.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T21:51:08.900800165Z | 48 | PC: 15305 | Get DOS version |
| 2018-12-17T21:51:08.902475584Z | 88 | PC: 15312 | case 0xGet or set allocation strateg: |
| 2018-12-17T21:51:08.903797609Z | 72 | PC: 1531c | Allocate memory |
| 2018-12-17T21:51:08.905320963Z | 74 | PC: 1532e | Reallocate memory |
| 2018-12-17T21:51:08.907565653Z | 74 | PC: 1536f | Reallocate memory |
| 2018-12-17T21:51:08.908738825Z | 88 | PC: 1538e | case 0xGet or set allocation strateg: |
| 2018-12-17T21:51:08.90962213Z | 72 | PC: 15395 | Allocate memory |
| 2018-12-17T21:51:08.911540054Z | 88 | PC: 153a0 | case 0xGet or set allocation strateg: |
| 2018-12-17T21:51:08.914025046Z | 53 | PC: 9eecf | Get interrupt vector (Interrupt = '22' AKA 'Create or truncate file') |
| 2018-12-17T21:51:08.915268043Z | 53 | PC: 9eedb | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T21:51:08.917249533Z | 37 | PC: 9eef8 | Set interrupt vector (Interrupt = '22' AKA 'Create or truncate file') |
| 2018-12-17T21:51:08.919219624Z | 37 | PC: 9eeff | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T21:51:08.921789485Z | 53 | PC: 9f5fa | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:51:08.924362038Z | 47 | PC: 9f5fa | Get disk transfer address |
| 2018-12-17T21:51:08.925848275Z | 37 | PC: 9f5fa | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:51:08.927487335Z | 26 | PC: 9f5fa | Set disk transfer address |
| 2018-12-17T21:51:08.929642615Z | 46 | PC: 9f5fa | Set verify flag |
| 2018-12-17T21:51:08.931788244Z | 78 | PC: 9f5fa | Find first file |
| 2018-12-17T21:51:08.939038697Z | 44 | PC: 9f5fa | Get time 0x9f5fa: ret 0x9f5fb: mov bx, 0x23 0x9f5fe: call 0x9f611 0x9f601: inc dx 0x9f602: dec bx 0x9f603: jne 0x9f5fe 0x9f605: ret 0x9f606: mov bx, 0x23 0x9f609: call 0x9f611 0x9f60c: inc cx 0x9f60d: dec bx 0x9f60e: jne 0x9f609 0x9f610: ret 0x9f611: mov ax, 0xc0f 0x9f614: int 0x10 0x9f616: ret 0x9f617: call 0xaf01e 0x9f61a: push cs 0x9f61b: pop ds 0x9f61c: mov ax, 0xe |
| 2018-12-17T21:51:08.942202747Z | 26 | PC: 9f5fa | Set disk transfer address |
| 2018-12-17T21:51:08.943761689Z | 37 | PC: 9f5fa | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:51:08.945954822Z | 9 | PC: 12a82 | Display string (String= 'Goat file (EXE). Size=00002968h/0000010600d bytes. ') |
| 2018-12-17T21:51:08.950159603Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |