.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:46:20.82021125Z | 78 | PC: 12c12 | Find first file |
| 2018-12-17T22:46:20.828191866Z | 47 | PC: 12c1f | Get disk transfer address |
| 2018-12-17T22:46:20.829716848Z | 61 | PC: 12c2b | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:46:20.837081659Z | 63 | PC: 12c3b | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:46:20.844724502Z | 66 | PC: 12c4e | Move file pointer |
| 2018-12-17T22:46:20.84704358Z | 44 | PC: 22865 | Get time 0x22865: mov word ptr cs:[bp + 0x119], dx 0x2286a: mov cx, 0xd9 0x2286d: lea si, word ptr [bp + 0x121] 0x22871: xor word ptr [si], dx 0x22873: inc si 0x22874: inc si 0x22875: loop 0x22871 0x22877: mov ah, 0x40 0x22879: mov cx, 0xfe 0x2287c: lea dx, word ptr [bp + 0x100] 0x22880: int 0x21 0x22882: mov ax, 0x4200 0x22885: xor cx, cx 0x22887: xor dx, dx 0x22889: int 0x21 0x2288b: mov ah, 0x40 0x2288d: mov dx, 0xff7a 0x22890: mov cx, 4 0x22893: int 0x21 0x22895: push cs |
| 2018-12-17T22:46:20.849935083Z | 64 | PC: 22882 | Write file or device (Write 254 bytes on handle 5) |
| 2018-12-17T22:46:20.864080066Z | 66 | PC: 2288b | Move file pointer |
| 2018-12-17T22:46:20.866085778Z | 64 | PC: 22895 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:46:20.873761431Z | 64 | PC: 12b18 | Write file or device (Write 44 bytes on handle 1) |
| 2018-12-17T22:46:20.877520452Z | 64 | PC: 12b25 | Write file or device (Write 20 bytes on handle 1) |
| 2018-12-17T22:46:20.882737089Z | 64 | PC: 12b44 | Write file or device (Write 23 bytes on handle 1) |
| 2018-12-17T22:46:20.88868317Z | 76 | PC: 12b4b | Terminate with return code (Return code = '0') |