Sample viewer

vx.netlux.org/Virus.DOS.Crow.1453

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:51:03.851085533Z 255 PC: 1b07f | UNKNOWN!
2018-12-17T22:51:03.854251299Z 53 PC: 1b0ab | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:51:03.855784041Z 48 PC: 12a4c | Get DOS version
2018-12-17T22:51:03.85714266Z 53 PC: 12b82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:03.858715312Z 53 PC: 12b8f | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:51:03.860229545Z 53 PC: 12b9c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T22:51:03.861608431Z 53 PC: 12ba9 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T22:51:03.863015172Z 37 PC: 12bbd | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:03.865045673Z 74 PC: 12ad6 | Reallocate memory
2018-12-17T22:51:03.86730416Z 68 PC: 1896e | I/O control for devices (Set for = '��V')
2018-12-17T22:51:03.869439376Z 74 PC: 1905c | Reallocate memory
2018-12-17T22:51:03.879648708Z 74 PC: 1905c | Reallocate memory
2018-12-17T22:51:03.88750535Z 68 PC: 1896e | I/O control for devices (Set for = 'Turbo C++ - Copyright 1990 Borland Intl.')
2018-12-17T22:51:03.889774367Z 68 PC: 15e01 | I/O control for devices (Set for = '')
2018-12-17T22:51:03.892810035Z 68 PC: 15e0a | I/O control for devices (Set for = 'd page size value ignored')
2018-12-17T22:51:03.894716399Z 68 PC: 15e12 | I/O control for devices (Set for = 'd page size value ignored')
2018-12-17T22:51:03.897586439Z 68 PC: 15e1b | I/O control for devices (Set for = 'd page size value ignored')
2018-12-17T22:51:03.903081586Z 51 PC: 15e22 | Get or set Ctrl-Break
2018-12-17T22:51:03.905058465Z 64 PC: 197c3 | Write file or device (Write 52 bytes on handle 2)
2018-12-17T22:51:03.920837311Z 64 PC: 197c3 | Write file or device (Write 128 bytes on handle 1)
2018-12-17T22:51:03.938393982Z 64 PC: 197c3 | Write file or device (Write 128 bytes on handle 1)
2018-12-17T22:51:03.951610994Z 64 PC: 197c3 | Write file or device (Write 128 bytes on handle 1)
2018-12-17T22:51:03.970914974Z 64 PC: 197c3 | Write file or device (Write 128 bytes on handle 1)
2018-12-17T22:51:03.980915482Z 64 PC: 197c3 | Write file or device (Write 128 bytes on handle 1)
2018-12-17T22:51:04.003886944Z 64 PC: 197c3 | Write file or device (Write 87 bytes on handle 1)
2018-12-17T22:51:04.012852557Z 64 PC: 197c3 | Write file or device (Write 1 bytes on handle 1)
2018-12-17T22:51:04.0173142Z 64 PC: 197c3 | Write file or device (Write 1 bytes on handle 1)
2018-12-17T22:51:04.046034374Z 37 PC: 12bc9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:04.048909788Z 37 PC: 12bd4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:51:04.051749167Z 37 PC: 12bdf | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T22:51:04.055925015Z 37 PC: 12bea | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T22:51:04.058391144Z 76 PC: 12b73 | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10427,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:27:59.844523284Z 255 PC: 1b07f | UNKNOWN!
