.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:51:00.993584839Z | 42 | PC: 13e31 | Get date 0x13e31: ret 0x13e32: iret 0x13e33: xor ax, 0x7b3c 0x13e36: jb 0x13dd5 0x13e38: cmc 0x13e39: jl 0x13def 0x13e3b: fiadd word ptr [bp - 0x55bb] 0x13e3f: ret 0xaa67 0x13e42: btr word ptr fs:[bx + si + 0x7f], si 0x13e47: mov al, 0xf 0x13e49: int3 0x13e4a: add al, 0x5d 0x13e4c: leave 0x13e4d: mov al, byte ptr [0xa75] 0x13e50: mov ah, byte ptr [0xa76] 0x13e54: add al, ah 0x13e56: mov byte ptr [0xa75], al 0x13e59: inc byte ptr [0xa76] 0x13e5d: xor ah, ah 0x13e5f: ret |
| 2018-12-17T22:51:00.997795947Z | 37 | PC: 13e31 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:51:00.999912541Z | 47 | PC: 13e31 | Get disk transfer address |
| 2018-12-17T22:51:01.001576256Z | 26 | PC: 13e31 | Set disk transfer address |
| 2018-12-17T22:51:01.003866697Z | 71 | PC: 13e31 | Get current directory |
| 2018-12-17T22:51:01.009626551Z | 78 | PC: 13e31 | Find first file |
| 2018-12-17T22:51:01.020385001Z | 86 | PC: 13e31 | Rename file |
| 2018-12-17T22:51:01.370928466Z | 67 | PC: 13e31 | Get or set file attributes |
| 2018-12-17T22:51:01.378745245Z | 67 | PC: 13e31 | Get or set file attributes |
| 2018-12-17T22:51:01.392296719Z | 61 | PC: 13e31 | Open file (Filename = 'C:\DOS\ATTRIB.EX@') |
| 2018-12-17T22:51:01.40110523Z | 87 | PC: 13e31 | Get or set file date and time |
| 2018-12-17T22:51:01.40428368Z | 63 | PC: 13e31 | Read file or device (Read 24 bytes on handle 5) |
| 2018-12-17T22:51:01.411040102Z | 66 | PC: 13e31 | Move file pointer |
| 2018-12-17T22:51:01.415091078Z | 64 | PC: 13e31 | Write file or device (Write 168 bytes on handle 5) |
| 2018-12-17T22:51:01.427621317Z | 64 | PC: 13e31 | Write file or device (Write 2590 bytes on handle 5) |
| 2018-12-17T22:51:01.439503302Z | 66 | PC: 13e31 | Move file pointer |
| 2018-12-17T22:51:01.441477537Z | 64 | PC: 13e31 | Write file or device (Write 24 bytes on handle 5) |
| 2018-12-17T22:51:01.445828125Z | 87 | PC: 13e31 | Get or set file date and time |
| 2018-12-17T22:51:01.447875008Z | 62 | PC: 13e31 | Close file |
| 2018-12-17T22:51:01.458060415Z | 67 | PC: 13e31 | Get or set file attributes |
| 2018-12-17T22:51:01.469967665Z | 86 | PC: 13e31 | Rename file |
| 2018-12-17T22:51:01.483531437Z | 26 | PC: 13e31 | Set disk transfer address |
| 2018-12-17T22:51:01.484951711Z | 37 | PC: 13e31 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:51:01.487093318Z | 42 | PC: 13e31 | Get date 0x13e31: ret 0x13e32: int 0x35 0x13e34: jnp 0x13ea7 0x13e37: popf 0x13e38: idiv word ptr [si - 0x4a] 0x13e3b: fiadd word ptr [si - 0x57bb] 0x13e3f: ret 0xaa65 0x13e42: cmpxchg dword ptr [bx + si + 0x7d], esi 0x13e47: mov al, 0xd 0x13e49: int3 0x13e4a: push es 0x13e4b: pop bp 0x13e4c: retf 0x13e4d: mov al, byte ptr [0xa75] 0x13e50: mov ah, byte ptr [0xa76] 0x13e54: add al, ah 0x13e56: mov byte ptr [0xa75], al 0x13e59: inc byte ptr [0xa76] 0x13e5d: xor ah, ah 0x13e5f: ret |
| 2018-12-17T22:51:01.492309428Z | 76 | PC: 139e4 | Terminate with return code (Return code = '1') |