.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:54:27.840966184Z | 26 | PC: 12a7e | Set disk transfer address |
| 2018-12-17T22:54:27.843436047Z | 78 | PC: 12a89 | Find first file |
| 2018-12-17T22:54:27.849713718Z | 67 | PC: 12ab3 | Get or set file attributes |
| 2018-12-17T22:54:27.866174592Z | 61 | PC: 12ad2 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:54:27.872901465Z | 66 | PC: 12ae0 | Move file pointer |
| 2018-12-17T22:54:27.874896024Z | 63 | PC: 12aec | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:54:27.881121796Z | 66 | PC: 12b0d | Move file pointer |
| 2018-12-17T22:54:27.882524675Z | 64 | PC: 12b18 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:54:27.886361844Z | 66 | PC: 12b22 | Move file pointer |
| 2018-12-17T22:54:27.887748184Z | 44 | PC: 12b26 | Get time 0x12b26: test dl, dl 0x12b28: je 0x12b22 0x12b2a: test dh, dh 0x12b2c: jne 0x12b30 0x12b2e: mov dh, 0x42 0x12b30: mov word ptr [bp + 0x262], dx 0x12b34: call 0x12ba4 0x12b37: mov ax, 0x4301 0x12b3a: mov cx, word ptr [bp + 0x251] 0x12b3e: int 0x21 0x12b40: mov ax, 0x5701 0x12b43: mov cx, word ptr [bp + 0x252] 0x12b47: mov dx, word ptr [bp + 0x254] 0x12b4b: int 0x21 0x12b4d: mov ah, 0x3e 0x12b4f: int 0x21 0x12b51: mov ah, 0x1a 0x12b53: mov dx, 0x80 0x12b56: int 0x21 0x12b58: mov ax, 0x100 |
| 2018-12-17T22:54:27.890032632Z | 64 | PC: 12bb2 | Write file or device (Write 321 bytes on handle 5) |
| 2018-12-17T22:54:27.899382487Z | 67 | PC: 12b40 | Get or set file attributes |
| 2018-12-17T22:54:27.903652587Z | 87 | PC: 12b4d | Get or set file date and time |
| 2018-12-17T22:54:27.905123637Z | 62 | PC: 12b51 | Close file |
| 2018-12-17T22:54:27.917997597Z | 26 | PC: 12b58 | Set disk transfer address |