.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T21:58:40.613093414Z | 26 | PC: 12a73 | Set disk transfer address |
| 2018-12-17T21:58:40.635095499Z | 78 | PC: 12a82 | Find first file |
| 2018-12-17T21:58:40.64126724Z | 61 | PC: 12a8f | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T21:58:40.647700533Z | 63 | PC: 12aa1 | Read file or device (Read 26 bytes on handle 5) |
| 2018-12-17T21:58:40.654948726Z | 62 | PC: 12ac1 | Close file |
| 2018-12-17T21:58:40.656879323Z | 67 | PC: 12ad0 | Get or set file attributes |
| 2018-12-17T21:58:40.672251358Z | 67 | PC: 12ad0 | Get or set file attributes |
| 2018-12-17T21:58:40.682128564Z | 61 | PC: 12a8f | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T21:58:40.688573916Z | 64 | PC: 12b18 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T21:58:40.691243072Z | 66 | PC: 12b20 | Move file pointer |
| 2018-12-17T21:58:40.692968658Z | 44 | PC: 12b24 | Get time 0x12b24: or dx, dx 0x12b26: je 0x12b20 0x12b28: mov word ptr [bp + 0x10b], cx 0x12b2c: lea di, word ptr [bp + 0x252] 0x12b30: mov ax, 0x5355 0x12b33: stosw word ptr es:[di], ax 0x12b34: lea si, word ptr [bp + 0x103] 0x12b38: mov cx, 0xf 0x12b3b: push si 0x12b3c: push cx 0x12b3d: rep movsb byte ptr es:[di], byte ptr [si] 0x12b3f: xor byte ptr [bp + 0x10a], 0x28 0x12b44: lea si, word ptr [bp + 0x243] 0x12b48: mov cx, 0xf 0x12b4b: rep movsb byte ptr es:[di], byte ptr [si] 0x12b4d: pop cx 0x12b4e: pop si 0x12b4f: pop dx 0x12b50: push di 0x12b51: push si |
| 2018-12-17T21:58:40.696790704Z | 64 | PC: 12bb0 | Write file or device (Write 335 bytes on handle 5) |
| 2018-12-17T21:58:40.705054493Z | 87 | PC: 12b78 | Get or set file date and time |
| 2018-12-17T21:58:40.707543027Z | 62 | PC: 12ac1 | Close file |
| 2018-12-17T21:58:40.716031629Z | 67 | PC: 12ad0 | Get or set file attributes |
| 2018-12-17T21:58:41.011459266Z | 26 | PC: 12b82 | Set disk transfer address |