.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:59:43.544198788Z | 48 | PC: 12e7d | Get DOS version |
| 2018-12-17T22:59:43.545752932Z | 47 | PC: 12ebe | Get disk transfer address |
| 2018-12-17T22:59:43.54781698Z | 26 | PC: 12ecd | Set disk transfer address |
| 2018-12-17T22:59:43.549267321Z | 78 | PC: 12f54 | Find first file |
| 2018-12-17T22:59:43.557088242Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.560513309Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.563444957Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.566382252Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.569766059Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.572991067Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.576195271Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.579882906Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.582993321Z | 78 | PC: 12f54 | Find first file |
| 2018-12-17T22:59:43.603089676Z | 79 | PC: 12f5f | Find next file |
| 2018-12-17T22:59:43.60827348Z | 67 | PC: 12fb0 | Get or set file attributes |
| 2018-12-17T22:59:43.617516416Z | 67 | PC: 12fc0 | Get or set file attributes |
| 2018-12-17T22:59:43.969398951Z | 61 | PC: 12fca | Open file (Filename = 'C:\DOS\FORMAT.COM') |
| 2018-12-17T22:59:43.979853498Z | 87 | PC: 12fd9 | Get or set file date and time |
| 2018-12-17T22:59:43.98297456Z | 44 | PC: 12fe3 | Get time 0x12fe3: mov cx, 3 0x12fe6: mov ah, 0x3f 0x12fe8: mov dx, 0xa 0x12feb: add dx, si 0x12fed: push dx 0x12fee: int 0x21 0x12ff0: pop bp 0x12ff1: jb 0x13017 0x12ff3: cmp byte ptr [bp], 0x4d 0x12ff7: jne 0x13005 0x12ff9: cmp byte ptr [bp + 1], 0x5a 0x12ffd: je 0x13017 0x12fff: jmp 0x13005 0x13001: jmp 0x13053 0x13003: jmp 0x13051 0x13005: cmp ax, 3 0x13008: jne 0x13055 0x1300a: xor cx, cx 0x1300c: mov ax, 0x4202 0x1300f: xor dx, dx |
| 2018-12-17T22:59:43.986333333Z | 63 | PC: 12ff0 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:59:43.993261468Z | 66 | PC: 13013 | Move file pointer |
| 2018-12-17T22:59:43.996411768Z | 64 | PC: 1306c | Write file or device (Write 1544 bytes on handle 5) |
| 2018-12-17T22:59:44.005756847Z | 66 | PC: 1307c | Move file pointer |
| 2018-12-17T22:59:44.011597293Z | 64 | PC: 1308a | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:59:44.022212237Z | 87 | PC: 1309b | Get or set file date and time |
| 2018-12-17T22:59:44.024010318Z | 62 | PC: 1309f | Close file |
| 2018-12-17T22:59:44.033163249Z | 67 | PC: 130ac | Get or set file attributes |
| 2018-12-17T22:59:44.059150632Z | 26 | PC: 130b6 | Set disk transfer address |
| 2018-12-17T22:59:44.060915981Z | 22 | PC: 13137 | Create or truncate file |
| 2018-12-17T22:59:44.063712493Z | 9 | PC: 12a82 | Display string (String= 'Goat file (COM). Size=000003E8h/0000001000d bytes. ') |
| 2018-12-17T22:59:44.070034122Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |