.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:10:42.54500917Z | 37 | PC: 12a4c | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:10:42.5578001Z | 78 | PC: 12a56 | Find first file |
| 2018-12-17T22:10:42.564916477Z | 61 | PC: 12a60 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:10:42.572111919Z | 63 | PC: 12a6b | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:10:42.579750798Z | 62 | PC: 12a6f | Close file |
| 2018-12-17T22:10:42.581600247Z | 67 | PC: 12a80 | Get or set file attributes |
| 2018-12-17T22:10:42.587226384Z | 67 | PC: 12a88 | Get or set file attributes |
| 2018-12-17T22:10:42.602860606Z | 61 | PC: 12a8d | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:10:42.609506602Z | 44 | PC: 12a92 | Get time 0x12a92: mov word ptr [0x560], dx 0x12a96: mov ah, 0x40 0x12a98: push ax 0x12a99: mov cx, 0x464 0x12a9c: push cx 0x12a9d: mov dx, 0x100 0x12aa0: jmp 0x12e82 0x12aa3: mov ax, 0x4301 0x12aa6: mov dx, 0x9e 0x12aa9: pop cx 0x12aaa: int 0x21 0x12aac: mov ah, 9 0x12aae: mov dx, 0x1f8 0x12ab1: int 0x21 0x12ab3: int 0x20 0x12ab5: mov ah, 0xf 0x12ab7: int 0x10 0x12ab9: xor ah, ah 0x12abb: int 0x10 0x12abd: mov ah, 1 |
| 2018-12-17T22:10:42.611923271Z | 64 | PC: 12e89 | Write file or device (Write 1124 bytes on handle 5) |
| 2018-12-17T22:10:42.621674194Z | 67 | PC: 12aac | Get or set file attributes |
| 2018-12-17T22:10:42.632691117Z | 9 | PC: 12ab3 | Display string (String= 'Bad command or file name ') |