.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:49:33.086700446Z | 26 | PC: 12d9d | Set disk transfer address |
| 2018-12-17T22:49:33.088398085Z | 53 | PC: 12acc | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:49:33.089438931Z | 37 | PC: 12ae2 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:49:33.090511497Z | 71 | PC: 12af2 | Get current directory |
| 2018-12-17T22:49:33.093425839Z | 78 | PC: 12b8c | Find first file |
| 2018-12-17T22:49:33.099489943Z | 78 | PC: 12b8c | Find first file |
| 2018-12-17T22:49:33.105489367Z | 61 | PC: 12da8 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:49:33.112624194Z | 63 | PC: 12baf | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:49:33.118478172Z | 62 | PC: 12bb3 | Close file |
| 2018-12-17T22:49:33.119683632Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.133033401Z | 61 | PC: 12da8 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:49:33.138072582Z | 64 | PC: 12cc0 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:49:33.14419103Z | 66 | PC: 12d96 | Move file pointer |
| 2018-12-17T22:49:33.145452576Z | 44 | PC: 12cd1 | Get time 0x12cd1: cmp dh, 0
0x12cd4: xchg ax, dx
0x12cd5: xchg ax, dx
0x12cd6: je 0x12ccb
0x12cd8: mov byte ptr cs:[bp + 0x514], dh
0x12cdd: xchg ax, dx
0x12cde: xchg ax, dx
0x12cdf: call 0x12e10
0x12ce2: xchg ax, dx
0x12ce3: xchg ax, dx
0x12ce4: inc byte ptr cs:[bp + 0x515]
0x12ce9: mov ax, 0x5701
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: mov cx, word ptr cs:[bp + 0x588]
0x12cf3: mov dx, word ptr cs:[bp + 0x58a]
0x12cf8: xchg ax, dx
0x12cf9: xchg ax, dx
0x12cfa: int 0x21
0x12cfc: mov ah, 0x3e
|
| 2018-12-17T22:49:33.148684249Z | 64 | PC: 12e69 | Write file or device (Write 1025 bytes on handle 5) |
| 2018-12-17T22:49:33.156819487Z | 87 | PC: 12cfc | Get or set file date and time |
| 2018-12-17T22:49:33.158113869Z | 62 | PC: 12d02 | Close file |
| 2018-12-17T22:49:33.164583777Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.172034884Z | 79 | PC: 12b8c | Find next file |
| 2018-12-17T22:49:33.174681729Z | 61 | PC: 12da8 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:49:33.182086018Z | 63 | PC: 12baf | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:49:33.188559017Z | 62 | PC: 12bb3 | Close file |
| 2018-12-17T22:49:33.190710398Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.201451991Z | 61 | PC: 12da8 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:49:33.206047001Z | 64 | PC: 12cc0 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:49:33.20785627Z | 66 | PC: 12d96 | Move file pointer |
| 2018-12-17T22:49:33.208979561Z | 44 | PC: 12cd1 | Get time 0x12cd1: cmp dh, 0
0x12cd4: xchg ax, dx
0x12cd5: xchg ax, dx
0x12cd6: je 0x12ccb
0x12cd8: mov byte ptr cs:[bp + 0x514], dh
0x12cdd: xchg ax, dx
0x12cde: xchg ax, dx
0x12cdf: call 0x12e10
0x12ce2: xchg ax, dx
0x12ce3: xchg ax, dx
0x12ce4: inc byte ptr cs:[bp + 0x515]
0x12ce9: mov ax, 0x5701
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: mov cx, word ptr cs:[bp + 0x588]
0x12cf3: mov dx, word ptr cs:[bp + 0x58a]
0x12cf8: xchg ax, dx
0x12cf9: xchg ax, dx
0x12cfa: int 0x21
0x12cfc: mov ah, 0x3e
|
| 2018-12-17T22:49:33.210808796Z | 64 | PC: 12e69 | Write file or device (Write 1025 bytes on handle 5) |
| 2018-12-17T22:49:33.216524334Z | 87 | PC: 12cfc | Get or set file date and time |
