.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:53:14.041840224Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:53:14.043236154Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:53:14.049266921Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:53:14.051505351Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:53:14.053728834Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:53:14.056673031Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:53:14.058401355Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:53:14.063654699Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:53:14.067621675Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:53:14.069583593Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:53:14.071655985Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:53:14.073812849Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:53:14.075332501Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:53:14.076957593Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:53:14.078877532Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:53:14.080382761Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:53:14.08174973Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:53:14.083005035Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:53:14.084700471Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:53:14.086426647Z | 37 | PC: 132bf | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:53:14.088083645Z | 37 | PC: 132c7 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:53:14.09634216Z | 37 | PC: 132cf | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:53:14.098707465Z | 37 | PC: 132d7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:53:14.104608746Z | 68 | PC: 13b35 | I/O control for devices (Set for = '') |
| 2018-12-17T22:53:14.107169244Z | 42 | PC: 13044 | Get date 0x13044: mov byte ptr [0x56], dh 0x13048: mov byte ptr [0x57], dl 0x1304c: cmp byte ptr [0x56], 4 0x13051: jne 0x13070 0x13053: cmp byte ptr [0x57], 0x1b 0x13058: jne 0x13070 0x1305a: mov di, 0x5a 0x1305d: push ds 0x1305e: push di 0x1305f: call 0x22a40 0x13062: mov ah, 0x40 0x13064: mov bx, 1 0x13067: lea dx, word ptr [0x5a] 0x1306b: mov cx, 0x26 0x1306e: int 0x21 0x13070: mov ah, 0x2c 0x13072: int 0x21 0x13074: mov byte ptr [0x58], ch 0x13078: cmp byte ptr [0x58], 0xc 0x1307d: jbe 0x130d8 |
| 2018-12-17T22:53:14.109513434Z | 44 | PC: 13074 | Get time 0x13074: mov byte ptr [0x58], ch 0x13078: cmp byte ptr [0x58], 0xc 0x1307d: jbe 0x130d8 0x1307f: mov byte ptr [0x2b2f], 0 0x13084: jmp 0x1308a 0x13086: inc byte ptr [0x2b2f] 0x1308a: mov al, byte ptr [0x2b2f] 0x1308d: push ax 0x1308e: mov di, 0x2b30 0x13091: push ds 0x13092: push di 0x13093: call 0x22f8f 0x13096: mov byte ptr [0x32e], 1 0x1309b: jmp 0x130a1 0x1309d: inc byte ptr [0x32e] 0x130a1: mov al, byte ptr [0x32e] 0x130a4: xor ah, ah 0x130a6: mov di, ax 0x130a8: mov cl, byte ptr [di + 0x2b2f] 0x130ac: mov al, byte ptr [0x32e] |
| 2018-12-17T22:53:14.111871832Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:53:14.114239469Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:53:14.116076807Z | 61 | PC: 13712 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:53:14.123517008Z | 63 | PC: 137e5 | Read file or device (Read 4992 bytes on handle 5) |
| 2018-12-17T22:53:14.146093401Z | 62 | PC: 13762 | Close file |
| 2018-12-17T22:53:14.148570633Z | 26 | PC: 13125 | Set disk transfer address |
| 2018-12-17T22:53:14.150094453Z | 78 | PC: 13131 | Find first file |
| 2018-12-17T22:53:14.157889024Z | 26 | PC: 13149 | Set disk transfer address |
| 2018-12-17T22:53:14.159040883Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T22:53:14.162485042Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:53:14.164215566Z | 26 | PC: 13125 | Set disk transfer address |
| 2018-12-17T22:53:14.165958615Z | 78 | PC: 13131 | Find first file |
| 2018-12-17T22:53:14.172891317Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:53:14.174828621Z | 67 | PC: 12b9e | Get or set file attributes |
| 2018-12-17T22:53:14.180440139Z | 61 | PC: 13712 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:53:14.187912043Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:53:14.189507632Z | 63 | PC: 137e5 | Read file or device (Read 4992 bytes on handle 5) |
| 2018-12-17T22:53:14.193068203Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:53:14.194972979Z | 64 | PC: 13743 | Write file or device (Write 0 bytes on handle 5) |
| 2018-12-17T22:53:14.197201268Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:53:14.199713423Z | 64 | PC: 137e5 | Write file or device (Write 4992 bytes on handle 5) |
| 2018-12-17T22:53:14.215237961Z | 62 | PC: 13762 | Close file |
| 2018-12-17T22:53:14.224371712Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:53:14.226691456Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:53:14.228559783Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:53:14.230693396Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:53:14.233572528Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:53:14.23561141Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:53:14.238078118Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:53:14.24092456Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:53:14.24235713Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:53:14.243702061Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:53:14.244989269Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:53:14.246727814Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:53:14.248078996Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:53:14.249348925Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:53:14.251273296Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:53:14.252865326Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:53:14.254625435Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:53:14.256693836Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:53:14.258498245Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:53:14.260221616Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:53:14.262758773Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:53