.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:40:30.737084477Z | 70 | PC: 1420e | Redirect handle |
| 2018-12-17T22:40:30.739397692Z | 42 | PC: 144cf | Get date 0x144cf: call 0x144d4 0x144d2: pop bx 0x144d3: ret 0x144d4: cmp cx, 0x7d1 0x144d8: jne 0x144e2 0x144da: cmp dh, 0xc 0x144dd: jne 0x144e2 0x144df: cmp dl, 0x15 0x144e2: ret 0x144e3: mov al, 3 0x144e5: iret 0x144e6: push bp 0x144e7: add si, si 0x144e9: adc di, word ptr [di] 0x144eb: and al, 0x46 0x144ed: jne 0x144f3 0x144ef: mov ax, 0x3434 0x144f2: iret 0x144f3: cmp ax, 0x4b24 0x144f6: jne 0x14502 |
| 2018-12-17T22:40:30.74225578Z | 42 | PC: 9f7d1 | Get date 0x9f7d1: ret 0x9f7d2: push ax 0x9f7d3: push dx 0x9f7d4: mov ah, 2 0x9f7d6: mov dl, 7 0x9f7d8: int 0x21 0x9f7da: pop dx 0x9f7db: pop ax 0x9f7dc: ret 0x9f7dd: mov ax, cs 0x9f7df: mov ds, ax 0x9f7e1: mov es, ax 0x9f7e3: mov ax, 0x5700 0x9f7e6: call 0xaf7cb 0x9f7e9: mov word ptr cs:[0x4f5], cx 0x9f7ee: mov word ptr cs:[0x4f7], dx 0x9f7f3: mov dx, 0x4fc 0x9f7f6: mov cx, 0x1c 0x9f7f9: mov ah, 0x3f 0x9f7fb: call 0xaf7cb |
| 2018-12-17T22:40:30.745146539Z | 9 | PC: 12a86 | Display string (String= 'Goat file (COM/k...). Size=00001770h/0000006000d bytes. ') |
| 2018-12-17T22:40:30.751444438Z | 42 | PC: 9f7d1 | Get date 0x9f7d1: ret 0x9f7d2: push ax 0x9f7d3: push dx 0x9f7d4: mov ah, 2 0x9f7d6: mov dl, 7 0x9f7d8: int 0x21 0x9f7da: pop dx 0x9f7db: pop ax 0x9f7dc: ret 0x9f7dd: mov ax, cs 0x9f7df: mov ds, ax 0x9f7e1: mov es, ax 0x9f7e3: mov ax, 0x5700 0x9f7e6: call 0xaf7cb 0x9f7e9: mov word ptr cs:[0x4f5], cx 0x9f7ee: mov word ptr cs:[0x4f7], dx 0x9f7f3: mov dx, 0x4fc 0x9f7f6: mov cx, 0x1c 0x9f7f9: mov ah, 0x3f 0x9f7fb: call 0xaf7cb |
| 2018-12-17T22:40:30.755624529Z | 48 | PC: 12a8f | Get DOS version |
| 2018-12-17T22:40:30.758623803Z | 42 | PC: 9f7d1 | Get date 0x9f7d1: ret 0x9f7d2: push ax 0x9f7d3: push dx 0x9f7d4: mov ah, 2 0x9f7d6: mov dl, 7 0x9f7d8: int 0x21 0x9f7da: pop dx 0x9f7db: pop ax 0x9f7dc: ret 0x9f7dd: mov ax, cs 0x9f7df: mov ds, ax 0x9f7e1: mov es, ax 0x9f7e3: mov ax, 0x5700 0x9f7e6: call 0xaf7cb 0x9f7e9: mov word ptr cs:[0x4f5], cx 0x9f7ee: mov word ptr cs:[0x4f7], dx 0x9f7f3: mov dx, 0x4fc 0x9f7f6: mov cx, 0x1c 0x9f7f9: mov ah, 0x3f 0x9f7fb: call 0xaf7cb |