.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:49:24.03807874Z | 78 | PC: 12a70 | Find first file |
| 2018-12-17T22:49:24.04459432Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T22:49:24.046646935Z | 61 | PC: 12a54 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:49:24.052792966Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T22:49:24.059995814Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T22:49:24.297311458Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T22:49:24.300115874Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T22:49:24.303410183Z | 61 | PC: 12a54 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:49:24.309998618Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T22:49:24.317845582Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T22:49:24.329975938Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T22:49:24.332735288Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T22:49:24.335009425Z | 61 | PC: 12a54 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:49:24.349716032Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T22:49:24.356996154Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T22:49:24.364935214Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T22:49:24.369518868Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T22:49:24.372121865Z | 61 | PC: 12a54 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:49:24.380094128Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T22:49:24.387867833Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T22:49:24.397131638Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T22:49:24.400362385Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T22:49:24.408169Z | 61 | PC: 12a54 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:49:24.415635875Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T22:49:24.422440836Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T22:49:24.430601683Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T22:49:24.434178362Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T22:49:24.436534335Z | 61 | PC: 12a54 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:49:24.442974617Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T22:49:24.451243046Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T22:49:24.459093468Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T22:49:24.461927789Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T22:49:24.465036485Z | 61 | PC: 12a54 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:49:24.472029414Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T22:49:24.479318734Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T22:49:24.487765662Z | 79 | PC: 12a7f | Find next file |
| 2018-12-17T22:49:24.490401577Z | 44 | PC: 12a93 | Get time 0x12a93: cmp dl, 0 0x12a96: je 0x12a8f 0x12a98: mov byte ptr [0x14e], dl 0x12a9c: ret 0x12a9d: mov cx, 0x27 0x12aa0: mov si, 0x127 0x12aa3: mov di, si 0x12aa5: lodsb al, byte ptr [si] 0x12aa6: xor al, byte ptr [0x14e] 0x12aaa: stosb byte ptr es:[di], al 0x12aab: loop 0x12aa5 0x12aad: ret 0x12aae: je 0x12ad7 0x12ab0: dec al 0x12ab2: je 0x12adf 0x12ab4: mov ax, word ptr [bx] 0x12ab6: mov cx, 4 0x12ab9: rol ax, 1 0x12abb: rol ax, 1 0x12abd: rol ax, 1 |
| 2018-12-17T22:49:24.492525166Z | 61 | PC: 12a54 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:49:24.499935817Z | 64 | PC: 12a5f | Write file or device (Write 110 bytes on handle 5) |
| 2018-12-17T22:49:24.502577988Z | 62 | PC: 12a63 | Close file |
| 2018-12-17T22:49:24.510103679Z | 79 | PC: 12a7f | Find next file |