.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:57:39.862475929Z | 167 | PC: 12fa8 | UNKNOWN! |
| 2018-12-17T22:57:39.864060464Z | 53 | PC: 12fb6 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:57:39.865590817Z | 54 | PC: 9f824 | Get free disk space |
| 2018-12-17T22:57:39.903028626Z | 53 | PC: 9f847 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:57:39.906714937Z | 67 | PC: 9f888 | Get or set file attributes |
| 2018-12-17T22:57:39.914800822Z | 67 | PC: 9f894 | Get or set file attributes |
| 2018-12-17T22:57:40.250362731Z | 61 | PC: 9f89e | Open file (Filename = '�S�') |
| 2018-12-17T22:57:40.257812581Z | 87 | PC: 9f8ae | Get or set file date and time |
| 2018-12-17T22:57:40.259602891Z | 66 | PC: 9f8c3 | Move file pointer |
| 2018-12-17T22:57:40.261306336Z | 63 | PC: 9f8d2 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:57:40.267137281Z | 66 | PC: 9f8fa | Move file pointer |
| 2018-12-17T22:57:40.269288746Z | 63 | PC: 9f919 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:57:40.273571432Z | 66 | PC: 9f933 | Move file pointer |
| 2018-12-17T22:57:40.275345244Z | 64 | PC: 9f94b | Write file or device (Write 1292 bytes on handle 5) |
| 2018-12-17T22:57:40.285130768Z | 66 | PC: 9f95f | Move file pointer |
| 2018-12-17T22:57:40.29059708Z | 64 | PC: 9f96e | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:57:40.293299104Z | 87 | PC: 9faac | Get or set file date and time |
| 2018-12-17T22:57:40.306463368Z | 62 | PC: 9fab0 | Close file |
| 2018-12-17T22:57:40.315248052Z | 67 | PC: 9fabf | Get or set file attributes |
| 2018-12-17T22:57:40.324114763Z | 42 | PC: 13030 | Get date 0x13030: cmp dx, 0xc9 0x13034: jb 0x13050 0x13036: mov bl, byte ptr cs:[bp + 0x4f] 0x1303a: nop 0x1303b: mov cx, 0x2a 0x1303e: lea di, word ptr [bp + 0x50] 0x13041: nop 0x13042: xor byte ptr cs:[di], bl 0x13045: inc di 0x13046: loop 0x13042 0x13048: mov ah, 9 0x1304a: lea dx, word ptr [bp + 0x50] 0x1304d: nop 0x1304e: int 0x21 0x13050: cmp byte ptr cs:[bp + 0x1c], 1 0x13055: nop 0x13056: je 0x13075 0x13058: mov ax, cs 0x1305a: mov ds, ax 0x1305c: mov es, ax |
| 2018-12-17T22:57:40.327320345Z | 9 | PC: 13050 | Display string (Could not find end pointer) |
| 2018-12-17T22:57:40.332494088Z | 9 | PC: 12a82 | Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ') |
| 2018-12-17T22:57:40.338161104Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |