.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:06:51.980265382Z | 44 | PC: 12b45 | Get time 0x12b45: cmp byte ptr [0x106], 0 0x12b4a: je 0x12b4c 0x12b4c: cmp dl, 0 0x12b4f: je 0x12b41 0x12b51: mov byte ptr [0x106], dl 0x12b55: mov byte ptr [0x174], 0 0x12b5a: mov byte ptr [0x175], 1 0x12b5f: mov byte ptr [0x17e], 0 0x12b64: mov cx, 0x27 0x12b67: mov dx, 0x151 0x12b6a: mov ah, 0x4e 0x12b6c: int 0x21 0x12b6e: cmp ax, 0x12 0x12b71: je 0x12b76 0x12b73: call 0x12b98 0x12b76: mov cx, 0x27 0x12b79: mov dx, 0x157 0x12b7c: mov ah, 0x4e 0x12b7e: int 0x21 0x12b80: cmp ax, 0x12 |
| 2018-12-17T23:06:51.98286724Z | 78 | PC: 12b6e | Find first file |
| 2018-12-17T23:06:51.989213689Z | 78 | PC: 12b80 | Find first file |
| 2018-12-17T23:06:51.99562165Z | 67 | PC: 12bb9 | Get or set file attributes |
| 2018-12-17T23:06:52.015738502Z | 61 | PC: 12bbf | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:06:52.023513656Z | 63 | PC: 12bce | Read file or device (Read 20 bytes on handle 5) |
| 2018-12-17T23:06:52.030533121Z | 62 | PC: 12c02 | Close file |
| 2018-12-17T23:06:52.032619262Z | 61 | PC: 12c0b | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:06:52.040781773Z | 44 | PC: 12a59 | Get time 0x12a59: xor dh, dh 0x12a5b: rcr dl, 1 0x12a5d: rcr dl, 1 0x12a5f: mov cx, 0x23d 0x12a62: add cx, dx 0x12a64: sti 0x12a65: mov ah, 0x20 0x12a67: add ah, 0x20 0x12a6a: cli 0x12a6b: mov dx, 0x100 0x12a6e: cli 0x12a6f: int 0x21 0x12a71: nop 0x12a72: call 0x12a77 0x12a75: nop 0x12a76: ret 0x12a77: mov bx, 0x151 0x12a7a: cli 0x12a7b: mov ah, byte ptr [bx] 0x12a7d: cli |
| 2018-12-17T23:06:52.043087787Z | 64 | PC: 12a71 | Write file or device (Write 717 bytes on handle 5) |
| 2018-12-17T23:06:52.052339161Z | 87 | PC: 12c33 | Get or set file date and time |
| 2018-12-17T23:06:52.054822608Z | 62 | PC: 12c3b | Close file |
| 2018-12-17T23:06:52.063396575Z | 67 | PC: 12c48 | Get or set file attributes |