | 79 | PC: 12acf | Find next file |
| 2018-12-17T22:47:20.037963196Z | 61 | PC: 12c33 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:47:20.045186432Z | 63 | PC: 12c42 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:20.051638172Z | 66 | PC: 12c51 | Move file pointer |
| 2018-12-17T22:47:20.053054481Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-17T22:47:20.054711Z | 64 | PC: 12c6c | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:20.058171644Z | 66 | PC: 12c78 | Move file pointer |
| 2018-12-17T22:47:20.059829643Z | 44 | PC: 12c7c | Get time 0x12c7c: mov byte ptr [bp + 0x25f], dl 0x12c80: call 0x12c96 0x12c83: mov ah, 0x40 0x12c85: mov cx, 0x25f 0x12c88: lea dx, word ptr [bp + 6] 0x12c8c: int 0x21 0x12c8e: call 0x12c96 0x12c91: mov ah, 0x3e 0x12c93: int 0x21 0x12c95: ret 0x12c96: lea si, word ptr [bp + 0x1f] 0x12c9a: mov cx, 0x221 0x12c9d: xor byte ptr [si], 0x4e 0x12ca0: inc si 0x12ca1: dec cx 0x12ca2: jne 0x12c9d 0x12ca4: ret 0x12ca5: add word ptr [bx], di 0x12ca7: aas 0x12ca8: aas |
| 2018-12-17T22:47:20.062356243Z | 64 | PC: 12c8e | Write file or device (Write 607 bytes on handle 5) |
| 2018-12-17T22:47:20.07058119Z | 62 | PC: 12c95 | Close file |
| 2018-12-17T22:47:20.078439259Z | 26 | PC: 12ae9 | Set disk transfer address |
| 2018-12-17T22:47:20.079495552Z | 19 | PC: 12afb | Delete file |
| 2018-12-17T22:47:20.086072429Z | 9 | PC: 12b2d | Display string (String= 'NO MAN No man is an island He is a pennisula!! ') |