.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:51:38.868987595Z | 26 | PC: 12f6f | Set disk transfer address |
| 2018-12-17T22:51:38.871425159Z | 78 | PC: 12f84 | Find first file |
| 2018-12-17T22:51:38.87923367Z | 67 | PC: 12ff9 | Get or set file attributes |
| 2018-12-17T22:51:38.885955254Z | 67 | PC: 13005 | Get or set file attributes |
| 2018-12-17T22:51:38.903710605Z | 61 | PC: 1300a | Open file (Filename = '\SLEEP.COM') |
| 2018-12-17T22:51:38.912143066Z | 63 | PC: 13018 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:51:38.919389261Z | 44 | PC: 1301c | Get time 0x1301c: add dl, dh 0x1301e: add dl, cl 0x13020: add dl, 1 0x13023: mov byte ptr [si + 0x2d5], dl 0x13027: xor cx, cx 0x13029: xor dx, dx 0x1302b: mov ax, 0x4200 0x1302e: int 0x21 0x13030: mov cx, 4 0x13033: mov dx, si 0x13035: add dx, 0x2d2 0x13039: mov ah, 0x40 0x1303b: int 0x21 0x1303d: jmp 0x13041 0x1303f: jmp 0x13074 0x13041: mov al, byte ptr [si + 0x2d5] 0x13045: mov cx, 0x241 0x13048: push bx 0x13049: mov bx, cx 0x1304b: add byte ptr [bx + si], al |
| 2018-12-17T22:51:38.921825992Z | 66 | PC: 13030 | Move file pointer |
| 2018-12-17T22:51:38.924436709Z | 64 | PC: 1303d | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:51:38.927544929Z | 66 | PC: 13059 | Move file pointer |
| 2018-12-17T22:51:38.929200213Z | 64 | PC: 13066 | Write file or device (Write 592 bytes on handle 5) |
| 2018-12-17T22:51:38.939267495Z | 64 | PC: 12e4d | Write file or device (Write 141 bytes on handle 5) |
| 2018-12-17T22:51:38.948227865Z | 87 | PC: 12e5a | Get or set file date and time |
| 2018-12-17T22:51:38.950084874Z | 62 | PC: 12e5e | Close file |
| 2018-12-17T22:51:38.959138922Z | 67 | PC: 12e76 | Get or set file attributes |
| 2018-12-17T22:51:38.965165032Z | 9 | PC: 12d16 | Display string (String= ' ') |
| 2018-12-17T22:51:38.96929246Z | 49 | PC: 12b50 | Terminate and stay resident (Return code = '0' | Memory size = '29') |