.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:51:43.165330269Z | 26 | PC: 19e82 | Set disk transfer address |
| 2018-12-17T22:51:43.168149425Z | 71 | PC: 19e9d | Get current directory |
| 2018-12-17T22:51:43.171972487Z | 59 | PC: 19ea4 | Change current directory |
| 2018-12-17T22:51:43.176561137Z | 78 | PC: 19ec2 | Find first file |
| 2018-12-17T22:51:43.184123543Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.187373017Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.190446902Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.193475521Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.197453724Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.200478597Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.20358329Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.208685004Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.212197883Z | 79 | PC: 19ee4 | Find next file |
| 2018-12-17T22:51:43.215248514Z | 78 | PC: 19f53 | Find first file |
| 2018-12-17T22:51:43.222589304Z | 78 | PC: 19f53 | Find first file |
| 2018-12-17T22:51:43.237778387Z | 67 | PC: 1a162 | Get or set file attributes |
| 2018-12-17T22:51:43.262556123Z | 61 | PC: 19f98 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:51:43.273066137Z | 63 | PC: 19fa7 | Read file or device (Read 24 bytes on handle 5) |
| 2018-12-17T22:51:43.280735845Z | 66 | PC: 1a06e | Move file pointer |
| 2018-12-17T22:51:43.282806375Z | 64 | PC: 1a087 | Write file or device (Write 19 bytes on handle 5) |
| 2018-12-17T22:51:43.28680181Z | 66 | PC: 1a090 | Move file pointer |
| 2018-12-17T22:51:43.288796317Z | 64 | PC: 1a0a1 | Write file or device (Write 798 bytes on handle 5) |
| 2018-12-17T22:51:43.298333744Z | 87 | PC: 1a0ae | Get or set file date and time |
| 2018-12-17T22:51:43.300560036Z | 62 | PC: 1a0b2 | Close file |
| 2018-12-17T22:51:43.31021349Z | 67 | PC: 1a162 | Get or set file attributes |
| 2018-12-17T22:51:43.321447995Z | 59 | PC: 1a0c4 | Change current directory |
| 2018-12-17T22:51:43.3262256Z | 42 | PC: 1a0c8 | Get date 0x1a0c8: cmp dx, word ptr [0x3d1] 0x1a0cc: jne 0x1a0fc 0x1a0ce: mov ah, 0x2c 0x1a0d0: int 0x21 0x1a0d2: cmp ch, byte ptr [0x3d3] 0x1a0d6: jb 0x1a0fc 0x1a0d8: mov cx, 0xc8 0x1a0db: xor dx, dx 0x1a0dd: mov al, 0x19 0x1a0df: cmp al, 1 0x1a0e1: jne 0x1a0e5 0x1a0e3: xor al, al 0x1a0e5: cmp al, 0xff 0x1a0e7: jne 0x1a0eb 0x1a0e9: mov al, 1 0x1a0eb: push ax 0x1a0ec: push cx 0x1a0ed: int 0x26 0x1a0ef: add sp, 2 0x1a0f2: pop cx |
| 2018-12-17T22:51:43.330456608Z | 9 | PC: 12a85 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 7400H bytes long ') |
| 2018-12-17T22:51:43.336659951Z | 0 | PC: 12a89 | Program terminate |