.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:54:04.741121444Z | 75 | PC: 13462 | Execute program |
| 2018-12-17T22:54:04.74310639Z | 46 | PC: 13469 | Set verify flag |
| 2018-12-17T22:54:04.744737028Z | 47 | PC: 1346d | Get disk transfer address |
| 2018-12-17T22:54:04.746197621Z | 52 | PC: 134e4 | Get InDOS flag pointer |
| 2018-12-17T22:54:04.74849418Z | 67 | PC: 1352b | Get or set file attributes |
| 2018-12-17T22:54:04.753969363Z | 98 | PC: 13536 | Get current PSP |
| 2018-12-17T22:54:04.754955435Z | 26 | PC: 13b82 | Set disk transfer address |
| 2018-12-17T22:54:04.756511773Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.758038099Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.759553923Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:04.765402731Z | 61 | PC: 9e422 | Open file (Filename = 'C:\COMMAND.COM') |
| 2018-12-17T22:54:04.769846113Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:04.771021508Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:04.772366198Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:04.780237356Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.781576973Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: jne 0x9e3fa 0x9e425: int 0x20 0x9e427: and byte ptr [bx + 0x72], al 0x9e42a: outsw dx, word ptr [si] 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:04.783943964Z | 67 | PC: 13499 | Get or set file attributes |
| 2018-12-17T22:54:04.791282195Z | 78 | PC: 13b82 | Find first file |
| 2018-12-17T22:54:04.798367883Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.799612779Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.801172135Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:04.807664657Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:04.81492824Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:04.816517718Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:04.818695197Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:04.820716157Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.822659267Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: xchg ax, di 0x9e424: add bp, cx 0x9e426: and byte ptr [bx + si], ah 0x9e428: inc di 0x9e429: jb 0x9e49a 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:04.825751218Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:04.831996524Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:04.834892372Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.836881855Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.838618752Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.840192932Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: xchg ax, di 0x9e424: add bp, cx 0x9e426: and byte ptr [bx + si], ah 0x9e428: inc di 0x9e429: jb 0x9e49a 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:04.843684277Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:04.849834676Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:04.852643672Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.854762306Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.856343065Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:04.86260841Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:04.869982328Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:04.871712418Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:04.873104813Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:04.875416492Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.878003256Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: sbb ax, word ptr [bx + si] 0x9e425: int 0x20 0x9e427: and byte ptr [bx + 0x72], al 0x9e42a: outsw dx, word ptr [si] 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:04.881110691Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:04.888020199Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:04.892528636Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.895303963Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.897515581Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:04.904635398Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:04.911865123Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:04.913398049Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:04.915360688Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:04.917469837Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.918789959Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: pop sp 0x9e424: add ch, cl 0x9e426: and byte ptr [bx + si], ah 0x9e428: inc di 0x9e429: jb 0x9e49a 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:04.922133046Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:04.928465245Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:04.93122775Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.932391653Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.936356362Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:04.942772796Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:04.950358054Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:04.952847042Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:04.954759719Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:04.956929311Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.960053434Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: sbb ax, 0xcd00 0x9e426: and byte ptr [bx + si], ah 0x9e428: inc di 0x9e429: jb 0x9e49a 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:04.962634932Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:04.969533657Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:04.973222757Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.974932817Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.977015761Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:04.984611559Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:04.991954529Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:04.993481476Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:04.995243609Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:04.997955564Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:04.999260801Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: sbb ax, 0xcd00 0x9e426: and byte ptr [bx + si], ah 0x9e428: inc di 0x9e429: jb 0x9e49a 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:05.001739518Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:05.008514319Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:05.011315627Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.012494123Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.014529119Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:05.02077421Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:05.027905712Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:05.030174291Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:05.031772574Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:05.033908341Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.035953548Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: cmc 0x9e424: add bp, cx 0x9e426: and byte ptr [bx + si], ah 0x9e428: inc di 0x9e429: jb 0x9e49a 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:05.039148207Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:05.045302405Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:05.048444354Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.049746531Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.051331321Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:05.058349777Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:05.065508916Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:05.067442956Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:05.06946026Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:05.078516723Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.079700307Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: sbb ax, 0xcd00 0x9e426: and byte ptr [bx + si], ah 0x9e428: inc di 0x9e429: jb 0x9e49a 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:05.08203254Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:05.088694898Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:05.091651994Z | 53 | PC: 9e422 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.093047457Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.095164869Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:05.101533689Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:05.108769768Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:05.110843348Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:05.113595499Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:05.115853642Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:05.136671079Z | 61 | PC: 9e422 | Open file |
| 2018-12-17T22:54:05.144777943Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:05.146371073Z | 63 | PC: 9e422 | Read file or device (Read 2075 bytes on handle 5) |
| 2018-12-17T22:54:05.155282053Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:05.156979857Z | 64 | PC: 9e422 | Write file or device (Write 5 bytes on handle 5) |
| 2018-12-17T22:54:05.163845917Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:05.166509928Z | 64 | PC: 9e422 | Write file or device (Write 24 bytes on handle 5) |
| 2018-12-17T22:54:05.169631983Z | 66 | PC: 9e422 | Move file pointer |
| 2018-12-17T22:54:05.171267644Z | 44 | PC: 9e422 | Get time 0x9e422: ret 0x9e423: fist dword ptr [bp + di] 0x9e425: int 0x20 0x9e427: and byte ptr [bx + 0x72], al 0x9e42a: outsw dx, word ptr [si] 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax 0x9e446: sbb al, byte ptr [bx + di] |
| 2018-12-17T22:54:05.175736954Z | 64 | PC: 9e422 | Write file or device (Write 2075 bytes on handle 5) |
| 2018-12-17T22:54:05.186223596Z | 87 | PC: 9e422 | Get or set file date and time |
| 2018-12-17T22:54:05.188281955Z | 62 | PC: 9e422 | Close file |
| 2018-12-17T22:54:05.197202639Z | 67 | PC: 9e422 | Get or set file attributes |
| 2018-12-17T22:54:05.209379419Z | 37 | PC: 9e422 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:05.210835175Z | 42 | PC: 9e422 | Get date 0x9e422: ret 0x9e423: fist dword ptr [bp + di] 0x9e425: int 0x20 0x9e427: and byte ptr [bx + 0x72], al 0x9e42a: outsw dx, word ptr [si] 0x9e42b: and byte ptr [esi + 0x34], dh 0x9e42f: xor byte ptr cs:[bx + si], ah 0x9e432: imul si, word ptr [bp + di + 0x20], 0x6568 0x9e437: jb 0x9e49e 0x9e439: and word ptr [bx + si], sp 0x9e43b: dec ax 0x9e43c: popaw 0x9e43d: dec ax 0x9e43e: popaw 0x9e43f: dec ax 0x9e440: popaw 0x9e441: and ax, di 0x9e443: inc ax 0x9e444: sbb word ptr [bx + si], ax |
| 2018-12-17T22:54:05.213144896Z | 67 | PC: 134b8 | Get or set file attributes |
| 2018-12-17T22:54:05.217612183Z | 79 | PC: 13b82 | Find next file |
| 2018-12-17T22:54:05.219303026Z | 26 | PC: 13b82 | Set disk transfer address |
| 2018-12-17T22:54:05.220275328Z | 98 | PC: 9e422 | Get current PSP |
| 2018-12-17T22:54:05.221835658Z | 76 | PC: 133e7 | Terminate with return code (Return code = '0') |