2018-12-25T12:27:59.846177898Z 53 PC: 1b0ab | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:27:59.847599403Z 48 PC: 12a4c | Get DOS version
2018-12-25T12:27:59.848857972Z 53 PC: 12b82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:27:59.850529525Z 53 PC: 12b8f | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:27:59.851753291Z 53 PC: 12b9c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:27:59.852951631Z 53 PC: 12ba9 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:27:59.85471271Z 37 PC: 12bbd | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:27:59.856074482Z 74 PC: 12ad6 | Reallocate memory
2018-12-25T12:27:59.858052802Z 68 PC: 1896e | I/O control for devices (Set for = '��V')
2018-12-25T12:27:59.860581506Z 74 PC: 1905c | Reallocate memory
2018-12-25T12:27:59.862599624Z 74 PC: 1905c | Reallocate memory (See above)
2018-12-25T12:27:59.864515187Z 68 PC: 1896e | I/O control for devices (See above)
2018-12-25T12:27:59.867048298Z 68 PC: 15e01 | I/O control for devices (Set for = '')
2018-12-25T12:27:59.868672903Z 68 PC: 15e0a | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:27:59.870222279Z 68 PC: 15e12 | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:27:59.872312701Z 68 PC: 15e1b | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:27:59.873914845Z 51 PC: 15e22 | Get or set Ctrl-Break
2018-12-25T12:27:59.875509573Z 64 PC: 197c3 | Write file or device (Write 52 bytes on handle 2)
2018-12-25T12:27:59.884733007Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:27:59.893069726Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:27:59.901653089Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:27:59.911344726Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:27:59.918993427Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:27:59.933122028Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:27:59.941249583Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:27:59.944740014Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:27:59.950788187Z 37 PC: 12bc9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:27:59.958579573Z 37 PC: 12bd4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:27:59.960656679Z 37 PC: 12bdf | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:27:59.962602114Z 37 PC: 12bea | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:27:59.965429888Z 76 PC: 12b73 | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10427,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:28:00.660400621Z 255 PC: 1b07f | UNKNOWN!
2018-12-25T12:28:00.664471228Z 53 PC: 1b0ab | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:28:00.673834736Z 48 PC: 12a4c | Get DOS version
2018-12-25T12:28:00.675550335Z 53 PC: 12b82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:00.678564782Z 53 PC: 12b8f | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:00.679956044Z 53 PC: 12b9c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:00.681224795Z 53 PC: 12ba9 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:00.683277864Z 37 PC: 12bbd | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:00.685719625Z 74 PC: 12ad6 | Reallocate memory
2018-12-25T12:28:00.688792001Z 68 PC: 1896e | I/O control for devices (Set for = '��V')
2018-12-25T12:28:00.691856875Z 74 PC: 1905c | Reallocate memory
2018-12-25T12:28:00.694589286Z 74 PC: 1905c | Reallocate memory (See above)
2018-12-25T12:28:00.696331369Z 68 PC: 1896e | I/O control for devices (See above)
2018-12-25T12:28:00.698026581Z 68 PC: 15e01 | I/O control for devices (Set for = '')
2018-12-25T12:28:00.700408718Z 68 PC: 15e0a | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:00.701818424Z 68 PC: 15e12 | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:00.703265852Z 68 PC: 15e1b | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:00.705462792Z 51 PC: 15e22 | Get or set Ctrl-Break
2018-12-25T12:28:00.707088695Z 64 PC: 197c3 | Write file or device (Write 52 bytes on handle 2)
2018-12-25T12:28:00.714991089Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:00.724752138Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:00.735759596Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:00.745842934Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:00.756326833Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:00.769270721Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:00.779392311Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:00.784228068Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:00.796553148Z 37 PC: 12bc9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:00.798866599Z 37 PC: 12bd4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:00.801143644Z 37 PC: 12bdf | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:00.80389133Z 37 PC: 12bea | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:00.80708274Z 76 PC: 12b73 | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":3,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10427,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:28:01.860011587Z 255 PC: 1b07f | UNKNOWN!
2018-12-25T12:28:01.862076288Z 53 PC: 1b0ab | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:28:01.863750921Z 48 PC: 12a4c | Get DOS version
2018-12-25T12:28:01.865175042Z 53 PC: 12b82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:01.86729364Z 53 PC: 12b8f | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:01.868580017Z 53 PC: 12b9c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:01.870008554Z 53 PC: 12ba9 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:01.872199554Z 37 PC: 12bbd | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:01.873560195Z 74 PC: 12ad6 | Reallocate memory
2018-12-25T12:28:01.875572921Z 68 PC: 1896e | I/O control for devices (Set for = '��V')
2018-12-25T12:28:01.877961759Z 74 PC: 1905c | Reallocate memory
2018-12-25T12:28:01.88046607Z 74 PC: 1905c | Reallocate memory (See above)
2018-12-25T12:28:01.889481548Z 68 PC: 1896e | I/O control for devices (See above)
2018-12-25T12:28:01.89240778Z 68 PC: 15e01 | I/O control for devices (Set for = '')
2018-12-25T12:28:01.894069101Z 68 PC: 15e0a | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:01.895335567Z 68 PC: 15e12 | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:01.896820259Z 68 PC: 15e1b | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:01.899746476Z 51 PC: 15e22 | Get or set Ctrl-Break
2018-12-25T12:28:01.901372713Z 64 PC: 197c3 | Write file or device (Write 52 bytes on handle 2)
2018-12-25T12:28:01.908549343Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:01.916672026Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:01.925495576Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:01.935242491Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:01.943325554Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:01.957486663Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:01.965076716Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:01.968760887Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:01.974043829Z 37 PC: 12bc9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:01.97594785Z 37 PC: 12bd4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:01.977969824Z 37 PC: 12bdf | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:01.979852717Z 37 PC: 12bea | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:01.981714563Z 76 PC: 12b73 | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":4,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10427,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:28:02.297135676Z 255 PC: 1b07f | UNKNOWN!
