.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:52:57.45168089Z | 48 | PC: 12a4c | Get DOS version |
| 2018-12-17T22:52:57.453626224Z | 53 | PC: 12bab | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:52:57.455112777Z | 53 | PC: 12bb8 | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output') |
| 2018-12-17T22:52:57.456911205Z | 53 | PC: 12bc5 | Get interrupt vector (Interrupt = '5' AKA 'Printer output') |
| 2018-12-17T22:52:57.458285807Z | 53 | PC: 12bd2 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O') |
| 2018-12-17T22:52:57.460915136Z | 37 | PC: 12be6 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:52:57.463149563Z | 74 | PC: 12af4 | Reallocate memory |
| 2018-12-17T22:52:57.465688613Z | 68 | PC: 14719 | I/O control for devices (Set for = '����') |
| 2018-12-17T22:52:57.468897581Z | 68 | PC: 14719 | I/O control for devices (Set for = '����') |
| 2018-12-17T22:52:57.472046296Z | 42 | PC: 139e4 | Get date 0x139e4: mov word ptr [si], cx
0x139e6: mov word ptr [si + 2], dx
0x139e9: pop si
0x139ea: pop bp
0x139eb: ret
0x139ec: push bp
0x139ed: mov bp, sp
0x139ef: push si
0x139f0: mov si, word ptr [bp + 4]
0x139f3: mov ah, 0x2c
0x139f5: int 0x21
0x139f7: mov word ptr [si], cx
0x139f9: mov word ptr [si + 2], dx
0x139fc: pop si
0x139fd: pop bp
0x139fe: ret
0x139ff: push bp
0x13a00: mov bp, sp
0x13a02: sub sp, 6
0x13a05: push si
|
| 2018-12-17T22:52:57.47475847Z | 44 | PC: 139f7 | Get time 0x139f7: mov word ptr [si], cx
0x139f9: mov word ptr [si + 2], dx
0x139fc: pop si
0x139fd: pop bp
0x139fe: ret
0x139ff: push bp
0x13a00: mov bp, sp
0x13a02: sub sp, 6
0x13a05: push si
0x13a06: push di
0x13a07: mov di, word ptr [bp + 6]
0x13a0a: push di
0x13a0b: mov ax, word ptr [bp + 0xc]
0x13a0e: or ax, 2
0x13a11: push ax
0x13a12: call 0x14bd1
0x13a15: mov di, ax
0x13a17: or ax, ax
0x13a19: jne 0x13a26
0x13a1b: mov word ptr [0x92], 2
|
| 2018-12-17T22:52:57.479297296Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.480794559Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.482241156Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.490248187Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.491908817Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.493472284Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.501920193Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.504885633Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.506185345Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.51471652Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.517365366Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.520433359Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.522918677Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.526729266Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.52843528Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.531436307Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.534093839Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.535641687Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.537197309Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.540702935Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.54214821Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.543475122Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.546287705Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.549187252Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.551213829Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.553717833Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.555586483Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.558444471Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.560362925Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.561777071Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.563010769Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.566550538Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.568145234Z | 25 | PC: 144cd | Get default drive |
| 2018-12-17T22:52:57.569593875Z | 71 | PC: 14581 | Get current directory |
| 2018-12-17T22:52:57.573067841Z | 14 | PC: 144d9 | Set default drive (Drive = 'C') |
| 2018-12-17T22:52:57.575336362Z | 14 | PC: 144d9 | Set default drive (Drive = 'C') |
| 2018-12-17T22:52:57.576698311Z | 59 | PC: 144bd | Change current directory |
| 2018-12-17T22:52:57.580426053Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.582853823Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.584659786Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.590896812Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.593327748Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.594891656Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.596610374Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.600719143Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.603453699Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.605246527Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.607830521Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.611081588Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.613062259Z | 42 | PC: 139e4 | Get date 0x139e4: mov word ptr [si], cx
0x139e6: mov word ptr [si + 2], dx
0x139e9: pop si
0x139ea: pop bp
0x139eb: ret
0x139ec: push bp
0x139ed: mov bp, sp
0x139ef: push si
0x139f0: mov si, word ptr [bp + 4]
0x139f3: mov ah, 0x2c
0x139f5: int 0x21
0x139f7: mov word ptr [si], cx
0x139f9: mov word ptr [si + 2], dx
0x139fc: pop si
0x139fd: pop bp
0x139fe: ret
0x139ff: push bp
0x13a00: mov bp, sp
0x13a02: sub sp, 6
0x13a05: push si
|
| 2018-12-17T22:52:57.616987812Z | 44 | PC: 139f7 | Get time 0x139f7: mov word ptr [si], cx
0x139f9: mov word ptr [si + 2], dx
0x139fc: pop si
0x139fd: pop bp
0x139fe: ret
0x139ff: push bp
0x13a00: mov bp, sp
0x13a02: sub sp, 6
0x13a05: push si
0x13a06: push di
0x13a07: mov di, word ptr [bp + 6]
0x13a0a: push di
0x13a0b: mov ax, word ptr [bp + 0xc]
0x13a0e: or ax, 2
0x13a11: push ax
0x13a12: call 0x14bd1
0x13a15: mov di, ax
0x13a17: or ax, ax
0x13a19: jne 0x13a26
0x13a1b: mov word ptr [0x92], 2
|
| 2018-12-17T22:52:57.621211056Z | 59 | PC: 144bd | Change current directory |
| 2018-12-17T22:52:57.627959593Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.630206243Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.631550348Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.641129822Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.64353504Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.644921655Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.646427584Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.650850683Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.652529015Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.653783492Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.655238595Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.65929775Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.661024624Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.662574395Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.664756715Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.668076881Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.669514873Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.671902668Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