.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:26:56.089216238Z | 53 | PC: 13fbd | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:26:56.091189741Z | 53 | PC: 13fca | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:26:56.092439715Z | 37 | PC: 13fda | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:26:56.093685579Z | 37 | PC: 13fe2 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:26:56.095949029Z | 67 | PC: 143db | Get or set file attributes |
| 2018-12-17T22:26:56.101174447Z | 67 | PC: 143e5 | Get or set file attributes |
| 2018-12-17T22:26:56.116899515Z | 61 | PC: 143ec | Open file (Filename = '�') |
| 2018-12-17T22:26:56.128044091Z | 63 | PC: 144b7 | Read file or device (Read 11 bytes on handle 5) |
| 2018-12-17T22:26:56.130962119Z | 62 | PC: 143f9 | Close file |
| 2018-12-17T22:26:56.132942028Z | 67 | PC: 14400 | Get or set file attributes |
| 2018-12-17T22:26:56.138885001Z | 67 | PC: 1440a | Get or set file attributes |
| 2018-12-17T22:26:56.148886281Z | 37 | PC: 13f45 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:26:56.150292551Z | 37 | PC: 13f4f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:26:56.151720639Z | 42 | PC: 1425c | Get date 0x1425c: cmp cx, word ptr [9]
0x14260: jl 0x14284
0x14262: jg 0x1429b
0x14264: cmp dh, byte ptr [0xb]
0x14268: jl 0x14284
0x1426a: cmp dl, byte ptr [0xc]
0x1426e: jge 0x1429b
0x14270: jmp 0x14284
0x14272: xor ax, ax
0x14274: mov word ptr [0x11], 0xf
0x1427a: mov word ptr [0xf], ax
0x1427d: mov word ptr [0xd], 0
0x14283: ret
0x14284: cmp cx, 0x7c8
0x14288: jl 0x14272
0x1428a: cmp dh, 8
0x1428d: jl 0x14272
0x1428f: cmp dl, 8
0x14292: jl 0x14272
0x14294: mov byte ptr [8], 0
|
| 2018-12-17T22:26:56.155208458Z | 43 | PC: 142ab | Set date |
| 2018-12-17T22:26:56.158435457Z | 43 | PC: 142d5 | Set date |
| 2018-12-17T22:26:56.161609074Z | 82 | PC: 141ad | Get DOS internal pointers (SYSVARS) |
| 2018-12-17T22:26:56.182709336Z | 53 | PC: 14225 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T22:26:56.184049807Z | 53 | PC: 14232 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:26:56.185406494Z | 37 | PC: 14243 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T22:26:56.187118996Z | 37 | PC: 1424b | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:26:56.188395263Z | 9 | PC: 12a85 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long
') |
| 2018-12-17T22:26:56.19375767Z | 0 | PC: 12a89 | Program terminate |
