.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:47:32.448294267Z | 25 | PC: 13ea3 | Get default drive |
| 2018-12-17T22:47:32.450621319Z | 14 | PC: 13eaa | Set default drive (Drive = 'A') |
| 2018-12-17T22:47:32.453301305Z | 26 | PC: 13ec6 | Set disk transfer address |
| 2018-12-17T22:47:32.454884719Z | 14 | PC: 13eee | Set default drive (Drive = 'A') |
| 2018-12-17T22:47:32.793693937Z | 78 | PC: 13f24 | Find first file |
| 2018-12-17T22:47:32.801781Z | 67 | PC: 13f50 | Get or set file attributes |
| 2018-12-17T22:47:32.813131705Z | 61 | PC: 13f57 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:47:32.820728848Z | 63 | PC: 13f66 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:32.828649118Z | 66 | PC: 13f86 | Move file pointer |
| 2018-12-17T22:47:32.830464769Z | 64 | PC: 13f93 | Write file or device (Write 407 bytes on handle 5) |
| 2018-12-17T22:47:32.83913093Z | 66 | PC: 13fac | Move file pointer |
| 2018-12-17T22:47:32.84344745Z | 64 | PC: 13fb7 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:32.855554305Z | 87 | PC: 13fc3 | Get or set file date and time |
| 2018-12-17T22:47:32.857846141Z | 62 | PC: 13fc7 | Close file |
| 2018-12-17T22:47:32.867650179Z | 67 | PC: 13fd5 | Get or set file attributes |
| 2018-12-17T22:47:32.879457783Z | 14 | PC: 13eee | Set default drive (Drive = 'A') |
| 2018-12-17T22:47:32.887699487Z | 78 | PC: 13f24 | Find first file |
| 2018-12-17T22:47:32.894958785Z | 67 | PC: 13f50 | Get or set file attributes |
| 2018-12-17T22:47:32.906230521Z | 61 | PC: 13f57 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:47:32.914255267Z | 63 | PC: 13f66 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:32.917411818Z | 87 | PC: 13fc3 | Get or set file date and time |
| 2018-12-17T22:47:32.920724331Z | 62 | PC: 13fc7 | Close file |
| 2018-12-17T22:47:32.928524646Z | 67 | PC: 13fd5 | Get or set file attributes |
| 2018-12-17T22:47:32.939666589Z | 79 | PC: 13f24 | Find next file |
| 2018-12-17T22:47:32.943889152Z | 67 | PC: 13f50 | Get or set file attributes |
| 2018-12-17T22:47:32.954575077Z | 61 | PC: 13f57 | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:47:32.962152143Z | 63 | PC: 13f66 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:32.969800451Z | 66 | PC: 13f86 | Move file pointer |
| 2018-12-17T22:47:32.971825676Z | 64 | PC: 13f93 | Write file or device (Write 407 bytes on handle 5) |
| 2018-12-17T22:47:32.976630995Z | 66 | PC: 13fac | Move file pointer |
| 2018-12-17T22:47:32.979443699Z | 64 | PC: 13fb7 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:32.982651976Z | 87 | PC: 13fc3 | Get or set file date and time |
| 2018-12-17T22:47:32.984807155Z | 62 | PC: 13fc7 | Close file |
| 2018-12-17T22:47:32.994498973Z | 67 | PC: 13fd5 | Get or set file attributes |
| 2018-12-17T22:47:33.012629675Z | 14 | PC: 13ed9 | Set default drive (Drive = 'A') |
| 2018-12-17T22:47:33.014503606Z | 26 | PC: 13ee0 | Set disk transfer address |
| 2018-12-17T22:47:33.016650249Z | 9 | PC: 12a85 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ') |
| 2018-12-17T22:47:33.023024655Z | 0 | PC: 12a89 | Program terminate |