.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:39:03.606367106Z | 48 | PC: 13118 | Get DOS version |
| 2018-12-17T22:39:03.608106562Z | 42 | PC: 13003 | Get date 0x13003: mov bx, word ptr cs:[di + 0x798] 0x13008: mov al, byte ptr cs:[di + 0x79a] 0x1300d: cmp dh, bh 0x1300f: jne 0x1301c 0x13011: add bl, 4 0x13014: add bl, al 0x13016: cmp bl, dl 0x13018: jb 0x1301c 0x1301a: xor dh, dh 0x1301c: ret 0x1301d: nop 0x1301e: xor ax, ax 0x13020: mov es, ax 0x13022: mov ax, word ptr es:[0x70] 0x13026: mov bx, word ptr es:[0x72] 0x1302b: mov word ptr cs:[di + 0x78a], ax 0x13030: mov word ptr cs:[di + 0x78c], bx 0x13035: mov ds, word ptr es:[0x2b2] 0x1303a: cmp byte ptr [0x100], 0xe9 0x1303f: jne 0x13047 |
| 2018-12-17T22:39:03.612276812Z | 9 | PC: 12ad3 | Display string (String= '��������������������������������������������������������������������A virus infected program Hit any key to continue (without virus) ...') |
| 2018-12-17T22:39:03.621470915Z | 49 | PC: 12b08 | Terminate and stay resident (Return code = '0' | Memory size = '25') |