.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:53:25.990523796Z | 26 | PC: 12aeb | Set disk transfer address |
| 2018-12-17T22:53:25.992254487Z | 71 | PC: 12b48 | Get current directory |
| 2018-12-17T22:53:25.99611554Z | 78 | PC: 12b7b | Find first file |
| 2018-12-17T22:53:26.002742748Z | 61 | PC: 12bde | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:53:26.015937274Z | 63 | PC: 12bed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:53:26.024939053Z | 66 | PC: 12c5e | Move file pointer |
| 2018-12-17T22:53:26.027203757Z | 64 | PC: 12c13 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:53:26.031090177Z | 64 | PC: 12c32 | Write file or device (Write 856 bytes on handle 5) |
| 2018-12-17T22:53:26.050466204Z | 66 | PC: 12c5e | Move file pointer |
| 2018-12-17T22:53:26.052040832Z | 64 | PC: 12c3e | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:53:26.059325566Z | 87 | PC: 12c4d | Get or set file date and time |
| 2018-12-17T22:53:26.061903027Z | 62 | PC: 12c51 | Close file |
| 2018-12-17T22:53:26.070902442Z | 79 | PC: 12bbd | Find next file |
| 2018-12-17T22:53:26.078507848Z | 79 | PC: 12bbd | Find next file |
| 2018-12-17T22:53:26.082348713Z | 61 | PC: 12bde | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:53:26.091603577Z | 63 | PC: 12bed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:53:26.099892027Z | 66 | PC: 12c5e | Move file pointer |
| 2018-12-17T22:53:26.101782157Z | 64 | PC: 12c13 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:53:26.106423085Z | 64 | PC: 12c32 | Write file or device (Write 856 bytes on handle 5) |
| 2018-12-17T22:53:26.115631442Z | 66 | PC: 12c5e | Move file pointer |
| 2018-12-17T22:53:26.117660764Z | 64 | PC: 12c3e | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:53:26.126178694Z | 87 | PC: 12c4d | Get or set file date and time |
| 2018-12-17T22:53:26.128224037Z | 62 | PC: 12c51 | Close file |
| 2018-12-17T22:53:26.134654696Z | 59 | PC: 12b6a | Change current directory |
| 2018-12-17T22:53:26.138801726Z | 26 | PC: 12b00 | Set disk transfer address |
| 2018-12-17T22:53:26.139899528Z | 9 | PC: 12a62 | Display string (String= 'This is a 100 byte COM file that has been exposed to a virus.') |
| 2018-12-17T22:53:26.142894855Z | 76 | PC: 12a66 | Terminate with return code (Return code = '36') |