:14.264451026Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:53:14.266111295Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:53:14.268740998Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:53:14.270220834Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:53:14.272452728Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:53:14.274970927Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:53:14.276637176Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:53:14.278288508Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:53:14.280485392Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:53:14.282152785Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:53:14.283846151Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:53:14.286302905Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:53:14.287957604Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:53:14.289618579Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:53:14.291703147Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:53:14.293610307Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:53:14.29525791Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:53:14.297021337Z | 41 | PC: 131dd | Parse filename |
| 2018-12-17T22:53:14.299406263Z | 41 | PC: 131eb | Parse filename |
| 2018-12-17T22:53:14.301276987Z | 75 | PC: 131f6 | Execute program |
| 2018-12-17T22:53:14.330534874Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:53:14.332966764Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:53:14.334395504Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:53:14.33578413Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:53:14.339005131Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:53:14.340424522Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:53:14.341749265Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:53:14.343837586Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:53:14.345147735Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:53:14.346504845Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:53:14.348812468Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:53:14.350237078Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:53:14.351546978Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:53:14.353902948Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:53:14.355760057Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:53:14.357144879Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:53:14.359940833Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:53:14.361393214Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:53:14.362730871Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:53:14.364372015Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:53:14.366762508Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:53:14.368241054Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:53:14.369587655Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:53:14.372444425Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:53:14.37403427Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:53:14.376082002Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:53:14.378659878Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:53:14.380375076Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:53:14.382064633Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:53:14.384130379Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:53:14.38558492Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:53:14.386744843Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:53:14.389025151Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:53:14.390448837Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:53:14.39228921Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:53:14.394954537Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:53:14.397519372Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:53:14.39953763Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:53:14.402453287Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:53:14.405724547Z | 61 | PC: 13712 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:53:14.413670507Z | 64 | PC: 137e5 | Write file or device (Write 4992 bytes on handle 5) |
| 2018-12-17T22:53:14.424080459Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:53:14.426099401Z | 64 | PC: 137e5 | Write file or device (Write 4992 bytes on handle 5) |
| 2018-12-17T22:53:14.42847135Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:53:14.430803213Z | 64 | PC: 137e5 | Write file or device (Write 4 bytes on handle 5) |
| 2018-12-17T22:53:14.434679313Z | 62 | PC: 13762 | Close file |
| 2018-12-17T22:53:14.443821733Z | 64 | PC: 1366d | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T22:53:14.445810161Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:53:14.447928621Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:53:14.44927587Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:53:14.450623714Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:53:14.452975326Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:53:14.454312891Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:53:14.455619061Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:53:14.458255153Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:53:14.459560499Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:53:14.460854708Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:53:14.463109908Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:53:14.46507766Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:53:14.467010401Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:53:14.470058258Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:53:14.471782917Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:53:14.474119139Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:53:14.476434528Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:53:14.477747255Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:53:14.479125803Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:53:14.481708414Z | 76 | PC: 13440 | Terminate with return code (Return code = '0') |