.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:04:17.416327058Z | 53 | PC: 12e69 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:17.418661236Z | 37 | PC: 12e7a | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:17.421129588Z | 26 | PC: 12e8d | Set disk transfer address |
| 2018-12-17T23:04:17.423386887Z | 78 | PC: 12e98 | Find first file |
| 2018-12-17T23:04:17.430404917Z | 61 | PC: 12ea3 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:04:17.439051672Z | 63 | PC: 12eaf | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T23:04:17.447428551Z | 62 | PC: 12edd | Close file |
| 2018-12-17T23:04:17.449839311Z | 67 | PC: 12ee9 | Get or set file attributes |
| 2018-12-17T23:04:17.473557139Z | 61 | PC: 12ef2 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:04:17.481922952Z | 44 | PC: 12ef7 | Get time 0x12ef7: mov word ptr [bp + 0x22a], dx 0x12efb: call 0x12f6d 0x12efe: mov ax, 0x5700 0x12f01: mov dx, word ptr [bp + 0x12b] 0x12f05: mov cx, word ptr [bp + 0x129] 0x12f09: inc ax 0x12f0a: int 0x21 0x12f0c: mov ah, 0x3e 0x12f0e: int 0x21 0x12f10: mov ax, 0x4300 0x12f13: lea dx, word ptr [bp + 0x299] 0x12f17: xor cx, cx 0x12f19: inc ax 0x12f1a: mov cl, byte ptr [bp + 0x128] 0x12f1e: int 0x21 0x12f20: jmp 0x12f2c 0x12f22: nop 0x12f23: mov ah, 0x3e 0x12f25: int 0x21 0x12f27: mov ah, 0x4f |
| 2018-12-17T23:04:17.485048984Z | 66 | PC: 12f79 | Move file pointer |
| 2018-12-17T23:04:17.487609535Z | 64 | PC: 12f8b | Write file or device (Write 379 bytes on handle 5) |
| 2018-12-17T23:04:17.497459171Z | 66 | PC: 12f94 | Move file pointer |
| 2018-12-17T23:04:17.499549924Z | 64 | PC: 12f9f | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T23:04:17.507892057Z | 87 | PC: 12f0c | Get or set file date and time |
| 2018-12-17T23:04:17.510417035Z | 62 | PC: 12f10 | Close file |
| 2018-12-17T23:04:17.519977729Z | 67 | PC: 12f20 | Get or set file attributes |
| 2018-12-17T23:04:17.534051965Z | 26 | PC: 12f33 | Set disk transfer address |
| 2018-12-17T23:04:17.543930701Z | 37 | PC: 12f44 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |