{"DateBased":true,"Day":2,"Month":7,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:05.538394312Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:05.540700373Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:05.542963159Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.544392703Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.545911002Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:05.563735831Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.56536606Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.566753034Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:05.574983338Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.576207047Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:05.577797888Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:05.584596449Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:05.588170648Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:05.589351953Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.591126774Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.59228298Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.593679016Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.595506984Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.597867532Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.600638928Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |
{"DateBased":true,"Day":1,"Month":9,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:05.652029127Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:05.654635906Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:05.657444461Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.660240263Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.662829957Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:05.677857046Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.679060843Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.680606721Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:05.682816864Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.684020035Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:05.687516396Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:05.693033494Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:05.696509884Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:05.698010532Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.699510193Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.701127183Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.703317376Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.705577429Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.707383888Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.709595079Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |
{"DateBased":true,"Day":10,"Month":9,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:05.691207456Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:05.706609793Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:05.708304548Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.7101347Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.712431447Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:05.724983218Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.726419538Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.728918127Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:05.731042119Z | 47 | PC: 14ea9 | Get disk transfer address |
| 2018-12-25T11:51:05.732102302Z | 26 | PC: 14eb9 | Set disk transfer address |
| 2018-12-25T11:51:05.733238501Z | 78 | PC: 14ecb | Find first file |
| 2018-12-25T11:51:05.739210069Z | 79 | PC: 14ee7 | Find next file |
| 2018-12-25T11:51:05.74172168Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.744375049Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.747061436Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.749083523Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.751319857Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.755992388Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.758339166Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.760474018Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.762977098Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.765002656Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.78146732Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.795856716Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.800149458Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.803474095Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.808459219Z | 78 | PC: 14f1f | Find first file |
| 2018-12-25T11:51:05.814606509Z | 79 | PC: 14f2d | Find next file |
| 2018-12-25T11:51:05.817120643Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.82059378Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.823126513Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.826004603Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.829961646Z | 67 | PC: 14f9b | Get or set file attributes |
| 2018-12-25T11:51:05.836498412Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.83800837Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:05.84035768Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:05.844090718Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:05.846150705Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:05.847181692Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.84858609Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.849660645Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.85083269Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.852309497Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.853592386Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.855561043Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |
{"DateBased":true,"Day":1,"Month":11,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:05.73809386Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:05.740080606Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:05.742898439Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.74408594Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.766621571Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:05.782940175Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.784452021Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.790606285Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:05.793153986Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.794669673Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:05.796743891Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:05.806400909Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:05.810052079Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:05.811922852Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.813629377Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.815238657Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.817058556Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.819033678Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.820344141Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.821841106Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |
{"DateBased":true,"Day":21,"Month":11,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:05.808082392Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:05.810807695Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:05.812099101Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.812999314Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:05.8145475Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:05.829277167Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.830348663Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.831349515Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:05.836468639Z | 47 | PC: 14ea9 | Get disk transfer address |
| 2018-12-25T11:51:05.838399258Z | 26 | PC: 14eb9 | Set disk transfer address |
| 2018-12-25T11:51:05.839250726Z | 78 | PC: 14ecb | Find first file |
| 2018-12-25T11:51:05.849412662Z | 79 | PC: 14ee7 | Find next file |
| 2018-12-25T11:51:05.852782684Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.855502506Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.860169063Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.870464722Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.876345784Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.880251904Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.884088342Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.886703997Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.890018018Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.891859711Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.893581258Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.896462403Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.903930995Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.906483373Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:05.909803484Z | 78 | PC: 14f1f | Find first file |
| 2018-12-25T11:51:05.923598389Z | 79 | PC: 14f2d | Find next file |
| 2018-12-25T11:51:05.926851049Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.929844848Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.932983082Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.935834431Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.939682313Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:05.942578214Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:05.944071526Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:05.945821753Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:05.951460223Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:05.954357552Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:05.955393359Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.95676802Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.957834614Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.95907301Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:05.96099536Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.962095956Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:05.963492Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |
