.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:40:54.605465805Z | 26 | PC: 12a78 | Set disk transfer address |
| 2018-12-17T22:40:54.607530222Z | 78 | PC: 12aab | Find first file |
| 2018-12-17T22:40:54.614617227Z | 67 | PC: 12aba | Get or set file attributes |
| 2018-12-17T22:40:54.621480893Z | 67 | PC: 12aba | Get or set file attributes |
| 2018-12-17T22:40:54.642156475Z | 61 | PC: 12ae6 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:40:54.655596634Z | 63 | PC: 12af4 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:40:54.662858985Z | 66 | PC: 12a91 | Move file pointer |
| 2018-12-17T22:40:54.664342028Z | 44 | PC: 12b20 | Get time 0x12b20: not dl 0x12b22: mov byte ptr [bp + 0x426], dl 0x12b26: mov ah, 0x40 0x12b28: mov cx, 0x33c 0x12b2b: lea dx, word ptr [bp + 0x105] 0x12b2f: push ax 0x12b30: push cx 0x12b31: push dx 0x12b32: jmp 0x12d7a 0x12b35: pop ax 0x12b36: sub ax, 3 0x12b39: mov word ptr [bp + 0x3ea], ax 0x12b3d: mov al, 0 0x12b3f: call 0x22a89 0x12b42: mov ah, 0x40 0x12b44: mov cx, 5 0x12b47: lea dx, word ptr [bp + 0x3e9] 0x12b4b: int 0x21 0x12b4d: jae 0x12b56 0x12b4f: mov ah, 0x3e |
| 2018-12-17T22:40:54.667636731Z | 64 | PC: 12d82 | Write file or device (Write 828 bytes on handle 5) |
| 2018-12-17T22:40:54.67793297Z | 66 | PC: 12a91 | Move file pointer |
| 2018-12-17T22:40:54.679867836Z | 64 | PC: 12b4d | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:40:54.688101671Z | 87 | PC: 12b63 | Get or set file date and time |
| 2018-12-17T22:40:54.690246655Z | 62 | PC: 12b67 | Close file |
| 2018-12-17T22:40:54.699465407Z | 67 | PC: 12aba | Get or set file attributes |
| 2018-12-17T22:40:54.711568159Z | 11 | PC: 12a82 | Get input status |
| 2018-12-17T22:40:54.715372962Z | 26 | PC: 12b7a | Set disk transfer address |