.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:38:32.512944151Z | 255 | PC: 12bce | UNKNOWN! |
| 2018-12-17T22:38:32.522619152Z | 255 | PC: 12c0e | UNKNOWN! |
| 2018-12-17T22:38:32.524132065Z | 74 | PC: 12c60 | Reallocate memory |
| 2018-12-17T22:38:32.52594489Z | 53 | PC: 12c65 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:38:32.528866809Z | 53 | PC: 12c74 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:38:32.530566926Z | 37 | PC: 12c86 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:38:32.532333268Z | 42 | PC: 12cc5 | Get date 0x12cc5: mov byte ptr cs:[0x31], 0 0x12ccb: cmp cx, 0x7cb 0x12ccf: jb 0x12cfb 0x12cd1: inc byte ptr cs:[0x31] 0x12cd6: nop 0x12cd7: nop 0x12cd8: mov ax, 0x3508 0x12cdb: int 0x21 0x12cdd: mov word ptr cs:[0x25], bx 0x12ce2: mov word ptr cs:[0x27], es 0x12ce7: push cs 0x12ce8: pop ds 0x12ce9: inc word ptr [0x2d] 0x12ced: mov word ptr [0x2f], 0x2aa8 0x12cf3: mov ax, 0x2508 0x12cf6: mov dx, 0x2e8 0x12cf9: int 0x21 0x12cfb: pop dx 0x12cfc: pop cx 0x12cfd: pop bx |
| 2018-12-17T22:38:32.535612809Z | 53 | PC: 12cdd | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-17T22:38:32.537315249Z | 37 | PC: 12cfb | Set interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-17T22:38:32.538748927Z | 75 | PC: 12d07 | Execute program |
| 2018-12-17T22:38:32.55960887Z | 9 | PC: 134e5 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat F400H bytes long ') |
| 2018-12-17T22:38:32.566436977Z | 0 | PC: 134e9 | Program terminate |
| 2018-12-17T22:38:32.569540289Z | 73 | PC: 12d0d | Release memory |
| 2018-12-17T22:38:32.571278938Z | 77 | PC: 12d11 | Get program return code |
| 2018-12-17T22:38:32.57272212Z | 49 | PC: 12d24 | Terminate and stay resident (Return code = '0' | Memory size = '160') |