.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:18:20.372733276Z | 26 | PC: 12a6c | Set disk transfer address |
| 2018-12-17T22:18:20.374725207Z | 78 | PC: 12a75 | Find first file |
| 2018-12-17T22:18:20.380475576Z | 47 | PC: 12a80 | Get disk transfer address |
| 2018-12-17T22:18:20.381903903Z | 79 | PC: 12a75 | Find next file |
| 2018-12-17T22:18:20.384826914Z | 47 | PC: 12a80 | Get disk transfer address |
| 2018-12-17T22:18:20.386790163Z | 67 | PC: 12aa8 | Get or set file attributes |
| 2018-12-17T22:18:20.404728905Z | 61 | PC: 12ab6 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:18:20.410956916Z | 63 | PC: 12acf | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:18:20.415931053Z | 66 | PC: 12ae1 | Move file pointer |
| 2018-12-17T22:18:20.417211057Z | 87 | PC: 12ae6 | Get or set file date and time |
| 2018-12-17T22:18:20.418780026Z | 64 | PC: 12af9 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:18:20.42491697Z | 66 | PC: 12b02 | Move file pointer |
| 2018-12-17T22:18:20.42630244Z | 64 | PC: 12b10 | Write file or device (Write 305 bytes on handle 5) |
| 2018-12-17T22:18:20.436115868Z | 44 | PC: 12b15 | Get time 0x12b15: mov cl, dl 0x12b17: mov al, cl 0x12b19: mov ax, 0x2c00 0x12b1c: int 0x21 0x12b1e: mov cl, dl 0x12b20: add cl, al 0x12b22: ror cl, 1 0x12b24: xor ch, ch 0x12b26: xor dx, dx 0x12b28: mov ah, 0x30 0x12b2a: add ah, 0x10 0x12b2d: int 0x21 0x12b2f: mov cx, word ptr [0x235] 0x12b33: mov dx, word ptr [0x233] 0x12b37: mov ax, 0x5701 0x12b3a: int 0x21 0x12b3c: mov ah, 0x3e 0x12b3e: int 0x21 0x12b40: mov ah, 0x4f 0x12b42: jmp 0x12a6f |
| 2018-12-17T22:18:20.440133537Z | 44 | PC: 12b1e | Get time 0x12b1e: mov cl, dl 0x12b20: add cl, al 0x12b22: ror cl, 1 0x12b24: xor ch, ch 0x12b26: xor dx, dx 0x12b28: mov ah, 0x30 0x12b2a: add ah, 0x10 0x12b2d: int 0x21 0x12b2f: mov cx, word ptr [0x235] 0x12b33: mov dx, word ptr [0x233] 0x12b37: mov ax, 0x5701 0x12b3a: int 0x21 0x12b3c: mov ah, 0x3e 0x12b3e: int 0x21 0x12b40: mov ah, 0x4f 0x12b42: jmp 0x12a6f 0x12b45: mov ah, 0x1a 0x12b47: mov dx, 0x80 0x12b4a: int 0x21 0x12b4c: mov bx, 0x102 |
| 2018-12-17T22:18:20.442311781Z | 64 | PC: 12b2f | Write file or device (Write 31 bytes on handle 5) |
| 2018-12-17T22:18:20.444987288Z | 87 | PC: 12b3c | Get or set file date and time |
| 2018-12-17T22:18:20.447012146Z | 62 | PC: 12b40 | Close file |
| 2018-12-17T22:18:20.454913119Z | 79 | PC: 12a75 | Find next file |
| 2018-12-17T22:18:20.457744825Z | 26 | PC: 12b4c | Set disk transfer address |