.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:59:22.056233456Z | 26 | PC: 22a73 | Set disk transfer address |
| 2018-12-17T22:59:22.058315934Z | 78 | PC: 22a7c | Find first file |
| 2018-12-17T22:59:22.064184858Z | 61 | PC: 22a86 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:59:22.070472712Z | 63 | PC: 22aa1 | Read file or device (Read 407 bytes on handle 5) |
| 2018-12-17T22:59:22.094894591Z | 66 | PC: 22af7 | Move file pointer |
| 2018-12-17T22:59:22.097284113Z | 44 | PC: 22b1d | Get time 0x22b1d: mov word ptr [0x1f6], dx 0x22b21: mov dx, word ptr [0x1f6] 0x22b25: mov bx, 0x105 0x22b28: mov cx, 0x58 0x22b2b: nop 0x22b2c: xor word ptr [bx], dx 0x22b2e: nop 0x22b2f: add bx, 2 0x22b32: nop 0x22b33: loop 0x22b2b 0x22b35: ret 0x22b36: inc cx 0x22b37: sbb al, 0x66 0x22b39: call 0x22b74 0x22b3c: add byte ptr [bx + si], al 0x22b3e: mov ah, 0x4c 0x22b40: int 0x21 0x22b42: mov edx, dword ptr [esp + 4] 0x22b48: mov ah, 9 0x22b4a: int 0x21 |
| 2018-12-17T22:59:22.099527105Z | 64 | PC: 22b09 | Write file or device (Write 655 bytes on handle 5) |
| 2018-12-17T22:59:22.301266952Z | 87 | PC: 22b10 | Get or set file date and time |
| 2018-12-17T22:59:22.305944345Z | 62 | PC: 22b14 | Close file |
| 2018-12-17T22:59:22.313711691Z | 26 | PC: 22ae4 | Set disk transfer address |