.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:03:07.693050705Z | 47 | PC: 12a5f | Get disk transfer address |
| 2018-12-17T23:03:07.694882306Z | 26 | PC: 12a67 | Set disk transfer address |
| 2018-12-17T23:03:07.696813375Z | 71 | PC: 12ae8 | Get current directory |
| 2018-12-17T23:03:07.700672876Z | 59 | PC: 12af0 | Change current directory |
| 2018-12-17T23:03:07.70576317Z | 47 | PC: 12b05 | Get disk transfer address |
| 2018-12-17T23:03:07.707728753Z | 26 | PC: 12b13 | Set disk transfer address |
| 2018-12-17T23:03:07.7092548Z | 78 | PC: 12b1e | Find first file |
| 2018-12-17T23:03:07.716210509Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.723628276Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.726570414Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.729369012Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.733296551Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.736243238Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.739255938Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.742704066Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.74600064Z | 79 | PC: 12b46 | Find next file |
| 2018-12-17T23:03:07.748609742Z | 47 | PC: 12b6a | Get disk transfer address |
| 2018-12-17T23:03:07.750287735Z | 26 | PC: 12b7a | Set disk transfer address |
| 2018-12-17T23:03:07.7525523Z | 78 | PC: 12b82 | Find first file |
| 2018-12-17T23:03:07.759964656Z | 47 | PC: 12bc6 | Get disk transfer address |
| 2018-12-17T23:03:07.761373042Z | 61 | PC: 12bdf | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:03:07.770104728Z | 63 | PC: 12beb | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T23:03:07.776908602Z | 66 | PC: 12bf3 | Move file pointer |
| 2018-12-17T23:03:07.778558522Z | 62 | PC: 12bf8 | Close file |
| 2018-12-17T23:03:07.781858442Z | 67 | PC: 12c18 | Get or set file attributes |
| 2018-12-17T23:03:07.800781535Z | 61 | PC: 12c1d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:03:07.808378699Z | 64 | PC: 12c29 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:03:07.81239766Z | 66 | PC: 12c31 | Move file pointer |
| 2018-12-17T23:03:07.814230844Z | 64 | PC: 12c3c | Write file or device (Write 609 bytes on handle 5) |
| 2018-12-17T23:03:07.822966948Z | 87 | PC: 12c47 | Get or set file date and time |
| 2018-12-17T23:03:07.825861376Z | 62 | PC: 12c4b | Close file |
| 2018-12-17T23:03:07.834147685Z | 67 | PC: 12c58 | Get or set file attributes |
| 2018-12-17T23:03:07.845209789Z | 26 | PC: 12b94 | Set disk transfer address |
| 2018-12-17T23:03:07.847220357Z | 26 | PC: 12b56 | Set disk transfer address |
| 2018-12-17T23:03:07.849139523Z | 59 | PC: 12afa | Change current directory |
| 2018-12-17T23:03:07.85138432Z | 42 | PC: 12c69 | Get date 0x12c69: mov al, dl 0x12c6b: cwde 0x12c6c: ret 0x12c6d: push ax 0x12c6e: popaw 0x12c6f: je 0x12ce3 0x12c71: imul sp, word ptr [bp + di + 0x69], 0x2c61 0x12c76: and byte ptr [bx + di + 0x74], ch 0x12c79: daa 0x12c7a: jae 0x12c9c 0x12c7c: inc sp 0x12c7d: inc cx 0x12c7e: inc sp 0x12c7f: and byte ptr [bp + 0x69], dh 0x12c82: jb 0x12cf9 0x12c84: jae 0x12cb2 0x12c86: and byte ptr [bp + 0x6f], ch 0x12c89: je 0x12cab 0x12c8b: inc sp 0x12c8c: popaw |
| 2018-12-17T23:03:07.854232621Z | 26 | PC: 12ac8 | Set disk transfer address |