.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:05:39.805793536Z | 44 | PC: 19fac | Get time 0x19fac: cmp ch, 0x1a 0x19faf: jne 0x19fb3 0x19fb1: int 0x19 0x19fb3: mov ah, 0x1a 0x19fb5: mov dx, 0x337 0x19fb8: pop cx 0x19fb9: add dx, cx 0x19fbb: push cx 0x19fbc: int 0x21 0x19fbe: mov ax, 0x3d00 0x19fc1: mov dx, 0x31a 0x19fc4: pop cx 0x19fc5: add dx, cx 0x19fc7: push cx 0x19fc8: int 0x21 0x19fca: jb 0x19fef 0x19fcc: mov bx, ax 0x19fce: mov ah, 0x3f 0x19fd0: mov dx, 0x301 0x19fd3: pop cx |
| 2018-12-17T23:05:39.808365873Z | 26 | PC: 19fbe | Set disk transfer address |
| 2018-12-17T23:05:39.809747762Z | 61 | PC: 19fca | Open file (Filename = '\command.com') |
| 2018-12-17T23:05:39.815002682Z | 78 | PC: 19fff | Find first file |
| 2018-12-17T23:05:39.820550694Z | 61 | PC: 1a02a | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:05:39.826013126Z | 63 | PC: 1a03c | Read file or device (Read 6 bytes on handle 5) |
| 2018-12-17T23:05:39.832777956Z | 62 | PC: 1a040 | Close file |
| 2018-12-17T23:05:39.835239855Z | 67 | PC: 1a0a8 | Get or set file attributes |
| 2018-12-17T23:05:39.852895894Z | 61 | PC: 1a0af | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:05:39.865883826Z | 87 | PC: 1a0d5 | Get or set file date and time |
| 2018-12-17T23:05:39.867611394Z | 66 | PC: 1a0e3 | Move file pointer |
| 2018-12-17T23:05:39.869659095Z | 64 | PC: 1a120 | Write file or device (Write 557 bytes on handle 5) |
| 2018-12-17T23:05:39.879275296Z | 66 | PC: 1a13a | Move file pointer |
| 2018-12-17T23:05:39.880959733Z | 64 | PC: 1a148 | Write file or device (Write 6 bytes on handle 5) |
| 2018-12-17T23:05:39.888916965Z | 87 | PC: 1a152 | Get or set file date and time |
| 2018-12-17T23:05:39.890830023Z | 62 | PC: 1a156 | Close file |
| 2018-12-17T23:05:39.899370732Z | 26 | PC: 1a164 | Set disk transfer address |
| 2018-12-17T23:05:39.902218968Z | 76 | PC: 12a45 | Terminate with return code (Return code = '0') |