.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:45:36.041449104Z | 37 | PC: 13af0 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:36.043411843Z | 71 | PC: 13afb | Get current directory |
| 2018-12-17T22:45:36.04781544Z | 26 | PC: 13b4d | Set disk transfer address |
| 2018-12-17T22:45:36.04939466Z | 78 | PC: 13b59 | Find first file |
| 2018-12-17T22:45:36.076427919Z | 67 | PC: 13c53 | Get or set file attributes |
| 2018-12-17T22:45:36.085478597Z | 67 | PC: 13c53 | Get or set file attributes |
| 2018-12-17T22:45:36.112932687Z | 61 | PC: 13b76 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:45:36.124288175Z | 66 | PC: 13b83 | Move file pointer |
| 2018-12-17T22:45:36.126888582Z | 63 | PC: 13c53 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:45:36.13414684Z | 87 | PC: 13bac | Get or set file date and time |
| 2018-12-17T22:45:36.135760781Z | 66 | PC: 13bb7 | Move file pointer |
| 2018-12-17T22:45:36.138727274Z | 63 | PC: 13c53 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:45:36.147158016Z | 44 | PC: 13c22 | Get time 0x13c22: xor ch, dh 0x13c24: mov word ptr [si + 0x1e], cx 0x13c27: xor byte ptr [si + 0x17], cl 0x13c2a: xor word ptr [si + 0x18], cx 0x13c2d: ret 0x13c2e: mov cx, word ptr [si + 0x1e] 0x13c31: jmp 0x13c27 0x13c33: mov ah, 0x3e 0x13c35: int 0x21 0x13c37: mov al, 1 0x13c39: mov ah, 0x43 0x13c3b: mov dx, 0x2ea 0x13c3e: jmp 0x13c4f 0x13c40: mov ah, 0x3f 0x13c42: mov cx, 3 0x13c45: mov dx, 0x17 0x13c48: jmp 0x13c4f 0x13c4a: mov ah, 0x3b 0x13c4c: mov dx, 0xb 0x13c4f: add dx, si |
| 2018-12-17T22:45:36.150228802Z | 66 | PC: 13bc6 | Move file pointer |
| 2018-12-17T22:45:36.152750568Z | 64 | PC: 13bd2 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:45:36.156934036Z | 66 | PC: 13bdb | Move file pointer |
| 2018-12-17T22:45:36.16001912Z | 64 | PC: 13be4 | Write file or device (Write 524 bytes on handle 5) |
| 2018-12-17T22:45:36.169381356Z | 87 | PC: 13beb | Get or set file date and time |
| 2018-12-17T22:45:36.172586831Z | 62 | PC: 13c37 | Close file |
| 2018-12-17T22:45:36.181153791Z | 67 | PC: 13c53 | Get or set file attributes |
| 2018-12-17T22:45:36.192403154Z | 59 | PC: 13c53 | Change current directory |
| 2018-12-17T22:45:36.197967888Z | 59 | PC: 13bfb | Change current directory |
| 2018-12-17T22:45:36.200249853Z | 26 | PC: 13c02 | Set disk transfer address |
| 2018-12-17T22:45:36.201740666Z | 37 | PC: 13c0b | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:36.210628159Z | 76 | PC: 12a6e | Terminate with return code (Return code = '0') |