.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:51:00.193904778Z | 47 | PC: 12afc | Get disk transfer address |
| 2018-12-17T22:51:00.195660986Z | 26 | PC: 12b0e | Set disk transfer address |
| 2018-12-17T22:51:00.196831139Z | 25 | PC: 12b1d | Get default drive |
| 2018-12-17T22:51:00.198068413Z | 14 | PC: 12b27 | Set default drive (Drive = ' ') |
| 2018-12-17T22:51:00.199926845Z | 78 | PC: 12b4b | Find first file |
| 2018-12-17T22:51:00.205906918Z | 67 | PC: 12b78 | Get or set file attributes |
| 2018-12-17T22:51:00.211391834Z | 67 | PC: 12b85 | Get or set file attributes |
| 2018-12-17T22:51:00.227835629Z | 61 | PC: 12b8d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:51:00.2346522Z | 87 | PC: 12b94 | Get or set file date and time |
| 2018-12-17T22:51:00.236157116Z | 44 | PC: 12ba2 | Get time 0x12ba2: or dl, dl 0x12ba4: je 0x12b9e 0x12ba6: mov byte ptr [bp + 0x1a8], dl 0x12baa: mov ah, 0x3f 0x12bac: lea dx, word ptr [bp + 0x176] 0x12bb0: mov cx, 3 0x12bb3: int 0x21 0x12bb5: mov ax, 0x4202 0x12bb8: xor cx, cx 0x12bba: xor dx, dx 0x12bbc: int 0x21 0x12bbe: sub ax, 3 0x12bc1: mov word ptr cs:[0xfb2d], ax 0x12bc5: mov byte ptr cs:[0xfb2c], 0xe9 0x12bcb: lea si, word ptr [bp - 3] 0x12bce: nop 0x12bcf: mov di, 0xfcbc 0x12bd2: mov cx, 0x1ae 0x12bd5: cld 0x12bd6: rep movsb byte ptr es:[di], byte ptr [si] |
| 2018-12-17T22:51:00.239414938Z | 63 | PC: 12bb5 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:51:00.245619275Z | 66 | PC: 12bbe | Move file pointer |
| 2018-12-17T22:51:00.247684271Z | 64 | PC: 12be8 | Write file or device (Write 430 bytes on handle 5) |
| 2018-12-17T22:51:00.256704581Z | 66 | PC: 12bf1 | Move file pointer |
| 2018-12-17T22:51:00.257957911Z | 64 | PC: 12bfb | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:51:00.2651579Z | 87 | PC: 12c10 | Get or set file date and time |
| 2018-12-17T22:51:00.267073505Z | 62 | PC: 12c14 | Close file |
| 2018-12-17T22:51:00.274951822Z | 67 | PC: 12c21 | Get or set file attributes |
| 2018-12-17T22:51:00.284455748Z | 26 | PC: 12c30 | Set disk transfer address |
| 2018-12-17T22:51:00.289322561Z | 14 | PC: 12c3a | Set default drive (Drive = 'A') |
| 2018-12-17T22:51:00.290733467Z | 78 | PC: 12a64 | Find first file |
| 2018-12-17T22:51:00.29649213Z | 61 | PC: 12a71 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:51:00.30334213Z | 63 | PC: 12a7e | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:00.306570681Z | 66 | PC: 12a92 | Move file pointer |
| 2018-12-17T22:51:00.308552992Z | 64 | PC: 12aa6 | Write file or device (Write 139 bytes on handle 5) |
| 2018-12-17T22:51:00.312080456Z | 66 | PC: 12aaf | Move file pointer |
| 2018-12-17T22:51:00.314286935Z | 64 | PC: 12aba | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:00.316888229Z | 62 | PC: 12abe | Close file |