.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:58:48.788352821Z | 26 | PC: 12fa5 | Set disk transfer address |
| 2018-12-17T22:58:48.79027256Z | 78 | PC: 12ff0 | Find first file |
| 2018-12-17T22:58:48.796649352Z | 61 | PC: 13008 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:58:48.803199462Z | 63 | PC: 13017 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:58:48.810433569Z | 62 | PC: 1301c | Close file |
| 2018-12-17T22:58:48.812321603Z | 61 | PC: 13008 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:58:48.818643189Z | 63 | PC: 13017 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:58:48.822442926Z | 62 | PC: 1301c | Close file |
| 2018-12-17T22:58:48.824438834Z | 61 | PC: 13043 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:58:48.831852177Z | 66 | PC: 13053 | Move file pointer |
| 2018-12-17T22:58:48.833379556Z | 64 | PC: 13062 | Write file or device (Write 302 bytes on handle 5) |
| 2018-12-17T22:58:49.628074689Z | 66 | PC: 13074 | Move file pointer |
| 2018-12-17T22:58:49.630437656Z | 64 | PC: 13082 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:58:49.636772913Z | 66 | PC: 1308f | Move file pointer |
| 2018-12-17T22:58:49.638363844Z | 64 | PC: 130b5 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:58:49.640882303Z | 62 | PC: 130bd | Close file |
| 2018-12-17T22:58:49.646404654Z | 9 | PC: 12fba | Display string (String= 'SLEEP.COM����') |
| 2018-12-17T22:58:49.650702626Z | 26 | PC: 12fc0 | Set disk transfer address |
| 2018-12-17T22:58:49.653418381Z | 25 | PC: 12f7e | Get default drive |
| 2018-12-17T22:58:49.655211106Z | 9 | PC: 12a8b | Display string (Could not find end pointer) |
| 2018-12-17T22:58:49.659231637Z | 42 | PC: 12ad0 | Get date 0x12ad0: push cx 0x12ad1: push dx 0x12ad2: mov ah, al 0x12ad4: mov si, 0x511 0x12ad7: mov dx, 0xba 0x12ada: call 0x12bdf 0x12add: pop ax 0x12ade: push ax 0x12adf: cwde 0x12ae0: push ax 0x12ae1: mov dx, 0xde 0x12ae4: call 0x12c0b 0x12ae7: pop ax 0x12ae8: aam 0x12aea: mov bx, 0x5448 0x12aed: cmp ah, 1 0x12af0: je 0x12b08 0x12af2: cmp al, 3 0x12af4: ja 0x12b08 0x12af6: or al, al |
| 2018-12-17T22:58:49.662101016Z | 25 | PC: 12b83 | Get default drive |
| 2018-12-17T22:58:49.663570777Z | 54 | PC: 12b90 | Get free disk space |
| 2018-12-17T22:58:49.678428692Z | 76 | PC: 12bdf | Terminate with return code (Return code = '0') |