.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:35:00.387465465Z | 48 | PC: 19e63 | Get DOS version |
| 2018-12-17T22:35:00.390308551Z | 63 | PC: 19e75 | Read file or device (Read 0 bytes on handle 43605) |
| 2018-12-17T22:35:00.403962209Z | 74 | PC: 12abf | Reallocate memory |
| 2018-12-17T22:35:00.405926236Z | 42 | PC: 12ae1 | Get date 0x12ae1: xchg ax, dx
0x12ae2: cmp ax, 0xc1e
0x12ae5: je 0x12aec
0x12ae7: cmp ax, 0xc1f
0x12aea: jne 0x12af1
0x12aec: mov si, 0x679
0x12aef: jmp 0x12b51
0x12af1: cmp ax, 0x401
0x12af4: je 0x12b02
0x12af6: call 0x12f4f
0x12af9: test al, 0x3f
0x12afb: jne 0x12b62
0x12afd: call 0x12f59
0x12b00: jmp 0x12b4b
0x12b02: mov ah, 8
0x12b04: mov dl, 0x80
0x12b06: int 0x13
0x12b08: jb 0x12b62
0x12b0a: mov si, 0x70b
0x12b0d: call 0x12ee7
|
| 2018-12-17T22:35:00.409408399Z | 53 | PC: 12b67 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:35:00.411272446Z | 37 | PC: 12b78 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:35:00.41313176Z | 68 | PC: 12ec8 | I/O control for devices (Set for = '�') |
| 2018-12-17T22:35:00.416057851Z | 75 | PC: 12ec8 | Execute program |
| 2018-12-17T22:35:00.449768159Z | 48 | PC: 1ac13 | Get DOS version |
| 2018-12-17T22:35:00.452145528Z | 9 | PC: 13835 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 7400H bytes long
') |
| 2018-12-17T22:35:00.458681322Z | 0 | PC: 13839 | Program terminate |
| 2018-12-17T22:35:00.463161737Z | 73 | PC: 12b98 | Release memory |
