.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:32:26.32736701Z | 48 | PC: 13aac | Get DOS version |
| 2018-12-17T22:32:26.330275883Z | 47 | PC: 13aba | Get disk transfer address |
| 2018-12-17T22:32:26.33188133Z | 26 | PC: 13acf | Set disk transfer address |
| 2018-12-17T22:32:26.333400467Z | 78 | PC: 13b53 | Find first file |
| 2018-12-17T22:32:26.340509392Z | 67 | PC: 13b93 | Get or set file attributes |
| 2018-12-17T22:32:26.347110588Z | 67 | PC: 13ba4 | Get or set file attributes |
| 2018-12-17T22:32:26.364031601Z | 61 | PC: 13baf | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:32:26.371362313Z | 87 | PC: 13bbc | Get or set file date and time |
| 2018-12-17T22:32:26.373592832Z | 63 | PC: 13bcf | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:32:26.380388532Z | 66 | PC: 13beb | Move file pointer |
| 2018-12-17T22:32:26.382219517Z | 44 | PC: 13c19 | Get time 0x13c19: xor dx, cx
0x13c1b: int3
0x13c1c: xchg ax, si
0x13c1d: pop ds
0x13c1e: push si
|
| 2018-12-17T22:32:26.387175063Z | 64 | PC: 1415e | Write file or device (Write 1899 bytes on handle 5) |
| 2018-12-17T22:32:26.396994546Z | 66 | PC: 13ced | Move file pointer |
| 2018-12-17T22:32:26.39889488Z | 64 | PC: 13cfe | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:32:26.409020948Z | 87 | PC: 13d0f | Get or set file date and time |
| 2018-12-17T22:32:26.410534053Z | 62 | PC: 13d13 | Close file |
| 2018-12-17T22:32:26.418345146Z | 67 | PC: 13d21 | Get or set file attributes |
| 2018-12-17T22:32:26.42960567Z | 26 | PC: 13d2c | Set disk transfer address |
| 2018-12-17T22:32:26.431608089Z | 9 | PC: 13a3b | Display string (String= 'Infected file. Original length = 4096 bytes.
�') |
| 2018-12-17T22:32:26.436032948Z | 76 | PC: 13a40 | Terminate with return code (Return code = '0') |
