.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:08:05.158147246Z | 47 | PC: 12e42 | Get disk transfer address |
| 2018-12-17T22:08:05.160326127Z | 26 | PC: 12e54 | Set disk transfer address |
| 2018-12-17T22:08:05.161753083Z | 78 | PC: 12ef5 | Find first file |
| 2018-12-17T22:08:05.167756055Z | 67 | PC: 12f54 | Get or set file attributes |
| 2018-12-17T22:08:05.173707834Z | 67 | PC: 12f65 | Get or set file attributes |
| 2018-12-17T22:08:05.193543956Z | 61 | PC: 12f6f | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:08:05.200598421Z | 87 | PC: 12f82 | Get or set file date and time |
| 2018-12-17T22:08:05.202569611Z | 44 | PC: 12f8e | Get time 0x12f8e: mov cx, 3 0x12f91: mov dx, 0x19e 0x12f94: add dx, si 0x12f96: mov ah, 0x3f 0x12f98: int 0x21 0x12f9a: jb 0x12fe6 0x12f9c: cmp ax, 3 0x12f9f: jne 0x12fe6 0x12fa1: xor cx, cx 0x12fa3: xor dx, dx 0x12fa5: mov ax, 0x4202 0x12fa8: int 0x21 0x12faa: jb 0x12fe6 0x12fac: push ax 0x12fad: sub ax, 3 0x12fb0: pop cx 0x12fb1: add cx, 0x305 0x12fb5: mov word ptr [si + 0x1a2], ax 0x12fb9: push si 0x12fba: pop di |
| 2018-12-17T22:08:05.205970759Z | 63 | PC: 12f9a | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:08:05.212499381Z | 66 | PC: 12faa | Move file pointer |
| 2018-12-17T22:08:05.214204928Z | 64 | PC: 12fce | Write file or device (Write 1059 bytes on handle 5) |
| 2018-12-17T22:08:05.224083549Z | 66 | PC: 12fd9 | Move file pointer |
| 2018-12-17T22:08:05.225738779Z | 64 | PC: 12fe6 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:08:05.232434291Z | 87 | PC: 12ff9 | Get or set file date and time |
| 2018-12-17T22:08:05.234531771Z | 62 | PC: 12ffd | Close file |
| 2018-12-17T22:08:05.242462636Z | 67 | PC: 1300b | Get or set file attributes |
| 2018-12-17T22:08:05.252661896Z | 26 | PC: 13018 | Set disk transfer address |