.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:35:36.346037224Z | 25 | PC: 12c6d | Get default drive |
| 2018-12-17T22:35:36.347116448Z | 71 | PC: 12c7e | Get current directory |
| 2018-12-17T22:35:36.350046844Z | 26 | PC: 12c85 | Set disk transfer address |
| 2018-12-17T22:35:36.351043413Z | 14 | PC: 12a49 | Set default drive (Drive = 'C') |
| 2018-12-17T22:35:36.352202597Z | 14 | PC: 12a79 | Set default drive (Drive = 'D') |
| 2018-12-17T22:35:36.35381979Z | 59 | PC: 12a80 | Change current directory |
| 2018-12-17T22:35:36.356495178Z | 78 | PC: 12ad4 | Find first file |
| 2018-12-17T22:35:36.360749166Z | 67 | PC: 12ae8 | Get or set file attributes |
| 2018-12-17T22:35:36.368160305Z | 67 | PC: 12af2 | Get or set file attributes |
| 2018-12-17T22:35:36.7106402Z | 61 | PC: 12afd | Open file (Filename = 'COMMAND.COM') |
| 2018-12-17T22:35:36.717484677Z | 66 | PC: 12b10 | Move file pointer |
| 2018-12-17T22:35:36.71986997Z | 87 | PC: 12b1d | Get or set file date and time |
| 2018-12-17T22:35:36.721730439Z | 66 | PC: 12b35 | Move file pointer |
| 2018-12-17T22:35:36.723727455Z | 63 | PC: 12b4b | Read file or device (Read 54645 bytes on handle 5) |
| 2018-12-17T22:35:36.740142891Z | 66 | PC: 12b67 | Move file pointer |
| 2018-12-17T22:35:36.742615037Z | 64 | PC: 12b79 | Write file or device (Write 601 bytes on handle 5) |
| 2018-12-17T22:35:36.750590705Z | 64 | PC: 12b92 | Write file or device (Write 54645 bytes on handle 5) |
| 2018-12-17T22:35:36.781203909Z | 87 | PC: 12ba2 | Get or set file date and time |
| 2018-12-17T22:35:36.784491795Z | 62 | PC: 12baa | Close file |
| 2018-12-17T22:35:36.790090115Z | 59 | PC: 12bb1 | Change current directory |
| 2018-12-17T22:35:36.793023156Z | 14 | PC: 12bba | Set default drive (Drive = 'A') |
| 2018-12-17T22:35:36.796767157Z | 59 | PC: 12bc1 | Change current directory |
| 2018-12-17T22:35:36.800404018Z | 44 | PC: 12bc5 | Get time 0x12bc5: cmp dl, 0x14 0x12bc8: jg 0x12bed 0x12bca: mov ah, 3 0x12bcc: mov bh, 0 0x12bce: int 0x10 0x12bd0: push dx 0x12bd1: mov bh, 0 0x12bd3: mov ah, 2 0x12bd5: mov dh, 0xc 0x12bd7: mov dl, 0x23 0x12bd9: int 0x10 0x12bdb: mov dx, 0x2bb 0x12bde: mov ah, 9 0x12be0: int 0x21 0x12be2: mov bh, 0 0x12be4: mov ah, 2 0x12be6: pop dx 0x12be7: int 0x10 0x12be9: mov ah, 8 0x12beb: int 0x21 |