.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:00:02.88237157Z | 53 | PC: 12b70 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:00:02.884303744Z | 44 | PC: 12bb8 | Get time 0x12bb8: mov dh, 0 0x12bba: jmp 0x12bda 0x12bbc: nop 0x12bbd: mov ax, ds 0x12bbf: mov es, ax 0x12bc1: dec ax 0x12bc2: mov ds, ax 0x12bc4: mov bx, word ptr [3] 0x12bc8: sub bx, 0xe40 0x12bcc: mov cl, 4 0x12bce: rol dx, cl 0x12bd0: sub bx, dx 0x12bd2: ror dx, cl 0x12bd4: mov ah, 0x4a 0x12bd6: int 0x21 0x12bd8: jb 0x12c56 0x12bda: mov ah, 0x48 0x12bdc: mov bx, 0xca 0x12bdf: add bx, dx 0x12be1: int 0x21 |
| 2018-12-17T23:00:02.887703604Z | 72 | PC: 12be3 | Allocate memory |
| 2018-12-17T23:00:02.889518518Z | 74 | PC: 12bd8 | Reallocate memory |
| 2018-12-17T23:00:02.891328417Z | 72 | PC: 12be3 | Allocate memory |
| 2018-12-17T23:00:02.896553615Z | 82 | PC: 12bfd | Get DOS internal pointers (SYSVARS) |
| 2018-12-17T23:00:02.898395156Z | 44 | PC: 8def9 | Get time 0x8def9: mov ax, cs 0x8defb: mov dh, 0 0x8defd: sub ax, dx 0x8deff: mov ds, ax 0x8df01: mov ax, dx 0x8df03: mov bl, 0x10 0x8df05: mul bl 0x8df07: add ax, 0x281 0x8df0a: mov dx, ax 0x8df0c: pushf 0x8df0d: push cs 0x8df0e: mov ax, 0x20a 0x8df11: push ax 0x8df12: mov ax, 0x2521 0x8df15: ljmp ptr cs:[0xd5] 0x8df1a: mov si, 0 0x8df1d: mov bx, word ptr cs:[si + 0xdf] 0x8df22: mov word ptr cs:[si + 0x11e], bx 0x8df27: mov bx, word ptr cs:[si + 0xe1] 0x8df2c: mov word ptr cs:[si + 0x120], bx |
| 2018-12-17T23:00:02.900852905Z | 37 | PC: 8df1a | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:00:02.903030149Z | 76 | PC: 12a49 | Terminate with return code (Return code = '0') |