.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:00:05.276225473Z | 71 | PC: 12a9a | Get current directory |
| 2018-12-17T23:00:05.280178843Z | 25 | PC: 12a9f | Get default drive |
| 2018-12-17T23:00:05.281925836Z | 44 | PC: 12ab0 | Get time 0x12ab0: mov word ptr [si + 0x119], dx 0x12ab4: push si 0x12ab5: pop bp 0x12ab6: lea si, word ptr [bp + 0x312] 0x12aba: lea di, word ptr [bp + 0x316] 0x12abe: mov cx, 4 0x12ac1: cld 0x12ac2: rep movsb byte ptr es:[di], byte ptr [si] 0x12ac4: push bp 0x12ac5: pop si 0x12ac6: mov ah, 0x1a 0x12ac8: lea dx, word ptr [si + 0x345] 0x12acc: int 0x21 0x12ace: mov ah, 0x4e 0x12ad0: lea dx, word ptr [si + 0x2f7] 0x12ad4: mov cx, 7 0x12ad7: int 0x21 0x12ad9: jae 0x12b1f 0x12adb: mov ah, 0x1a 0x12add: lea dx, word ptr [si + 0x3ee] |
| 2018-12-17T23:00:05.28472186Z | 26 | PC: 12ace | Set disk transfer address |
| 2018-12-17T23:00:05.286377993Z | 78 | PC: 12ad9 | Find first file |
| 2018-12-17T23:00:05.302716707Z | 67 | PC: 12b32 | Get or set file attributes |
| 2018-12-17T23:00:05.323557853Z | 61 | PC: 12b3b | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:00:05.331568878Z | 63 | PC: 12b5d | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:00:05.340268076Z | 66 | PC: 12b8d | Move file pointer |
| 2018-12-17T23:00:05.343770307Z | 64 | PC: 12a8b | Write file or device (Write 560 bytes on handle 5) |
| 2018-12-17T23:00:05.353511693Z | 66 | PC: 12bdb | Move file pointer |
| 2018-12-17T23:00:05.356588675Z | 64 | PC: 12be6 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:00:05.368170661Z | 87 | PC: 12bf7 | Get or set file date and time |
| 2018-12-17T23:00:05.370690426Z | 62 | PC: 12bfb | Close file |
| 2018-12-17T23:00:05.380493609Z | 67 | PC: 12c0a | Get or set file attributes |
| 2018-12-17T23:00:05.391987328Z | 59 | PC: 12c12 | Change current directory |
| 2018-12-17T23:00:05.396399841Z | 26 | PC: 12c2c | Set disk transfer address |