.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:00:20.660418253Z | 78 | PC: 12a4c | Find first file |
| 2018-12-17T23:00:20.667173758Z | 61 | PC: 12a64 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:00:20.674707285Z | 42 | PC: 12a69 | Get date 0x12a69: cwde 0x12a6a: cmp ax, 4 0x12a6d: je 0x12aa0 0x12a6f: je 0x12a98 0x12a71: mov ah, 0x3f 0x12a73: mov cx, 2 0x12a76: mov dx, 0x15e 0x12a79: int 0x21 0x12a7b: cmp word ptr [0x15e], 0xc18b 0x12a81: pushf 0x12a82: je 0x12a98 0x12a84: cdq 0x12a85: mov cx, dx 0x12a87: mov ax, 0x4200 0x12a8a: mov ax, ax 0x12a8c: int 0x21 0x12a8e: mov ah, 0x40 0x12a90: mov cx, 0xb1 0x12a93: mov dx, 0x100 0x12a96: int 0x21 |
| 2018-12-17T23:00:20.682749628Z | 63 | PC: 12a7b | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T23:00:20.689716871Z | 66 | PC: 12a8e | Move file pointer |
| 2018-12-17T23:00:20.692457681Z | 64 | PC: 12a98 | Write file or device (Write 177 bytes on handle 5) |
| 2018-12-17T23:00:20.69521309Z | 62 | PC: 12a9c | Close file |
| 2018-12-17T23:00:20.711132986Z | 76 | PC: 12a5c | Terminate with return code (Return code = '1') |