.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:28:36.448952835Z | 48 | PC: 13e9c | Get DOS version |
| 2018-12-17T22:28:36.451109517Z | 47 | PC: 13ea7 | Get disk transfer address |
| 2018-12-17T22:28:36.452513577Z | 26 | PC: 13eb6 | Set disk transfer address |
| 2018-12-17T22:28:36.453755549Z | 78 | PC: 13f24 | Find first file |
| 2018-12-17T22:28:36.462397575Z | 67 | PC: 13f71 | Get or set file attributes |
| 2018-12-17T22:28:37.143148226Z | 61 | PC: 13f76 | Open file (Filename = 'C:\DOS\EDIT.COM') |
| 2018-12-17T22:28:37.147837076Z | 87 | PC: 13f7d | Get or set file date and time |
| 2018-12-17T22:28:37.149099173Z | 63 | PC: 13f90 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:28:37.153251386Z | 66 | PC: 13f99 | Move file pointer |
| 2018-12-17T22:28:37.154411837Z | 64 | PC: 13fb2 | Write file or device (Write 454 bytes on handle 5) |
| 2018-12-17T22:28:37.161089452Z | 66 | PC: 13fbb | Move file pointer |
| 2018-12-17T22:28:37.177415726Z | 64 | PC: 13fc5 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:28:37.18392815Z | 87 | PC: 13fd8 | Get or set file date and time |
| 2018-12-17T22:28:37.18578638Z | 62 | PC: 13fdc | Close file |
| 2018-12-17T22:28:37.194390733Z | 67 | PC: 13fe9 | Get or set file attributes |
| 2018-12-17T22:28:37.199247102Z | 26 | PC: 13ff2 | Set disk transfer address |
| 2018-12-17T22:28:37.202650261Z | 25 | PC: 12f7e | Get default drive |
| 2018-12-17T22:28:37.205572859Z | 9 | PC: 12a8b | Display string (Could not find end pointer) |
| 2018-12-17T22:28:37.208768037Z | 42 | PC: 12ad0 | Get date 0x12ad0: push cx 0x12ad1: push dx 0x12ad2: mov ah, al 0x12ad4: mov si, 0x511 0x12ad7: mov dx, 0xba 0x12ada: call 0x12bdf 0x12add: pop ax 0x12ade: push ax 0x12adf: cwde 0x12ae0: push ax 0x12ae1: mov dx, 0xde 0x12ae4: call 0x12c0b 0x12ae7: pop ax 0x12ae8: aam 0x12aea: mov bx, 0x5448 0x12aed: cmp ah, 1 0x12af0: je 0x12b08 0x12af2: cmp al, 3 0x12af4: ja 0x12b08 0x12af6: or al, al |
| 2018-12-17T22:28:37.211438958Z | 25 | PC: 12b83 | Get default drive |
| 2018-12-17T22:28:37.213302124Z | 54 | PC: 12b90 | Get free disk space |
| 2018-12-17T22:28:37.222607655Z | 76 | PC: 12bdf | Terminate with return code (Return code = '0') |