2018-12-25T12:28:02.29830738Z 53 PC: 1b0ab | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:28:02.299878368Z 48 PC: 12a4c | Get DOS version
2018-12-25T12:28:02.301281633Z 53 PC: 12b82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.30305666Z 53 PC: 12b8f | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:02.307556426Z 53 PC: 12b9c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:02.308930579Z 53 PC: 12ba9 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:02.311265911Z 37 PC: 12bbd | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.312711591Z 74 PC: 12ad6 | Reallocate memory
2018-12-25T12:28:02.314807443Z 68 PC: 1896e | I/O control for devices (Set for = '��V')
2018-12-25T12:28:02.31765258Z 74 PC: 1905c | Reallocate memory
2018-12-25T12:28:02.319789664Z 74 PC: 1905c | Reallocate memory (See above)
2018-12-25T12:28:02.321351392Z 68 PC: 1896e | I/O control for devices (See above)
2018-12-25T12:28:02.323945441Z 68 PC: 15e01 | I/O control for devices (Set for = '')
2018-12-25T12:28:02.325202083Z 68 PC: 15e0a | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.326453372Z 68 PC: 15e12 | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.32859342Z 68 PC: 15e1b | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.329919044Z 51 PC: 15e22 | Get or set Ctrl-Break
2018-12-25T12:28:02.331213105Z 64 PC: 197c3 | Write file or device (Write 52 bytes on handle 2)
2018-12-25T12:28:02.338342582Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.347558121Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.356945583Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.366091485Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.380040301Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.391594212Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.39945487Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.403705784Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.409989367Z 37 PC: 12bc9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.412565921Z 37 PC: 12bd4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:02.415419846Z 37 PC: 12bdf | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:02.426785033Z 37 PC: 12bea | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:02.429451784Z 76 PC: 12b73 | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":5,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10427,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:28:02.579148199Z 255 PC: 1b07f | UNKNOWN!
2018-12-25T12:28:02.580852592Z 53 PC: 1b0ab | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:28:02.582638183Z 48 PC: 12a4c | Get DOS version
2018-12-25T12:28:02.584210839Z 53 PC: 12b82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.586819892Z 53 PC: 12b8f | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:02.588261046Z 53 PC: 12b9c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:02.589683802Z 53 PC: 12ba9 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:02.592157806Z 37 PC: 12bbd | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.593692988Z 74 PC: 12ad6 | Reallocate memory
2018-12-25T12:28:02.595859719Z 68 PC: 1896e | I/O control for devices (Set for = '��V')
2018-12-25T12:28:02.598519507Z 74 PC: 1905c | Reallocate memory
2018-12-25T12:28:02.600633321Z 74 PC: 1905c | Reallocate memory (See above)
2018-12-25T12:28:02.602561422Z 68 PC: 1896e | I/O control for devices (See above)
2018-12-25T12:28:02.605144648Z 68 PC: 15e01 | I/O control for devices (Set for = '')
2018-12-25T12:28:02.606747865Z 68 PC: 15e0a | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.608353173Z 68 PC: 15e12 | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.610638721Z 68 PC: 15e1b | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.611923652Z 51 PC: 15e22 | Get or set Ctrl-Break
2018-12-25T12:28:02.613216205Z 64 PC: 197c3 | Write file or device (Write 52 bytes on handle 2)
2018-12-25T12:28:02.630755168Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.638180543Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.646728663Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.655751517Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.663818103Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.691011754Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.702203642Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.705868296Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.71151781Z 37 PC: 12bc9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.71772272Z 37 PC: 12bd4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:02.720025023Z 37 PC: 12bdf | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:02.722876606Z 37 PC: 12bea | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:02.729155867Z 76 PC: 12b73 | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10427,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:28:02.88654522Z 255 PC: 1b07f | UNKNOWN!
