.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:00:56.587199013Z | 53 | PC: 12a5c | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:00:56.589048039Z | 37 | PC: 12a76 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:00:56.590018049Z | 26 | PC: 12a89 | Set disk transfer address |
| 2018-12-17T23:00:56.59101697Z | 78 | PC: 12a99 | Find first file |
| 2018-12-17T23:00:56.595769485Z | 61 | PC: 12aa7 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:00:56.604530757Z | 63 | PC: 12ab7 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:00:56.621670951Z | 62 | PC: 12ae4 | Close file |
| 2018-12-17T23:00:56.624166671Z | 67 | PC: 12aef | Get or set file attributes |
| 2018-12-17T23:00:56.641066344Z | 61 | PC: 12af8 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:00:56.660464208Z | 44 | PC: 12bf6 | Get time 0x12bf6: pop di 0x12bf7: mov dl, dl 0x12bf9: push dx 0x12bfa: push di 0x12bfb: ret 0x12bfc: lea si, word ptr [bp + 0x10b] 0x12c00: add cl, 0x2c 0x12c03: sub cl, 0x2c 0x12c06: mov di, si 0x12c08: mov cx, 0xcd 0x12c0b: add ax, 0 0x12c0e: lodsw ax, word ptr [si] 0x12c0f: jmp 0x12c1b 0x12c11: add cl, 0x9c 0x12c14: sub cl, 0x9c 0x12c17: stosw word ptr es:[di], ax 0x12c18: loop 0x12c0e 0x12c1a: ret 0x12c1b: xor ax, word ptr [bp + 0x2ac] 0x12c1f: xor ax, word ptr [bp + 0x2ac] |
| 2018-12-17T23:00:56.677347014Z | 44 | PC: 12bf6 | Get time 0x12bf6: pop di 0x12bf7: mov dl, dl 0x12bf9: push dx 0x12bfa: push di 0x12bfb: ret 0x12bfc: lea si, word ptr [bp + 0x10b] 0x12c00: add cl, 0x2c 0x12c03: sub cl, 0x2c 0x12c06: mov di, si 0x12c08: mov cx, 0xcd 0x12c0b: add ax, 0 0x12c0e: lodsw ax, word ptr [si] 0x12c0f: jmp 0x12c1b 0x12c11: add cl, 0x9c 0x12c14: sub cl, 0x9c 0x12c17: stosw word ptr es:[di], ax 0x12c18: loop 0x12c0e 0x12c1a: ret 0x12c1b: xor ax, word ptr [bp + 0x2ac] 0x12c1f: xor ax, word ptr [bp + 0x2ac] |
| 2018-12-17T23:00:56.679721326Z | 66 | PC: 12c7c | Move file pointer |
| 2018-12-17T23:00:56.681038431Z | 64 | PC: 12c98 | Write file or device (Write 507 bytes on handle 5) |
| 2018-12-17T23:00:56.689372541Z | 66 | PC: 12ca6 | Move file pointer |
| 2018-12-17T23:00:56.698726963Z | 64 | PC: 12cb1 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:00:56.705528595Z | 87 | PC: 12b2a | Get or set file date and time |
| 2018-12-17T23:00:56.7074542Z | 62 | PC: 12b2e | Close file |
| 2018-12-17T23:00:56.71580101Z | 67 | PC: 12b3d | Get or set file attributes |
| 2018-12-17T23:00:56.730805305Z | 26 | PC: 12b55 | Set disk transfer address |
| 2018-12-17T23:00:56.731810302Z | 37 | PC: 12b66 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |