.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:54:56.311083311Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:54:56.312554725Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:54:56.314153514Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:54:56.315473324Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:54:56.316791746Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:54:56.31886429Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:56.320501273Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:54:56.322156048Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:54:56.324515107Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:54:56.326200523Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:54:56.327525061Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:54:56.329459793Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:54:56.330736896Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:54:56.332276568Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:54:56.334324543Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:54:56.33651743Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:54:56.337733491Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:54:56.33912343Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:54:56.340793344Z | 53 | PC: 132a2 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:54:56.342429854Z | 37 | PC: 132b7 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:54:56.343986056Z | 37 | PC: 132bf | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:54:56.346206221Z | 37 | PC: 132c7 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:56.347857691Z | 37 | PC: 132cf | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:54:56.34949991Z | 68 | PC: 1363f | I/O control for devices (Set for = '') |
| 2018-12-17T22:54:56.351615613Z | 51 | PC: 1318d | Get or set Ctrl-Break |
| 2018-12-17T22:54:56.352584186Z | 44 | PC: 13b8b | Get time 0x13b8b: mov word ptr [0x3e], cx 0x13b8f: mov word ptr [0x40], dx 0x13b93: retf 0x13b94: mov bx, sp 0x13b96: push ds 0x13b97: les di, ptr ss:[bx + 8] 0x13b9b: lds si, ptr ss:[bx + 4] 0x13b9f: cld 0x13ba0: xor ax, ax 0x13ba2: stosw word ptr es:[di], ax 0x13ba3: mov ax, 0xd7b0 0x13ba6: stosw word ptr es:[di], ax 0x13ba7: xor ax, ax 0x13ba9: mov cx, 0x16 0x13bac: rep stosd dword ptr es:[di], eax 0x13bae: lodsb al, byte ptr [si] 0x13baf: cmp al, 0x4f 0x13bb1: jbe 0x13bb5 0x13bb3: mov al, 0x4f 0x13bb5: mov cl, al |
| 2018-12-17T22:54:56.355579001Z | 26 | PC: 131f8 | Set disk transfer address |
| 2018-12-17T22:54:56.358064899Z | 78 | PC: 13204 | Find first file |
| 2018-12-17T22:54:56.365094768Z | 61 | PC: 13c0a | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:54:56.37235Z | 66 | PC: 13d3c | Move file pointer |
| 2018-12-17T22:54:56.37502141Z | 63 | PC: 13cdd | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:54:56.382472056Z | 62 | PC: 13c5a | Close file |
| 2018-12-17T22:54:56.384613823Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.386373422Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.390793494Z | 60 | PC: 13c0a | Create or truncate file |
| 2018-12-17T22:54:56.410979077Z | 61 | PC: 13c0a | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:54:56.419403247Z | 63 | PC: 13cdd | Read file or device (Read 5520 bytes on handle 6) |
| 2018-12-17T22:54:56.427856732Z | 64 | PC: 13cdd | Write file or device (Write 5520 bytes on handle 5) |
| 2018-12-17T22:54:56.437196322Z | 62 | PC: 13c5a | Close file |
| 2018-12-17T22:54:56.439757172Z | 26 | PC: 131f8 | Set disk transfer address |
| 2018-12-17T22:54:56.441237225Z | 78 | PC: 13204 | Find first file |
| 2018-12-17T22:54:56.447320021Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.44839214Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.45830123Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.45975679Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.463195803Z | 26 | PC: 131f8 | Set disk transfer address |
| 2018-12-17T22:54:56.465450513Z | 78 | PC: 13204 | Find first file |
| 2018-12-17T22:54:56.472140233Z | 26 | PC: 131f8 | Set disk transfer address |
| 2018-12-17T22:54:56.473304018Z | 78 | PC: 13204 | Find first file |
| 2018-12-17T22:54:56.484539472Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.486654482Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.491000257Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.492730137Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.497033162Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.49816642Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.502619386Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.504128318Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.508121833Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.50926733Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.514067021Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.51571865Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.523563325Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.52573455Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.530625983Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.532340732Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.537985146Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.539087906Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.543313189Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.545441611Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.549502605Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.550608684Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.555535097Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.557187783Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.562529973Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.564740301Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.569109236Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.570226035Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.578110586Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.580296311Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.584651877Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.585774231Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.590366499Z | 26 | PC: 131f8 | Set disk transfer address |
