.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:57:57.371256751Z | 48 | PC: 12abd | Get DOS version |
| 2018-12-17T22:57:57.373645692Z | 47 | PC: 12acb | Get disk transfer address |
| 2018-12-17T22:57:57.375393046Z | 26 | PC: 12ae0 | Set disk transfer address |
| 2018-12-17T22:57:57.376976392Z | 78 | PC: 12b64 | Find first file |
| 2018-12-17T22:57:57.38382169Z | 67 | PC: 12ba4 | Get or set file attributes |
| 2018-12-17T22:57:57.390990455Z | 67 | PC: 12bb6 | Get or set file attributes |
| 2018-12-17T22:57:57.408264036Z | 61 | PC: 12bc1 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:57:57.417616255Z | 87 | PC: 12bce | Get or set file date and time |
| 2018-12-17T22:57:57.420417631Z | 63 | PC: 12be1 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:57:57.433093288Z | 66 | PC: 12bfd | Move file pointer |
| 2018-12-17T22:57:57.435291921Z | 44 | PC: 12c2b | Get time 0x12c2b: xor dx, cx 0x12c2d: int3 0x12c2e: push si 0x12c2f: fisttp qword ptr [si + 0xe2] 0x12c33: int3 0x12c34: push si 0x12c35: retf 0xf6cc 0x12c39: jg 0x12bcf 0x12c3b: loop 0x12c3d 0x12c3d: int3 |
| 2018-12-17T22:57:57.441360459Z | 64 | PC: 132ab | Write file or device (Write 2008 bytes on handle 5) |
| 2018-12-17T22:57:57.454807726Z | 66 | PC: 12ebe | Move file pointer |
| 2018-12-17T22:57:57.456873108Z | 64 | PC: 12ecf | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:57:57.464956824Z | 87 | PC: 12ee2 | Get or set file date and time |
| 2018-12-17T22:57:57.466745386Z | 62 | PC: 12ee6 | Close file |
| 2018-12-17T22:57:57.475465838Z | 67 | PC: 12ef4 | Get or set file attributes |
| 2018-12-17T22:57:57.486363002Z | 26 | PC: 12eff | Set disk transfer address |