.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:28:51.789510417Z | 78 | PC: 12ad0 | Find first file |
| 2018-12-17T22:28:51.796552715Z | 61 | PC: 12b1b | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:28:51.805504571Z | 67 | PC: 12aee | Get or set file attributes |
| 2018-12-17T22:28:52.130890939Z | 61 | PC: 12af3 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:28:52.138544479Z | 87 | PC: 12afa | Get or set file date and time |
| 2018-12-17T22:28:52.141609849Z | 44 | PC: 12b22 | Get time 0x12b22: mov byte ptr [0x216], dh 0x12b26: ret 0x12b27: call 0x22b1e 0x12b2a: call 0x22a46 0x12b2d: mov ah, 0x40 0x12b2f: mov cx, 0x11d 0x12b32: mov dx, 0x100 0x12b35: int 0x21 0x12b37: mov ax, 0x5701 0x12b3a: mov cx, word ptr cs:[0x217] 0x12b3f: mov dx, word ptr cs:[0x219] 0x12b44: or cx, word ptr cs:[0x21b] 0x12b49: int 0x21 0x12b4b: mov ah, 0x3e 0x12b4d: int 0x21 0x12b4f: jmp 0x12b52 0x12b51: nop 0x12b52: mov ah, 0x4c 0x12b54: int 0x21 0x12b56: add dl, dh |
| 2018-12-17T22:28:52.145606361Z | 64 | PC: 12b37 | Write file or device (Write 285 bytes on handle 6) |
| 2018-12-17T22:28:52.154368663Z | 87 | PC: 12b4b | Get or set file date and time |
| 2018-12-17T22:28:52.157179356Z | 62 | PC: 12b4f | Close file |
| 2018-12-17T22:28:52.166154715Z | 76 | PC: 12b56 | Terminate with return code (Return code = '5') |