.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:42:34.452583218Z | 153 | PC: 13e56 | UNKNOWN! |
| 2018-12-17T22:42:34.45406462Z | 42 | PC: 13e8e | Get date 0x13e8e: mov word ptr cs:[si + 0xb1b], cx 0x13e93: mov byte ptr cs:[si + 0xb1d], dh 0x13e98: mov byte ptr cs:[si + 0xb1e], dl 0x13e9d: mov ah, 0 0x13e9f: int 0x1a 0x13ea1: mov word ptr cs:[si + 0xb1f], dx 0x13ea6: pop bx 0x13ea7: pop ax 0x13ea8: pop cx 0x13ea9: pop dx 0x13eaa: pop es 0x13eab: pop ds 0x13eac: push es 0x13ead: xor bx, bx 0x13eaf: mov ds, bx 0x13eb1: les bx, ptr [0x84] 0x13eb5: mov word ptr cs:[si + 0xb5c], bx 0x13eba: mov word ptr cs:[si + 0xb5e], es 0x13ebf: les bx, ptr [0x20] 0x13ec3: mov word ptr cs:[si + 0xb54], bx |
| 2018-12-17T22:42:34.456612689Z | 73 | PC: 13ee5 | Release memory |
| 2018-12-17T22:42:34.458550812Z | 72 | PC: 13ef1 | Allocate memory |
| 2018-12-17T22:42:34.461238771Z | 74 | PC: 13f07 | Reallocate memory |
| 2018-12-17T22:42:34.464943498Z | 74 | PC: 13f1f | Reallocate memory |
| 2018-12-17T22:42:34.466922456Z | 9 | PC: 12a85 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ') |
| 2018-12-17T22:42:34.472650499Z | 0 | PC: 12a89 | Program terminate |