.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:47:01.024219335Z | 26 | PC: 14101 | Set disk transfer address |
| 2018-12-17T22:47:01.02585741Z | 78 | PC: 1410d | Find first file |
| 2018-12-17T22:47:01.031911068Z | 53 | PC: 14150 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:47:01.033363218Z | 37 | PC: 14164 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:47:01.035492833Z | 67 | PC: 1417c | Get or set file attributes |
| 2018-12-17T22:47:01.051556217Z | 61 | PC: 14185 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-17T22:47:01.057098653Z | 87 | PC: 1418b | Get or set file date and time |
| 2018-12-17T22:47:01.059754878Z | 63 | PC: 141a0 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:47:01.066463184Z | 87 | PC: 1423a | Get or set file date and time |
| 2018-12-17T22:47:01.06796725Z | 62 | PC: 1423e | Close file |
| 2018-12-17T22:47:01.075096701Z | 67 | PC: 1424f | Get or set file attributes |
| 2018-12-17T22:47:01.087137353Z | 37 | PC: 1425e | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:47:01.088488626Z | 79 | PC: 1410d | Find next file |
| 2018-12-17T22:47:01.092171687Z | 79 | PC: 1410d | Find next file |
| 2018-12-17T22:47:01.097754905Z | 79 | PC: 1410d | Find next file |
| 2018-12-17T22:47:01.100248666Z | 79 | PC: 1410d | Find next file |
| 2018-12-17T22:47:01.102652041Z | 79 | PC: 1410d | Find next file |
| 2018-12-17T22:47:01.119191753Z | 79 | PC: 1410d | Find next file |
| 2018-12-17T22:47:01.121744708Z | 79 | PC: 1410d | Find next file |
| 2018-12-17T22:47:01.124457331Z | 79 | PC: 1410d | Find next file |
| 2018-12-17T22:47:01.127531295Z | 26 | PC: 1412c | Set disk transfer address |
| 2018-12-17T22:47:01.12933139Z | 48 | PC: 12a63 | Get DOS version |
| 2018-12-17T22:47:01.130714203Z | 9 | PC: 12a7a | Display string (String= '
--=[ Selfchecking AntiStealth Goat COM/EXE file, 01/06/01 ]=------------------
(c) 1995-2001 by ROSE SWE, Dipl.-Ing. Ralph Roth - Version 1.18 - Freeware
') |
| 2018-12-17T22:47:01.141506013Z | 61 | PC: 12cb7 | Open file (Filename = '�') |
| 2018-12-17T22:47:01.148143565Z | 9 | PC: 12a88 | Display string (String= 'Self test: ') |
| 2018-12-17T22:47:01.150373883Z | 93 | PC: 12b24 | File sharing functions |
| 2018-12-17T22:47:01.152924463Z | 9 | PC: 12b03 | Display string (String= 'Size change=+01A5h/00421d. Virus might be activ?
��') |
| 2018-12-17T22:47:01.158792191Z | 76 | PC: 12b09 | Terminate with return code (Return code = '1') |