{"DateBased":true,"Day":1,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:06.164740397Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:06.167579342Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:06.169622125Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:06.171356808Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:06.173777453Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:06.199101665Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.21544518Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.218388284Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:06.222094724Z | 47 | PC: 14ea9 | Get disk transfer address |
| 2018-12-25T11:51:06.223825929Z | 26 | PC: 14eb9 | Set disk transfer address |
| 2018-12-25T11:51:06.225598083Z | 78 | PC: 14ecb | Find first file |
| 2018-12-25T11:51:06.233191172Z | 79 | PC: 14ee7 | Find next file |
| 2018-12-25T11:51:06.236499754Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.23980501Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.243996827Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.247062461Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.250028107Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.25416886Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.25900142Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.262494585Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.266662511Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.270033548Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.273302945Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.277767563Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.281518661Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.284644639Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.288037026Z | 78 | PC: 14f1f | Find first file |
| 2018-12-25T11:51:06.295368961Z | 79 | PC: 14f2d | Find next file |
| 2018-12-25T11:51:06.298668092Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.301984299Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.305521433Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.308591047Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.311658445Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.324530101Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.332828482Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.337172588Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.33939356Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:06.341151991Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:06.347644478Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:06.352064558Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:06.353227375Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.355478589Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.357591117Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.359180194Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.361489998Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:06.36419882Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:06.367511333Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |
{"DateBased":true,"Day":2,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:06.377009216Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:06.38286413Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:06.384801293Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:06.386050947Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:06.387872347Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:06.403793373Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.405367421Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.407119968Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:06.410088737Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.411206827Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:06.41254655Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:06.418311962Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:06.421889785Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:06.422749623Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.424639011Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.426500998Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.429837279Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.431873233Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:06.433907976Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:06.435424332Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |
{"DateBased":true,"Day":1,"Month":7,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:06.674650515Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:06.676527123Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:06.678095605Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:06.679541112Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:06.681619629Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:06.696200514Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.697280844Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.698810884Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:06.701009078Z | 47 | PC: 14ea9 | Get disk transfer address |
| 2018-12-25T11:51:06.702102796Z | 26 | PC: 14eb9 | Set disk transfer address |
| 2018-12-25T11:51:06.704031156Z | 78 | PC: 14ecb | Find first file |
| 2018-12-25T11:51:06.710651114Z | 79 | PC: 14ee7 | Find next file |
| 2018-12-25T11:51:06.713416633Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.716227469Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.719206732Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.721991789Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.724739802Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.728710083Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.732055933Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.734641456Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.73744173Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.740042314Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.743202551Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.746560436Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.749062072Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.751555363Z | 79 | PC: 14ee7 | Find next file (See above) |
| 2018-12-25T11:51:06.754676734Z | 78 | PC: 14f1f | Find first file |
| 2018-12-25T11:51:06.76068295Z | 79 | PC: 14f2d | Find next file |
| 2018-12-25T11:51:06.763050905Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.765973242Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.768544099Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.770925541Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.773903511Z | 79 | PC: 14f2d | Find next file (See above) |
| 2018-12-25T11:51:06.776805916Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:06.778175177Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:06.780120036Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:06.786497114Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:06.78973168Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:06.79148568Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.79280855Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.794088648Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.795749728Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:06.797732151Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:06.799295825Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:06.801803944Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4192,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:51:07.061162886Z | 205 | PC: 13e9b | UNKNOWN! |
| 2018-12-25T11:51:07.064485158Z | 74 | PC: 12fba | Reallocate memory |
| 2018-12-25T11:51:07.067729731Z | 53 | PC: 12fc1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:07.068869596Z | 37 | PC: 12fdf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:51:07.070668876Z | 75 | PC: 13012 | Execute program |
| 2018-12-25T11:51:07.086070937Z | 53 | PC: 14e46 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:07.087534158Z | 37 | PC: 14e64 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:07.097974394Z | 42 | PC: 14e68 | Get date 0x14e68: cmp dh, 4 0x14e6b: jne 0x14e77 0x14e6d: cmp dl, 1 0x14e70: je 0x14e75 0x14e72: jmp 0x15018 0x14e75: jmp 0x14ea5 0x14e77: cmp dh, 7 0x14e7a: jne 0x14e86 0x14e7c: cmp dl, 1 0x14e7f: je 0x14e84 0x14e81: jmp 0x15018 0x14e84: jmp 0x14ea5 0x14e86: cmp dh, 9 0x14e89: jne 0x14e95 0x14e8b: cmp dl, 0xa 0x14e8e: je 0x14e93 0x14e90: jmp 0x15018 0x14e93: jmp 0x14ea5 0x14e95: cmp dh, 0xb 0x14e98: je 0x14e9d |
| 2018-12-25T11:51:07.100810969Z | 37 | PC: 15025 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:51:07.102080047Z | 26 | PC: 15031 | Set disk transfer address |
| 2018-12-25T11:51:07.104641982Z | 9 | PC: 137e2 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-25T11:51:07.110779305Z | 76 | PC: 137e6 | Terminate with return code (Return code = '36') |
| 2018-12-25T11:51:07.114139971Z | 51 | PC: 13024 | Get or set Ctrl-Break |
| 2018-12-25T11:51:07.115932969Z | 88 | PC: 13117 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:07.117504532Z | 88 | PC: 1311d | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:07.119064459Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:07.122298395Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:51:07.124020066Z | 88 | PC: 13123 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:07.125591655Z | 88 | PC: 13129 | case 0xGet or set allocation strateg: (See above) |
| 2018-12-25T11:51:07.127904091Z | 49 | PC: 130b1 | Terminate and stay resident (Return code = '0' | Memory size = '192') |