.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:49:10.503135851Z | 37 | PC: 12aee | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:49:10.509608427Z | 71 | PC: 12b00 | Get current directory |
| 2018-12-17T22:49:10.518570231Z | 26 | PC: 12b52 | Set disk transfer address |
| 2018-12-17T22:49:10.519721626Z | 78 | PC: 12b5e | Find first file |
| 2018-12-17T22:49:10.526379251Z | 67 | PC: 12c98 | Get or set file attributes |
| 2018-12-17T22:49:10.533270966Z | 67 | PC: 12c98 | Get or set file attributes |
| 2018-12-17T22:49:10.550871042Z | 61 | PC: 12b7b | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:49:10.55891222Z | 66 | PC: 12b88 | Move file pointer |
| 2018-12-17T22:49:10.56110709Z | 63 | PC: 12c98 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:49:10.568099262Z | 87 | PC: 12bbe | Get or set file date and time |
| 2018-12-17T22:49:10.569479311Z | 66 | PC: 12bc9 | Move file pointer |
| 2018-12-17T22:49:10.57146338Z | 63 | PC: 12c98 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:49:10.574156127Z | 44 | PC: 12c67 | Get time 0x12c67: xor ch, dh 0x12c69: mov word ptr [si + 0x15], cx 0x12c6c: xor byte ptr [si + 0xe], cl 0x12c6f: xor word ptr [si + 0xf], cx 0x12c72: ret 0x12c73: mov cx, word ptr [si + 0x15] 0x12c76: jmp 0x12c6c 0x12c78: mov ah, 0x3e 0x12c7a: int 0x21 0x12c7c: mov al, 1 0x12c7e: mov ah, 0x43 0x12c80: mov dx, 0x2d8 0x12c83: jmp 0x12c94 0x12c85: mov ah, 0x3f 0x12c87: mov cx, 3 0x12c8a: mov dx, 0xe 0x12c8d: jmp 0x12c94 0x12c8f: mov ah, 0x3b 0x12c91: mov dx, 2 0x12c94: add dx, si |
| 2018-12-17T22:49:10.576439363Z | 66 | PC: 12bd8 | Move file pointer |
| 2018-12-17T22:49:10.578753683Z | 64 | PC: 12be4 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:49:10.581578665Z | 66 | PC: 12bed | Move file pointer |
| 2018-12-17T22:49:10.583284392Z | 64 | PC: 12c20 | Write file or device (Write 19 bytes on handle 5) |
| 2018-12-17T22:49:10.586070239Z | 64 | PC: 12c2c | Write file or device (Write 506 bytes on handle 5) |
| 2018-12-17T22:49:10.594809664Z | 87 | PC: 12c33 | Get or set file date and time |
| 2018-12-17T22:49:10.596395916Z | 62 | PC: 12c7c | Close file |
| 2018-12-17T22:49:10.604606018Z | 67 | PC: 12c98 | Get or set file attributes |
| 2018-12-17T22:49:10.615612042Z | 59 | PC: 12c98 | Change current directory |
| 2018-12-17T22:49:10.620700342Z | 59 | PC: 12c43 | Change current directory |
| 2018-12-17T22:49:10.622548691Z | 26 | PC: 12c4a | Set disk transfer address |
| 2018-12-17T22:49:10.624061085Z | 37 | PC: 12c53 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:49:10.625613422Z | 9 | PC: 12aa2 | Display string (String= 'Hello - This is a 100 COM test file, 1993 ') |