.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:09:19.473764738Z | 74 | PC: 12b5b | Reallocate memory |
| 2018-12-17T23:09:19.476527561Z | 72 | PC: 12b62 | Allocate memory |
| 2018-12-17T23:09:19.478374121Z | 65 | PC: 13484 | Delete file (Filename = 'f-prot.exe') |
| 2018-12-17T23:09:19.483562002Z | 65 | PC: 1348b | Delete file (Filename = 'chklist.cps') |
| 2018-12-17T23:09:19.489105059Z | 44 | PC: 1348f | Get time 0x1348f: mov byte ptr cs:[0x57], cl 0x13494: cmp cl, 0x15 0x13497: jne 0x134cc 0x13499: mov dl, 0x80 0x1349b: mov dh, 0 0x1349d: mov ch, 0 0x1349f: mov cl, 1 0x134a1: mov al, 9 0x134a3: mov ah, 3 0x134a5: int 0x13 0x134a7: mov dl, 0x80 0x134a9: mov dh, 1 0x134ab: mov ch, 0 0x134ad: mov cl, 1 0x134af: mov al, 9 0x134b1: mov ah, 3 0x134b3: int 0x13 0x134b5: mov dx, 0x37d 0x134b8: mov ah, 9 0x134ba: int 0x21 |
| 2018-12-17T23:09:19.493081352Z | 72 | PC: 13282 | Allocate memory |
| 2018-12-17T23:09:19.495332113Z | 75 | PC: 132bd | Execute program |
| 2018-12-17T23:09:19.510887338Z | 76 | PC: 138d4 | Terminate with return code (Return code = '0') |
| 2018-12-17T23:09:19.513834667Z | 53 | PC: 132d1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:09:19.515021598Z | 37 | PC: 132e8 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:09:19.51633165Z | 77 | PC: 132ec | Get program return code |
| 2018-12-17T23:09:19.519155618Z | 49 | PC: 132f3 | Terminate and stay resident (Return code = '0' | Memory size = '96') |