.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:00:28.168064686Z | 42 | PC: 1409d | Get date 0x1409d: pop si 0x1409e: sub si, 0x107 0x140a2: cmp dx, 0x618 0x140a6: je 0x14110 0x140a8: mov ax, 0x20aa 0x140ab: int 0x21 0x140ad: mov ds, bx 0x140af: les ax, ptr [bx + 0x84] 0x140b3: push cs 0x140b4: pop ds 0x140b5: mov word ptr [si + 0x1b8], ax 0x140b9: mov word ptr [si + 0x1ba], es 0x140bd: push cs 0x140be: pop es 0x140bf: mov cx, 0x34 0x140c2: mov ah, 0x49 0x140c4: int 0x21 0x140c6: dec bx 0x140c7: mov ah, 0x48 0x140c9: int 0x21 |
| 2018-12-17T23:00:28.171303411Z | 32 | PC: 140ad | Reserved |
| 2018-12-17T23:00:28.184299355Z | 73 | PC: 140c6 | Release memory |
| 2018-12-17T23:00:28.185918382Z | 72 | PC: 140cb | Allocate memory |
| 2018-12-17T23:00:28.188211299Z | 74 | PC: 140d6 | Reallocate memory |
| 2018-12-17T23:00:28.19390799Z | 74 | PC: 140e0 | Reallocate memory |
| 2018-12-17T23:00:28.195659394Z | 38 | PC: 140f0 | Create PSP |
| 2018-12-17T23:00:28.197590477Z | 42 | PC: 13e4d | Get date 0x13e4d: pop si 0x13e4e: sub si, 0x107 0x13e52: cmp dx, 0x618 0x13e56: je 0x13ec0 0x13e58: mov ax, 0x20aa 0x13e5b: int 0x21 0x13e5d: mov ds, bx 0x13e5f: les ax, ptr [bx + 0x84] 0x13e63: push cs 0x13e64: pop ds 0x13e65: mov word ptr [si + 0x1b8], ax 0x13e69: mov word ptr [si + 0x1ba], es 0x13e6d: push cs 0x13e6e: pop es 0x13e6f: mov cx, 0x34 0x13e72: mov ah, 0x49 0x13e74: int 0x21 0x13e76: dec bx 0x13e77: mov ah, 0x48 0x13e79: int 0x21 |
| 2018-12-17T23:00:28.201075389Z | 9 | PC: 12a85 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ') |
| 2018-12-17T23:00:28.206632549Z | 0 | PC: 12a89 | Program terminate |