.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:11:43.120112807Z | 26 | PC: 12c00 | Set disk transfer address |
| 2018-12-17T23:11:43.121801587Z | 78 | PC: 12c0c | Find first file |
| 2018-12-17T23:11:43.127819172Z | 67 | PC: 12c65 | Get or set file attributes |
| 2018-12-17T23:11:43.133518007Z | 67 | PC: 12c70 | Get or set file attributes |
| 2018-12-17T23:11:43.149381293Z | 61 | PC: 12c7f | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T23:11:43.156131504Z | 87 | PC: 12c8b | Get or set file date and time |
| 2018-12-17T23:11:43.157699338Z | 66 | PC: 12c9c | Move file pointer |
| 2018-12-17T23:11:43.159933844Z | 63 | PC: 12ca8 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T23:11:43.16648313Z | 66 | PC: 12cb1 | Move file pointer |
| 2018-12-17T23:11:43.168258692Z | 64 | PC: 12cbe | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:11:43.173543427Z | 66 | PC: 12cca | Move file pointer |
| 2018-12-17T23:11:43.175962922Z | 44 | PC: 12cce | Get time 0x12cce: mov byte ptr [si - 0x13], dl 0x12cd1: mov cx, 0x43 0x12cd4: push si 0x12cd5: mov di, si 0x12cd7: add di, 0x191 0x12cdb: mov dx, 0x14e 0x12cde: add si, dx 0x12ce0: rep movsb byte ptr es:[di], byte ptr [si] 0x12ce2: pop si 0x12ce3: mov dx, word ptr [si - 0x13] 0x12ce6: mov ax, si 0x12ce8: add ax, 0x191 0x12ceb: jmp ax 0x12ced: push si 0x12cee: mov di, si 0x12cf0: mov cx, 0x193 0x12cf3: xor ax, ax 0x12cf5: lodsb al, byte ptr [si] 0x12cf6: xor al, ah 0x12cf8: rol ah, 5 |
| 2018-12-17T23:11:43.182073104Z | 64 | PC: 12d51 | Write file or device (Write 432 bytes on handle 5) |
| 2018-12-17T23:11:43.202893475Z | 87 | PC: 12d64 | Get or set file date and time |
| 2018-12-17T23:11:43.206930952Z | 62 | PC: 12d68 | Close file |
| 2018-12-17T23:11:43.21977321Z | 2 | PC: 12a49 | Character output (Char = '03') |