| 2018-12-17T22:49:33.217724251Z | 62 | PC: 12d02 | Close file |
| 2018-12-17T22:49:33.223214072Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.229279231Z | 79 | PC: 12b8c | Find next file |
| 2018-12-17T22:49:33.23116636Z | 61 | PC: 12da8 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:49:33.235565053Z | 63 | PC: 12baf | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:49:33.239503712Z | 62 | PC: 12bb3 | Close file |
| 2018-12-17T22:49:33.240825813Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.25061526Z | 61 | PC: 12da8 | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:49:33.261485876Z | 64 | PC: 12cc0 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:49:33.268255307Z | 66 | PC: 12d96 | Move file pointer |
| 2018-12-17T22:49:33.269710318Z | 44 | PC: 12cd1 | Get time 0x12cd1: cmp dh, 0
0x12cd4: xchg ax, dx
0x12cd5: xchg ax, dx
0x12cd6: je 0x12ccb
0x12cd8: mov byte ptr cs:[bp + 0x514], dh
0x12cdd: xchg ax, dx
0x12cde: xchg ax, dx
0x12cdf: call 0x12e10
0x12ce2: xchg ax, dx
0x12ce3: xchg ax, dx
0x12ce4: inc byte ptr cs:[bp + 0x515]
0x12ce9: mov ax, 0x5701
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: mov cx, word ptr cs:[bp + 0x588]
0x12cf3: mov dx, word ptr cs:[bp + 0x58a]
0x12cf8: xchg ax, dx
0x12cf9: xchg ax, dx
0x12cfa: int 0x21
0x12cfc: mov ah, 0x3e
|
| 2018-12-17T22:49:33.272109823Z | 64 | PC: 12e69 | Write file or device (Write 1025 bytes on handle 5) |
| 2018-12-17T22:49:33.281067386Z | 87 | PC: 12cfc | Get or set file date and time |
| 2018-12-17T22:49:33.282537214Z | 62 | PC: 12d02 | Close file |
| 2018-12-17T22:49:33.289684142Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.299017833Z | 79 | PC: 12b8c | Find next file |
| 2018-12-17T22:49:33.301936941Z | 61 | PC: 12da8 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:49:33.308166739Z | 63 | PC: 12baf | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:49:33.314210353Z | 62 | PC: 12bb3 | Close file |
| 2018-12-17T22:49:33.316660307Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.326273781Z | 61 | PC: 12da8 | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:49:33.333392074Z | 64 | PC: 12cc0 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:49:33.336268088Z | 66 | PC: 12d96 | Move file pointer |
| 2018-12-17T22:49:33.337790027Z | 44 | PC: 12cd1 | Get time 0x12cd1: cmp dh, 0
0x12cd4: xchg ax, dx
0x12cd5: xchg ax, dx
0x12cd6: je 0x12ccb
0x12cd8: mov byte ptr cs:[bp + 0x514], dh
0x12cdd: xchg ax, dx
0x12cde: xchg ax, dx
0x12cdf: call 0x12e10
0x12ce2: xchg ax, dx
0x12ce3: xchg ax, dx
0x12ce4: inc byte ptr cs:[bp + 0x515]
0x12ce9: mov ax, 0x5701
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: mov cx, word ptr cs:[bp + 0x588]
0x12cf3: mov dx, word ptr cs:[bp + 0x58a]
0x12cf8: xchg ax, dx
0x12cf9: xchg ax, dx
0x12cfa: int 0x21
0x12cfc: mov ah, 0x3e
|
| 2018-12-17T22:49:33.340382052Z | 64 | PC: 12e69 | Write file or device (Write 1025 bytes on handle 5) |
| 2018-12-17T22:49:33.349735064Z | 87 | PC: 12cfc | Get or set file date and time |
| 2018-12-17T22:49:33.351114724Z | 62 | PC: 12d02 | Close file |
| 2018-12-17T22:49:33.358529205Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.368089985Z | 79 | PC: 12b8c | Find next file |
| 2018-12-17T22:49:33.370945076Z | 61 | PC: 12da8 | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:49:33.377309726Z | 63 | PC: 12baf | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T22:49:33.387383822Z | 62 | PC: 12bb3 | Close file |