.673400181Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.676951422Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.679315162Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.680859233Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.682359862Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.687574417Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.689456783Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.690984603Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.69330423Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.700111207Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.701644587Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.703682836Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.705253035Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.70864106Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.710217882Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.712053269Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.71333642Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.716715287Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.71949591Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.720915818Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.722236649Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.726784612Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.728420495Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.729820635Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.732203842Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.735646699Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.737294474Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.739130222Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.740879528Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.744153449Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.745864673Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.747652191Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.749008749Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.752394168Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.754707374Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.75627573Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.757794182Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.762107765Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.763639002Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.765168545Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.767933569Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.77326273Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.774573873Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.776374795Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.777460134Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.779960671Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.782469314Z | 47 | PC: 1454f | Get disk transfer address |
| 2018-12-17T22:52:57.783696369Z | 26 | PC: 14558 | Set disk transfer address |
| 2018-12-17T22:52:57.784789582Z | 79 | PC: 1455c | Find next file |
| 2018-12-17T22:52:57.787912268Z | 26 | PC: 14564 | Set disk transfer address |
| 2018-12-17T22:52:57.789114576Z | 42 | PC: 139e4 | Get date 0x139e4: mov word ptr [si], cx
0x139e6: mov word ptr [si + 2], dx
0x139e9: pop si
0x139ea: pop bp
0x139eb: ret
0x139ec: push bp
0x139ed: mov bp, sp
0x139ef: push si
0x139f0: mov si, word ptr [bp + 4]
0x139f3: mov ah, 0x2c
0x139f5: int 0x21
0x139f7: mov word ptr [si], cx
0x139f9: mov word ptr [si + 2], dx
0x139fc: pop si
0x139fd: pop bp
0x139fe: ret
0x139ff: push bp
0x13a00: mov bp, sp
0x13a02: sub sp, 6
0x13a05: push si
|
| 2018-12-17T22:52:57.790991532Z | 44 | PC: 139f7 | Get time 0x139f7: mov word ptr [si], cx
0x139f9: mov word ptr [si + 2], dx
0x139fc: pop si
0x139fd: pop bp
0x139fe: ret
0x139ff: push bp
0x13a00: mov bp, sp
0x13a02: sub sp, 6
0x13a05: push si
0x13a06: push di
0x13a07: mov di, word ptr [bp + 6]
0x13a0a: push di
0x13a0b: mov ax, word ptr [bp + 0xc]
0x13a0e: or ax, 2
0x13a11: push ax
0x13a12: call 0x14bd1
0x13a15: mov di, ax
0x13a17: or ax, ax
0x13a19: jne 0x13a26
0x13a1b: mov word ptr [0x92], 2
|
| 2018-12-17T22:52:57.795056428Z | 61 | PC: 14a0c | Open file (Filename = 'A:\') |
| 2018-12-17T22:52:57.799756807Z | 61 | PC: 14a0c | Open file (Filename = 'A:\POWER.EXE') |
| 2018-12-17T22:52:57.807419923Z | 61 | PC: 14a0c | Open file (Filename = '') |
| 2018-12-17T22:52:57.811144589Z | 67 | PC: 144ec | Get or set file attributes |
| 2018-12-17T22:52:57.81800717Z | 14 | PC: 144d9 | Set default drive (Drive = 'A') |
| 2018-12-17T22:52:57.819827951Z | 59 | PC: 144bd | Change current directory |
| 2018-12-17T22:52:57.825270223Z | 59 | PC: 144bd | Change current directory |
| 2018-12-17T22:52:57.829014958Z | 25 | PC: 144cd | Get default drive |
| 2018-12-17T22:52:57.830773672Z | 71 | PC: 14581 | Get current directory |
| 2018-12-17T22:52:57.835575932Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.837694782Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.83933852Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.846901417Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.849145742Z | 71 | PC: 14581 | Get current directory |
| 2018-12-17T22:52:57.852856403Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.85533011Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.856979939Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.864118238Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.866966008Z | 71 | PC: 14581 | Get current directory |
| 2018-12-17T22:52:57.870407452Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.871954187Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.873988198Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.881228469Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.883281005Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.88472117Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.887194195Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.894025147Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.895729238Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.898655735Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.900438444Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.90789989Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.91080682Z | 47 | PC: 1451d | Get disk transfer address |
| 2018-12-17T22:52:57.911991105Z | 26 | PC: 14526 | Set disk transfer address |
| 2018-12-17T22:52:57.913134984Z | 78 | PC: 14530 | Find first file |
| 2018-12-17T22:52:57.921083164Z | 26 | PC: 14538 | Set disk transfer address |
| 2018-12-17T22:52:57.923052874Z | 37 | PC: 12bf2 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:52:57.924357355Z | 37 | PC: 12bfd | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output') |
| 2018-12-17T22:52:57.926573247Z | 37 | PC: 12c08 | Set interrupt vector (Interrupt = '5' AKA 'Printer output') |
| 2018-12-17T22:52:57.927910099Z | 37 | PC: 12c13 | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O') |
| 2018-12-17T22:52:57.929294129Z | 64 | PC: 12c5f | Write file or device (Write 25 bytes on handle 2) |
| 2018-12-17T22:52:57.934974248Z | 76 | PC: 12b9c | Terminate with return code (Return code = '255') |
