.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:57:19.739457558Z | 26 | PC: 12a88 | Set disk transfer address |
| 2018-12-17T22:57:19.741084671Z | 42 | PC: 12a8c | Get date 0x12a8c: mov word ptr [si + 0x2e6], 0x4d4f 0x12a92: mov byte ptr [si + 0x2e3], 0x2a 0x12a97: mov byte ptr [si + 0x2e8], 0 0x12a9c: cmp dl, 0x1f 0x12a9f: jne 0x12aa8 0x12aa1: cmp al, 0 0x12aa3: je 0x12aa8 0x12aa5: call 0x12b63 0x12aa8: mov ah, 0x4e 0x12aaa: xor cx, cx 0x12aac: mov dx, 0x2e3 0x12aaf: add dx, si 0x12ab1: int 0x21 0x12ab3: jae 0x12ab8 0x12ab5: jmp 0x12b58 0x12ab8: mov ax, word ptr [si + 0x36f] 0x12abc: cmp ax, 0xbf40 0x12abf: jne 0x12acd 0x12ac1: jmp 0x12ac4 0x12ac3: nop |
| 2018-12-17T22:57:19.743586934Z | 78 | PC: 12ab3 | Find first file |
| 2018-12-17T22:57:19.750866587Z | 61 | PC: 12adf | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:57:19.758583591Z | 63 | PC: 12b00 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:57:19.766503635Z | 66 | PC: 12b0f | Move file pointer |
| 2018-12-17T22:57:19.767712206Z | 64 | PC: 12b21 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:57:19.77036547Z | 66 | PC: 12b30 | Move file pointer |
| 2018-12-17T22:57:19.772026835Z | 64 | PC: 12b40 | Write file or device (Write 441 bytes on handle 5) |
| 2018-12-17T22:57:19.78808246Z | 87 | PC: 12b50 | Get or set file date and time |
| 2018-12-17T22:57:19.789189703Z | 62 | PC: 12b58 | Close file |