.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:47:55.851503816Z | 26 | PC: 12fa9 | Set disk transfer address |
| 2018-12-17T22:47:55.853635822Z | 78 | PC: 12fbe | Find first file |
| 2018-12-17T22:47:55.861563439Z | 67 | PC: 13033 | Get or set file attributes |
| 2018-12-17T22:47:55.868505363Z | 67 | PC: 1303f | Get or set file attributes |
| 2018-12-17T22:47:55.885581551Z | 61 | PC: 13044 | Open file (Filename = '\SLEEP.COM') |
| 2018-12-17T22:47:55.893502626Z | 63 | PC: 13052 | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-17T22:47:55.900611323Z | 44 | PC: 13056 | Get time 0x13056: add dl, dh 0x13058: add dl, cl 0x1305a: add dl, 1 0x1305d: mov byte ptr [si + 0x2d8], dl 0x13061: xor cx, cx 0x13063: xor dx, dx 0x13065: mov ax, 0x4200 0x13068: int 0x21 0x1306a: mov cx, 4 0x1306d: mov dx, si 0x1306f: add dx, 0x2d5 0x13073: mov ah, 0x40 0x13075: int 0x21 0x13077: jmp 0x1307d 0x1307a: jmp 0x130b0 0x1307d: mov al, byte ptr [si + 0x2d8] 0x13081: mov cx, 0x243 0x13084: push bx 0x13085: mov bx, cx 0x13087: add byte ptr [bx + si], al |
| 2018-12-17T22:47:55.902999781Z | 66 | PC: 1306a | Move file pointer |
| 2018-12-17T22:47:55.909607768Z | 64 | PC: 13077 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:47:55.912393102Z | 66 | PC: 13095 | Move file pointer |
| 2018-12-17T22:47:55.913900014Z | 64 | PC: 130a2 | Write file or device (Write 594 bytes on handle 5) |
| 2018-12-17T22:47:55.924107004Z | 64 | PC: 12e87 | Write file or device (Write 142 bytes on handle 5) |
| 2018-12-17T22:47:55.933000875Z | 87 | PC: 12e94 | Get or set file date and time |
| 2018-12-17T22:47:55.934898922Z | 62 | PC: 12e98 | Close file |
| 2018-12-17T22:47:55.943774961Z | 67 | PC: 12eb0 | Get or set file attributes |