2018-12-25T12:28:02.888567874Z 53 PC: 1b0ab | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:28:02.894787421Z 48 PC: 12a4c | Get DOS version
2018-12-25T12:28:02.900325832Z 53 PC: 12b82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.901546493Z 53 PC: 12b8f | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:02.903079528Z 53 PC: 12b9c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:02.904248441Z 53 PC: 12ba9 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:02.905387905Z 37 PC: 12bbd | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.907335431Z 74 PC: 12ad6 | Reallocate memory
2018-12-25T12:28:02.909118251Z 68 PC: 1896e | I/O control for devices (Set for = '��V')
2018-12-25T12:28:02.911175101Z 74 PC: 1905c | Reallocate memory
2018-12-25T12:28:02.916913188Z 74 PC: 1905c | Reallocate memory (See above)
2018-12-25T12:28:02.918395505Z 68 PC: 1896e | I/O control for devices (See above)
2018-12-25T12:28:02.919897603Z 68 PC: 15e01 | I/O control for devices (Set for = '')
2018-12-25T12:28:02.921785883Z 68 PC: 15e0a | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.92300622Z 68 PC: 15e12 | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.924249189Z 68 PC: 15e1b | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.926042749Z 51 PC: 15e22 | Get or set Ctrl-Break
2018-12-25T12:28:02.927473317Z 64 PC: 197c3 | Write file or device (Write 52 bytes on handle 2)
2018-12-25T12:28:02.932448746Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.937515954Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.947397828Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.953450818Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.968065645Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.981782767Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.990556254Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:02.995701932Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.011971089Z 37 PC: 12bc9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:03.02509275Z 37 PC: 12bd4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:03.027809145Z 37 PC: 12bdf | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:03.043200632Z 37 PC: 12bea | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:03.046033635Z 76 PC: 12b73 | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":7,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10427,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:28:02.943231694Z 255 PC: 1b07f | UNKNOWN!
2018-12-25T12:28:02.945544177Z 53 PC: 1b0ab | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:28:02.947679411Z 48 PC: 12a4c | Get DOS version
2018-12-25T12:28:02.949386732Z 53 PC: 12b82 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.952638454Z 53 PC: 12b8f | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:02.956081938Z 53 PC: 12b9c | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:02.957879875Z 53 PC: 12ba9 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:02.960034868Z 37 PC: 12bbd | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:02.96415439Z 74 PC: 12ad6 | Reallocate memory
2018-12-25T12:28:02.96681561Z 68 PC: 1896e | I/O control for devices (Set for = '��V')
2018-12-25T12:28:02.969486352Z 74 PC: 1905c | Reallocate memory
2018-12-25T12:28:02.972842798Z 74 PC: 1905c | Reallocate memory (See above)
2018-12-25T12:28:02.97498552Z 68 PC: 1896e | I/O control for devices (See above)
2018-12-25T12:28:02.977162642Z 68 PC: 15e01 | I/O control for devices (Set for = '')
2018-12-25T12:28:02.980837981Z 68 PC: 15e0a | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.982317286Z 68 PC: 15e12 | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.983917093Z 68 PC: 15e1b | I/O control for devices (Set for = 'd page size value ignored')
2018-12-25T12:28:02.986154628Z 51 PC: 15e22 | Get or set Ctrl-Break
2018-12-25T12:28:02.987813352Z 64 PC: 197c3 | Write file or device (Write 52 bytes on handle 2)
2018-12-25T12:28:02.99656598Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.012349478Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.019907184Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.027105975Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.036849711Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.043815789Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.050853622Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.054323843Z 64 PC: 197c3 | Write file or device (See above)
2018-12-25T12:28:03.058057538Z 37 PC: 12bc9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-25T12:28:03.059703933Z 37 PC: 12bd4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-25T12:28:03.061943009Z 37 PC: 12bdf | Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-25T12:28:03.063954276Z 37 PC: 12bea | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-25T12:28:03.065657407Z 76 PC: 12b73 | Terminate with return code (Return code = '1')