| 2018-12-17T22:49:33.38966376Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.393759393Z | 61 | PC: 12da8 | Open file (Filename = 'PRINTA~1.COM��') |
| 2018-12-17T22:49:33.399953565Z | 64 | PC: 12cc0 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:49:33.401946894Z | 66 | PC: 12d96 | Move file pointer |
| 2018-12-17T22:49:33.403684138Z | 44 | PC: 12cd1 | Get time 0x12cd1: cmp dh, 0
0x12cd4: xchg ax, dx
0x12cd5: xchg ax, dx
0x12cd6: je 0x12ccb
0x12cd8: mov byte ptr cs:[bp + 0x514], dh
0x12cdd: xchg ax, dx
0x12cde: xchg ax, dx
0x12cdf: call 0x12e10
0x12ce2: xchg ax, dx
0x12ce3: xchg ax, dx
0x12ce4: inc byte ptr cs:[bp + 0x515]
0x12ce9: mov ax, 0x5701
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: mov cx, word ptr cs:[bp + 0x588]
0x12cf3: mov dx, word ptr cs:[bp + 0x58a]
0x12cf8: xchg ax, dx
0x12cf9: xchg ax, dx
0x12cfa: int 0x21
0x12cfc: mov ah, 0x3e
|
| 2018-12-17T22:49:33.407690979Z | 64 | PC: 12e69 | Write file or device (Write 1025 bytes on handle 2) |
| 2018-12-17T22:49:33.418671991Z | 87 | PC: 12cfc | Get or set file date and time |
| 2018-12-17T22:49:33.420139199Z | 62 | PC: 12d02 | Close file |
| 2018-12-17T22:49:33.423340616Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.42749997Z | 79 | PC: 12b8c | Find next file |
| 2018-12-17T22:49:33.429992514Z | 61 | PC: 12da8 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:49:33.436573643Z | 63 | PC: 12baf | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:49:33.44257687Z | 62 | PC: 12bb3 | Close file |
| 2018-12-17T22:49:33.444237064Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.454171678Z | 61 | PC: 12da8 | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:49:33.461130043Z | 64 | PC: 12cc0 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:49:33.463673094Z | 66 | PC: 12d96 | Move file pointer |
| 2018-12-17T22:49:33.465202367Z | 44 | PC: 12cd1 | Get time 0x12cd1: cmp dh, 0
0x12cd4: xchg ax, dx
0x12cd5: xchg ax, dx
0x12cd6: je 0x12ccb
0x12cd8: mov byte ptr cs:[bp + 0x514], dh
0x12cdd: xchg ax, dx
0x12cde: xchg ax, dx
0x12cdf: call 0x12e10
0x12ce2: xchg ax, dx
0x12ce3: xchg ax, dx
0x12ce4: inc byte ptr cs:[bp + 0x515]
0x12ce9: mov ax, 0x5701
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: mov cx, word ptr cs:[bp + 0x588]
0x12cf3: mov dx, word ptr cs:[bp + 0x58a]
0x12cf8: xchg ax, dx
0x12cf9: xchg ax, dx
0x12cfa: int 0x21
0x12cfc: mov ah, 0x3e
|
| 2018-12-17T22:49:33.467591936Z | 64 | PC: 12e69 | Write file or device (Write 1025 bytes on handle 2) |
| 2018-12-17T22:49:33.47696948Z | 87 | PC: 12cfc | Get or set file date and time |
| 2018-12-17T22:49:33.4816159Z | 62 | PC: 12d02 | Close file |
| 2018-12-17T22:49:33.489036658Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.498504083Z | 79 | PC: 12b8c | Find next file |
| 2018-12-17T22:49:33.501960465Z | 61 | PC: 12da8 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:49:33.508552504Z | 63 | PC: 12baf | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:49:33.514687188Z | 62 | PC: 12bb3 | Close file |
| 2018-12-17T22:49:33.518077677Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.528247951Z | 61 | PC: 12da8 | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:49:33.535026702Z | 64 | PC: 12cc0 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:49:33.538952331Z | 66 | PC: 12d96 | Move file pointer |
