.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T23:10:17.066319391Z | 11 | PC: 13a50 | Get input status |
| 2018-12-17T23:10:17.069520707Z | 42 | PC: 13326 | Get date 0x13326: sub cx, word ptr [0x291]
0x1332a: jg 0x13341
0x1332c: jl 0x1333c
0x1332e: sub dh, byte ptr [0x293]
0x13332: jg 0x1334b
0x13334: jl 0x1333c
0x13336: sub dl, byte ptr [0x294]
0x1333a: ja 0x1335d
0x1333c: mov cx, 0
0x1333f: jmp 0x13374
0x13341: sub dh, byte ptr [0x293]
0x13345: jae 0x1334b
0x13347: add dh, 0xc
0x1334a: dec cx
0x1334b: sub dl, byte ptr [0x294]
0x1334f: jae 0x1335d
0x13351: add dl, 0x1e
0x13354: sub dh, 1
0x13357: jae 0x1335d
0x13359: add dh, 0xc
|
| 2018-12-17T23:10:17.071623961Z | 44 | PC: 131d0 | Get time 0x131d0: mov dh, 0
0x131d2: add dx, 0x78
0x131d5: mov word ptr [0x284], dx
0x131d9: mov ax, 0x3508
0x131dc: int 0x21
0x131de: mov word ptr [0x1a7], bx
0x131e2: mov bx, es
0x131e4: mov word ptr [0x1a9], bx
0x131e8: push cs
0x131e9: pop es
0x131ea: mov ax, 0x2508
0x131ed: lea dx, word ptr [0x2ac]
0x131f1: int 0x21
0x131f3: mov ax, 0x3521
0x131f6: int 0x21
0x131f8: mov word ptr [0x1ab], bx
0x131fc: mov bx, es
0x131fe: mov word ptr [0x1ad], bx
0x13202: push cs
0x13203: pop es
|
| 2018-12-17T23:10:17.073630908Z | 53 | PC: 131de | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-17T23:10:17.081254226Z | 37 | PC: 131f3 | Set interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-17T23:10:17.08234682Z | 53 | PC: 131f8 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:10:17.083379409Z | 37 | PC: 1320d | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:10:17.084933747Z | 74 | PC: 13237 | Reallocate memory |
| 2018-12-17T23:10:17.113632792Z | 67 | PC: 12e9a | Get or set file attributes |
| 2018-12-17T23:10:17.119416517Z | 67 | PC: 12eb2 | Get or set file attributes |
| 2018-12-17T23:10:17.129544091Z | 65 | PC: 12f11 | Delete file (Filename = 'A:\CHKLIST.CPS') |
| 2018-12-17T23:10:17.135542396Z | 65 | PC: 12f2d | Delete file (Filename = 'A:\CHKLIST.MS') |
| 2018-12-17T23:10:17.141301286Z | 86 | PC: 12f64 | Rename file |
| 2018-12-17T23:10:17.177284769Z | 61 | PC: 12f70 | Open file (Filename = 'A:\TEST.TXT') |
| 2018-12-17T23:10:17.184198806Z | 66 | PC: 12f85 | Move file pointer |
| 2018-12-17T23:10:17.185923385Z | 66 | PC: 12fa8 | Move file pointer |
| 2018-12-17T23:10:17.187463943Z | 63 | PC: 12fba | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-17T23:10:17.195910597Z | 62 | PC: 13181 | Close file |
| 2018-12-17T23:10:17.198589898Z | 86 | PC: 13190 | Rename file |
| 2018-12-17T23:10:17.209909529Z | 67 | PC: 131a0 | Get or set file attributes |
| 2018-12-17T23:10:17.220655209Z | 75 | PC: 13290 | Execute program |
| 2018-12-17T23:10:17.25884736Z | 9 | PC: 13936 | Display string (String= 'Goat file (COM/....). Size=00001004h/0000004100d bytes.
') |
| 2018-12-17T23:10:17.26418506Z | 48 | PC: 1393f | Get DOS version |
| 2018-12-17T23:10:17.266813371Z | 61 | PC: 13a0c | Open file (Filename = '�') |
| 2018-12-17T23:10:17.273979113Z | 93 | PC: 139ae | File sharing functions |
| 2018-12-17T23:10:17.276462762Z | 9 | PC: 13936 | Display string (String= 'Size change=0943h/02371d.
') |
| 2018-12-17T23:10:17.281619078Z | 76 | PC: 13993 | Terminate with return code (Return code = '1') |
| 2018-12-17T23:10:17.308714507Z | 73 | PC: 1329e | Release memory |
| 2018-12-17T23:10:17.310120676Z | 77 | PC: 132a3 | Get program return code |
| 2018-12-17T23:10:17.312242319Z | 49 | PC: 132b4 | Terminate and stay resident (Return code = '1' | Memory size = '229') |
