.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:58:08.223440013Z | 42 | PC: 12aaa | Get date 0x12aaa: mov word ptr [0xf2], dx 0x12aae: mov word ptr [0xf4], cx 0x12ab2: stc 0x12ab3: mov dx, 0x2b0 0x12ab6: mov ah, 0x4e 0x12ab8: mov cx, 0x20 0x12abb: int 0x21 0x12abd: or ax, ax 0x12abf: je 0x12ac4 0x12ac1: jmp 0x12b99 0x12ac4: mov ah, 0x2f 0x12ac6: int 0x21 0x12ac8: mov ax, word ptr es:[bx + 0x1a] 0x12acc: mov word ptr [0xfc], ax 0x12acf: add bx, 0x1e 0x12ad2: mov word ptr [0xfe], bx 0x12ad6: mov ax, 0x4f43 0x12ad9: sub ax, word ptr [0x9e] 0x12add: jne 0x12ae2 0x12adf: jmp 0x12b8d |
| 2018-12-17T22:58:08.226022358Z | 78 | PC: 12abd | Find first file |
| 2018-12-17T22:58:08.231833931Z | 47 | PC: 12ac8 | Get disk transfer address |
| 2018-12-17T22:58:08.233031375Z | 43 | PC: 12b1e | Set date |
| 2018-12-17T22:58:08.236922785Z | 61 | PC: 12b26 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:58:08.248222282Z | 63 | PC: 12b34 | Read file or device (Read 407 bytes on handle 5) |
| 2018-12-17T22:58:08.254526484Z | 60 | PC: 12b71 | Create or truncate file |
| 2018-12-17T22:58:08.273431694Z | 64 | PC: 12b83 | Write file or device (Write 848 bytes on handle 6) |
| 2018-12-17T22:58:08.281539129Z | 62 | PC: 12b87 | Close file |
| 2018-12-17T22:58:08.289766811Z | 79 | PC: 12b92 | Find next file |
| 2018-12-17T22:58:08.292680872Z | 47 | PC: 12ac8 | Get disk transfer address |
| 2018-12-17T22:58:08.293960516Z | 43 | PC: 12b1e | Set date |
| 2018-12-17T22:58:08.297048017Z | 61 | PC: 12b26 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:58:08.308533581Z | 63 | PC: 12b34 | Read file or device (Read 27 bytes on handle 6) |
| 2018-12-17T22:58:08.315115735Z | 60 | PC: 12b71 | Create or truncate file |
| 2018-12-17T22:58:08.327384658Z | 64 | PC: 12b83 | Write file or device (Write 468 bytes on handle 7) |
| 2018-12-17T22:58:08.331844739Z | 62 | PC: 12b87 | Close file |
| 2018-12-17T22:58:08.339929154Z | 43 | PC: 12ba5 | Set date |
| 2018-12-17T22:58:08.343192235Z | 43 | PC: 12bab | Set date |
| 2018-12-17T22:58:08.346533403Z | 43 | PC: 12bb1 | Set date |
| 2018-12-17T22:58:08.350196882Z | 43 | PC: 12bb8 | Set date |
| 2018-12-17T22:58:08.354754427Z | 76 | PC: 12a45 | Terminate with return code (Return code = '0') |