| 2018-12-17T22:49:33.540369323Z | 44 | PC: 12cd1 | Get time 0x12cd1: cmp dh, 0
0x12cd4: xchg ax, dx
0x12cd5: xchg ax, dx
0x12cd6: je 0x12ccb
0x12cd8: mov byte ptr cs:[bp + 0x514], dh
0x12cdd: xchg ax, dx
0x12cde: xchg ax, dx
0x12cdf: call 0x12e10
0x12ce2: xchg ax, dx
0x12ce3: xchg ax, dx
0x12ce4: inc byte ptr cs:[bp + 0x515]
0x12ce9: mov ax, 0x5701
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: mov cx, word ptr cs:[bp + 0x588]
0x12cf3: mov dx, word ptr cs:[bp + 0x58a]
0x12cf8: xchg ax, dx
0x12cf9: xchg ax, dx
0x12cfa: int 0x21
0x12cfc: mov ah, 0x3e
|
| 2018-12-17T22:49:33.542891344Z | 64 | PC: 12e69 | Write file or device (Write 1025 bytes on handle 2) |
| 2018-12-17T22:49:33.552608851Z | 87 | PC: 12cfc | Get or set file date and time |
| 2018-12-17T22:49:33.554089824Z | 62 | PC: 12d02 | Close file |
| 2018-12-17T22:49:33.5617956Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.572022079Z | 79 | PC: 12b8c | Find next file |
| 2018-12-17T22:49:33.574502874Z | 61 | PC: 12da8 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:49:33.580738583Z | 63 | PC: 12baf | Read file or device (Read 26 bytes on handle 2) |
| 2018-12-17T22:49:33.58743269Z | 62 | PC: 12bb3 | Close file |
| 2018-12-17T22:49:33.589296486Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.599911268Z | 61 | PC: 12da8 | Open file (Filename = 'TEST.COM') |
| 2018-12-17T22:49:33.606971912Z | 64 | PC: 12cc0 | Write file or device (Write 5 bytes on handle 2) |
| 2018-12-17T22:49:33.609939918Z | 66 | PC: 12d96 | Move file pointer |
| 2018-12-17T22:49:33.611297798Z | 44 | PC: 12cd1 | Get time 0x12cd1: cmp dh, 0
0x12cd4: xchg ax, dx
0x12cd5: xchg ax, dx
0x12cd6: je 0x12ccb
0x12cd8: mov byte ptr cs:[bp + 0x514], dh
0x12cdd: xchg ax, dx
0x12cde: xchg ax, dx
0x12cdf: call 0x12e10
0x12ce2: xchg ax, dx
0x12ce3: xchg ax, dx
0x12ce4: inc byte ptr cs:[bp + 0x515]
0x12ce9: mov ax, 0x5701
0x12cec: xchg ax, dx
0x12ced: xchg ax, dx
0x12cee: mov cx, word ptr cs:[bp + 0x588]
0x12cf3: mov dx, word ptr cs:[bp + 0x58a]
0x12cf8: xchg ax, dx
0x12cf9: xchg ax, dx
0x12cfa: int 0x21
0x12cfc: mov ah, 0x3e
|
| 2018-12-17T22:49:33.614441242Z | 64 | PC: 12e69 | Write file or device (Write 1025 bytes on handle 2) |
| 2018-12-17T22:49:33.623821291Z | 87 | PC: 12cfc | Get or set file date and time |
| 2018-12-17T22:49:33.625293398Z | 62 | PC: 12d02 | Close file |
| 2018-12-17T22:49:33.633382856Z | 67 | PC: 12db9 | Get or set file attributes |
| 2018-12-17T22:49:33.643397638Z | 79 | PC: 12b8c | Find next file |
| 2018-12-17T22:49:33.645815515Z | 59 | PC: 12b12 | Change current directory |
| 2018-12-17T22:49:33.65107328Z | 42 | PC: 12d15 | Get date 0x12d15: xchg ax, dx
0x12d16: xchg ax, dx
0x12d17: cmp cx, 0x7cb
0x12d1b: jb 0x12d89
0x12d1d: cmp dh, 6
0x12d20: jb 0x12d89
0x12d22: cmp dl, 5
0x12d25: jb 0x12d89
0x12d27: cmp al, 2
0x12d29: jb 0x12d89
0x12d2b: xchg ax, dx
0x12d2c: xchg ax, dx
0x12d2d: mov ah, 0x2c
0x12d2f: int 0x21
0x12d31: xchg ax, dx
0x12d32: xchg ax, dx
0x12d33: cmp ch, 9
0x12d36: jb 0x12d89
0x12d38: cmp cl, 1
0x12d3b: jb 0x12d89
|
| 2018-12-17T22:49:33.653238604Z | 37 | PC: 12b25 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:49:33.654398339Z | 59 | PC: 12b33 | Change current directory |
| 2018-12-17T22:49:33.657337227Z | 26 | PC: 12d9d | Set disk transfer address |
