.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:50:31.303897182Z | 78 | PC: 1516d | Find first file |
| 2018-12-17T22:50:31.312125922Z | 61 | PC: 15178 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:50:31.32092584Z | 66 | PC: 1518c | Move file pointer |
| 2018-12-17T22:50:31.322941249Z | 63 | PC: 15198 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:50:31.330723404Z | 66 | PC: 1520e | Move file pointer |
| 2018-12-17T22:50:31.334243045Z | 63 | PC: 151ca | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:50:31.337292027Z | 66 | PC: 1520e | Move file pointer |
| 2018-12-17T22:50:31.339181191Z | 64 | PC: 151d9 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:50:31.3435617Z | 66 | PC: 1520e | Move file pointer |
| 2018-12-17T22:50:31.345498252Z | 64 | PC: 151e9 | Write file or device (Write 217 bytes on handle 5) |
| 2018-12-17T22:50:31.360492143Z | 87 | PC: 151f6 | Get or set file date and time |
| 2018-12-17T22:50:31.364108451Z | 62 | PC: 151fa | Close file |
| 2018-12-17T22:50:31.373646267Z | 9 | PC: 12aa4 | Display string (String= ' This file is infected with a virus! Pre infection file size = 10,000 ') |
| 2018-12-17T22:50:31.383196807Z | 76 | PC: 12aa9 | Terminate with return code (Return code = '1') |