.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:45:41.782884125Z | 44 | PC: 12c11 | Get time 0x12c11: mov byte ptr [0x103], dl 0x12c15: mov dx, 0x147 0x12c18: mov ah, 0x1a 0x12c1a: int 0x21 0x12c1c: mov cx, 7 0x12c1f: mov dx, 0x141 0x12c22: mov ah, 0x4e 0x12c24: int 0x21 0x12c26: cmp ax, 0x12 0x12c29: jne 0x12c52 0x12c2b: mov ah, 0x4f 0x12c2d: int 0x21 0x12c2f: cmp ax, 0x12 0x12c32: jne 0x12c3e 0x12c34: mov ah, 9 0x12c36: mov dx, 0x1c5 0x12c39: int 0x21 0x12c3b: jmp 0x12c4d 0x12c3d: nop 0x12c3e: call 0x12c52 |
| 2018-12-17T22:45:41.785882348Z | 26 | PC: 12c1c | Set disk transfer address |
| 2018-12-17T22:45:41.787123694Z | 78 | PC: 12c26 | Find first file |
| 2018-12-17T22:45:41.793089991Z | 47 | PC: 12c56 | Get disk transfer address |
| 2018-12-17T22:45:41.794501246Z | 67 | PC: 12c78 | Get or set file attributes |
| 2018-12-17T22:45:41.800096474Z | 67 | PC: 12c83 | Get or set file attributes |
| 2018-12-17T22:45:41.816180642Z | 61 | PC: 12c88 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:45:41.822740845Z | 63 | PC: 12c9b | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:45:41.830511743Z | 62 | PC: 12ca3 | Close file |
| 2018-12-17T22:45:41.832951874Z | 61 | PC: 12cc4 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:45:41.85397053Z | 64 | PC: 12a7b | Write file or device (Write 680 bytes on handle 5) |
| 2018-12-17T22:45:41.86296457Z | 87 | PC: 12cdb | Get or set file date and time |
| 2018-12-17T22:45:41.864629262Z | 67 | PC: 12ce7 | Get or set file attributes |