.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T21:55:52.675554175Z | 78 | PC: 12a4d | Find first file |
| 2018-12-17T21:55:52.683942319Z | 61 | PC: 12a57 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T21:55:52.690701284Z | 63 | PC: 12a62 | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T21:55:52.697302091Z | 62 | PC: 12a66 | Close file |
| 2018-12-17T21:55:52.699910273Z | 37 | PC: 12a77 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:55:52.701015711Z | 67 | PC: 12a7f | Get or set file attributes |
| 2018-12-17T21:55:52.706615413Z | 67 | PC: 12a87 | Get or set file attributes |
| 2018-12-17T21:55:52.723571324Z | 61 | PC: 12a8c | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T21:55:52.737836247Z | 44 | PC: 12a91 | Get time 0x12a91: mov word ptr [0x55f], dx 0x12a95: mov ah, 0x40 0x12a97: push ax 0x12a98: mov cx, 0x463 0x12a9b: push cx 0x12a9c: mov dx, 0x100 0x12a9f: jmp 0x12e81 0x12aa2: mov ax, 0x4301 0x12aa5: mov dx, 0x9e 0x12aa8: pop cx 0x12aa9: int 0x21 0x12aab: mov ah, 9 0x12aad: mov dx, 0x1f7 0x12ab0: int 0x21 0x12ab2: int 0x20 0x12ab4: mov ah, 0xf 0x12ab6: int 0x10 0x12ab8: xor ah, ah 0x12aba: int 0x10 0x12abc: mov ah, 1 |
| 2018-12-17T21:55:52.740658731Z | 64 | PC: 12e88 | Write file or device (Write 1123 bytes on handle 5) |
| 2018-12-17T21:55:52.751673485Z | 67 | PC: 12aab | Get or set file attributes |
| 2018-12-17T21:55:52.773651576Z | 9 | PC: 12ab2 | Display string (String= 'Bad command or file name ') |