.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:07:30.350261037Z | 44 | PC: 145e8 | Get time 0x145e8: ret 0x145e9: add byte ptr [di], al 0x145eb: add byte ptr [si + 0x10], bh 0x145ee: sbb al, 1 0x145f0: push ss 0x145f1: adc bl, byte ptr [bp + 0x59] 0x145f4: push ds 0x145f5: xor dh, byte ptr [bx] 0x145f7: jae 0x1460b 0x145fa: sub dh, byte ptr [bp + di + 0x1e] 0x145fd: sbb al, 5 0x145ff: jnp 0x1461f 0x14601: xor ah, byte ptr [bx + si] 0x14603: daa 0x14604: and word ptr ss:[bp + di + 0x1c], si 0x14608: xor ax, 0x573 0x1460b: cmp ah, byte ptr [bx + di] 0x1460d: and byte ptr es:[bp + si + 0x5e], bh 0x14611: pop cx 0x14612: or byte ptr [di], bl |
| 2018-12-17T23:07:30.353616304Z | 78 | PC: 145e8 | Find first file |
| 2018-12-17T23:07:30.360693498Z | 48 | PC: 13ed3 | Get DOS version |
| 2018-12-17T23:07:30.362359059Z | 53 | PC: 145e8 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:07:30.364542663Z | 9 | PC: 12a85 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ') |
| 2018-12-17T23:07:30.370966408Z | 0 | PC: 12a89 | Program terminate |