.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:05:00.799685672Z | 24 | PC: 12c34 | Reserved |
| 2018-12-17T23:05:00.808268011Z | 53 | PC: 12f50 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:05:00.810536338Z | 74 | PC: 12e44 | Reallocate memory |
| 2018-12-17T23:05:00.812529982Z | 88 | PC: 1301b | case 0xGet or set allocation strateg: |
| 2018-12-17T23:05:00.814357014Z | 72 | PC: 13028 | Allocate memory |
| 2018-12-17T23:05:00.817867797Z | 53 | PC: 12f50 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T23:05:00.8196436Z | 53 | PC: 12f50 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:05:00.821432261Z | 37 | PC: 12f55 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:05:00.824288185Z | 37 | PC: 12f55 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T23:05:00.8260574Z | 74 | PC: 1309f | Reallocate memory |
| 2018-12-17T23:05:00.827772399Z | 88 | PC: 130a9 | case 0xGet or set allocation strateg: |
| 2018-12-17T23:05:00.830031671Z | 47 | PC: 130be | Get disk transfer address |
| 2018-12-17T23:05:00.831740001Z | 26 | PC: 130d0 | Set disk transfer address |
| 2018-12-17T23:05:00.83329645Z | 71 | PC: 130da | Get current directory |
| 2018-12-17T23:05:00.837196007Z | 53 | PC: 12f50 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:05:00.839751942Z | 37 | PC: 12f55 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:05:00.841556171Z | 67 | PC: 12f63 | Get or set file attributes |
| 2018-12-17T23:05:01.18226573Z | 61 | PC: 13132 | Open file (Filename = 'C:\COMMAND.COM') |
| 2018-12-17T23:05:01.191124057Z | 63 | PC: 12f40 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T23:05:01.194530154Z | 66 | PC: 12f4b | Move file pointer |
| 2018-12-17T23:05:01.196523979Z | 63 | PC: 12f40 | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T23:05:01.205596761Z | 66 | PC: 12f2c | Move file pointer |
| 2018-12-17T23:05:01.207636729Z | 66 | PC: 12f2c | Move file pointer |
| 2018-12-17T23:05:01.209741996Z | 74 | PC: 12e44 | Reallocate memory |
| 2018-12-17T23:05:01.215270544Z | 72 | PC: 12e5b | Allocate memory |
| 2018-12-17T23:05:01.217426562Z | 64 | PC: 12eb5 | Write file or device (Write 2193 bytes on handle 5) |
| 2018-12-17T23:05:01.22879513Z | 73 | PC: 12ec2 | Release memory |
| 2018-12-17T23:05:01.231349308Z | 74 | PC: 12ed0 | Reallocate memory |
| 2018-12-17T23:05:01.233275887Z | 66 | PC: 1321f | Move file pointer |
| 2018-12-17T23:05:01.237947834Z | 64 | PC: 12f36 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:05:01.241778898Z | 78 | PC: 13415 | Find first file |
| 2018-12-17T23:05:01.248540843Z | 78 | PC: 13415 | Find first file |
| 2018-12-17T23:05:01.255254177Z | 78 | PC: 13415 | Find first file |
| 2018-12-17T23:05:01.261865612Z | 78 | PC: 13415 | Find first file |
| 2018-12-17T23:05:01.266077522Z | 78 | PC: 13415 | Find first file |
| 2018-12-17T23:05:01.270087203Z | 62 | PC: 13436 | Close file |
| 2018-12-17T23:05:01.276703404Z | 59 | PC: 12f5a | Change current directory |
| 2018-12-17T23:05:01.282338229Z | 59 | PC: 12f5a | Change current directory |
| 2018-12-17T23:05:01.285310914Z | 37 | PC: 12f55 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:05:01.2870937Z | 26 | PC: 1346b | Set disk transfer address |
| 2018-12-17T23:05:01.28989683Z | 9 | PC: 12a82 | Display string (String= 'Goat file (EXE). Size=000003E8h/0000001000d bytes. ') |
| 2018-12-17T23:05:01.295102693Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |