.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:49:10.296251355Z | 84 | PC: 13a97 | Get verify flag |
| 2018-12-17T22:49:10.298337339Z | 9 | PC: 12a82 | Display string (String= 'Goat file (EXE). Size=000011A0h/0000004512d bytes. ') |
| 2018-12-17T22:49:10.303700382Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |
| 2018-12-17T22:49:10.307324055Z | 77 | PC: 11fe0 | Get program return code |
| 2018-12-17T22:49:10.30859198Z | 72 | PC: 12174 | Allocate memory |
| 2018-12-17T22:49:10.310974887Z | 72 | PC: 1218d | Allocate memory |
| 2018-12-17T22:49:10.31348992Z | 37 | PC: 123c4 | Set interrupt vector (Interrupt = '34' AKA 'Random write') |
| 2018-12-17T22:49:10.314768304Z | 37 | PC: 123cb | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:49:10.316683127Z | 37 | PC: 123d2 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:49:10.318031643Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.31980643Z | 69 | PC: 9f53f | Duplicate handle |
| 2018-12-17T22:49:10.321969724Z | 44 | PC: 9f53f | Get time 0x9f53f: ret 0x9f540: add byte ptr [bp + di + 0x6f], dl 0x9f543: imul esp, dword ptr [bx + di + 0x20], 0x34393931 0x9f54b: and byte ptr [bp + si + 0x79], ah 0x9f54e: and byte ptr [si + 0x45], dl 0x9f551: push dx 0x9f552: dec bp 0x9f553: dec cx 0x9f554: dec si 0x9f555: inc cx 0x9f556: push sp 0x9f557: dec di 0x9f558: push dx 0x9f559: add byte ptr [bx + si], al 0x9f55b: add byte ptr [bx + si], al 0x9f55d: add byte ptr [bx + si], al 0x9f55f: add byte ptr [bx + si], al 0x9f561: add byte ptr [bx + si], al 0x9f563: add byte ptr [bx + si], al 0x9f565: add byte ptr [bx + si], al |
| 2018-12-17T22:49:10.323564297Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.325219917Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.327574504Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.329516298Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.331450144Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.333662809Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.3359821Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.338185045Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.340362487Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.343487615Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.345359164Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.347220312Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.354986391Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.356886844Z | 62 | PC: 122ab | Close file |
| 2018-12-17T22:49:10.362399123Z | 99 | PC: 999d7 | Get DBCS lead byte table pointer |
| 2018-12-17T22:49:10.364665255Z | 56 | PC: 941f9 | Get or set country info |
| 2018-12-17T22:49:10.366958097Z | 64 | PC: 99c48 | Write file or device (Write 2 bytes on handle 1) |
| 2018-12-17T22:49:10.372429245Z | 25 | PC: 94262 | Get default drive |
| 2018-12-17T22:49:10.375488341Z | 71 | PC: 964dd | Get current directory |
| 2018-12-17T22:49:10.380209144Z | 64 | PC: 99c48 | Write file or device (Write 3 bytes on handle 1) |
| 2018-12-17T22:49:10.385363159Z | 2 | PC: 964b2 | Character output (Char = '3e') |
| 2018-12-17T22:49:10.388553947Z | 93 | PC: 94320 | File sharing functions |
| 2018-12-17T22:49:10.391021558Z | 93 | PC: 94327 | File sharing functions |
| 2018-12-17T22:49:10.393518167Z | 10 | PC: 94339 | Buffered keyboard input |
| 2018-12-17T22:49:25.27613948Z | 0 | PC: 0 | Program terminate |
| 2018-12-17T22:49:26.632502048Z | 0 | PC: 0 | Program terminate |
| 2018-12-17T22:49:26.736273023Z | 64 | PC: 99c48 | Write file or device (Write 2 bytes on handle 1) |
| 2018-12-17T22:49:26.744047285Z | 41 | PC: 943ae | Parse filename |
| 2018-12-17T22:49:26.748203077Z | 41 | PC: 9442f | Parse filename |
| 2018-12-17T22:49:26.750596313Z | 41 | PC: 9444c | Parse filename |
| 2018-12-17T22:49:26.753998009Z | 26 | PC: 978f7 | Set disk transfer address |
| 2018-12-17T22:49:26.756509734Z | 71 | PC: 97af3 | Get current directory |
| 2018-12-17T22:49:26.773576472Z | 78 | PC: 9f53f | Find first file |
| 2018-12-17T22:49:26.784853178Z | 47 | PC: 9f53f | Get disk transfer address |
| 2018-12-17T22:49:26.787081796Z | 71 | PC: 9796c | Get current directory |
| 2018-12-17T22:49:26.791094284Z | 73 | PC: 97009 | Release memory |
| 2018-12-17T22:49:26.794470784Z | 61 | PC: 9f53f | Open file (Filename = '') |
| 2018-12-17T22:49:26.80495395Z | 87 | PC: 9f53f | Get or set file date and time |
| 2018-12-17T22:49:26.807465414Z | 66 | PC: 9f53f | Move file pointer |
| 2018-12-17T22:49:26.810332352Z | 63 | PC: 9f53f | Read file or device (Read 24 bytes on handle 5) |
| 2018-12-17T22:49:26.817955151Z | 66 | PC: 9f53f | Move file pointer |
| 2018-12-17T22:49:26.819907205Z | 87 | PC: 9f53f | Get or set file date and time |
| 2018-12-17T22:49:26.82311633Z | 62 | PC: 9f53f | Close file |
| 2018-12-17T22:49:26.839108275Z | 44 | PC: 9f53f | Get time 0x9f53f: ret 0x9f540: add byte ptr [bp + di + 0x6f], dl 0x9f543: imul esp, dword ptr [bx + di + 0x20], 0x34393931 0x9f54b: and byte ptr [bp + si + 0x79], ah 0x9f54e: and byte ptr [si + 0x45], dl 0x9f551: push dx 0x9f552: dec bp 0x9f553: dec cx 0x9f554: dec si 0x9f555: inc cx 0x9f556: push sp 0x9f557: dec di 0x9f558: push dx 0x9f559: add byte ptr [bx + si], al 0x9f55b: add byte ptr [bx + si], al 0x9f55d: add byte ptr [bx + si], al 0x9f55f: add byte ptr [bx + si], al 0x9f561: add byte ptr [bx + si], al 0x9f563: add byte ptr [bx + si], al 0x9f565: add byte ptr [bx + si], al |
| 2018-12-17T22:49:26.842545343Z | 75 | PC: 11821 | Execute program |
| 2018-12-17T22:49:26.855018387Z | 9 | PC: 12a47 | Display string (String= 'Hello, World! ') |
| 2018-12-17T22:49:26.860866866Z | 76 | PC: 12a4b | Terminate with return code (Return code = '36') |