| 2018-12-17T22:54:56.591592114Z | 78 | PC: 13204 | Find first file |
| 2018-12-17T22:54:56.598669019Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.600405909Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.60387185Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.604994709Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.609106746Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.610684228Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.614227636Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.616843302Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.620323559Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.621711858Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.625761408Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.626927719Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.641942996Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.643796998Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.647327078Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.648524644Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.652558555Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.654075399Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.657760375Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.659723516Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.663505842Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.664653429Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.668842191Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.670249918Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.673934086Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.684505376Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.688086179Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.689249519Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.69610014Z | 26 | PC: 1321c | Set disk transfer address |
| 2018-12-17T22:54:56.697585616Z | 79 | PC: 13221 | Find next file |
| 2018-12-17T22:54:56.701784861Z | 61 | PC: 13c0a | Open file (Filename = 'c:\DOS\MSCDEX.EXE') |
| 2018-12-17T22:54:56.709640791Z | 66 | PC: 13d3c | Move file pointer |
| 2018-12-17T22:54:56.711874907Z | 63 | PC: 13cdd | Read file or device (Read 5520 bytes on handle 6) |
| 2018-12-17T22:54:56.72077275Z | 64 | PC: 13cdd | Write file or device (Write 5520 bytes on handle 5) |
| 2018-12-17T22:54:56.73164425Z | 63 | PC: 13cdd | Read file or device (Read 5520 bytes on handle 6) |
| 2018-12-17T22:54:56.740634452Z | 64 | PC: 13cdd | Write file or device (Write 5520 bytes on handle 5) |
| 2018-12-17T22:54:56.751120482Z | 63 | PC: 13cdd | Read file or device (Read 5520 bytes on handle 6) |
| 2018-12-17T22:54:56.760715125Z | 64 | PC: 13cdd | Write file or device (Write 5520 bytes on handle 5) |
| 2018-12-17T22:54:56.771023183Z | 63 | PC: 13cdd | Read file or device (Read 5520 bytes on handle 6) |
| 2018-12-17T22:54:56.778812092Z | 64 | PC: 13cdd | Write file or device (Write 3281 bytes on handle 5) |
| 2018-12-17T22:54:56.788786814Z | 63 | PC: 13cdd | Read file or device (Read 5520 bytes on handle 6) |
| 2018-12-17T22:54:56.791804938Z | 62 | PC: 13c5a | Close file |
| 2018-12-17T22:54:56.793778751Z | 62 | PC: 13c5a | Close file |
| 2018-12-17T22:54:56.803832042Z | 65 | PC: 13d53 | Delete file (Filename = 'c:\DOS\MSCDEX.EXE') |
| 2018-12-17T22:54:57.142637079Z | 86 | PC: 13d89 | Rename file |
| 2018-12-17T22:54:57.148607618Z | 64 | PC: 13742 | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T22:54:57.150439244Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:54:57.152421027Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:54:57.153770857Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:54:57.155099519Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:54:57.157328907Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:54:57.158579842Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:54:57.159612457Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:54:57.161551486Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:54:57.162716226Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:54:57.163849246Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:54:57.165506458Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:54:57.166746728Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:54:57.167926228Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:54:57.169550491Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:54:57.170968939Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:54:57.172514362Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:54:57.175086976Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:54:57.176640909Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:54:57.178208115Z | 37 | PC: 133b6 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:54:57.18078259Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.183326225Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.186190007Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.189202911Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.192208421Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.194389276Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.204237417Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.206465755Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.208737587Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.211693145Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.214100662Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.216399658Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.219260768Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.221773543Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.224091271Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.227485781Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.230008187Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.232605287Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.241286956Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.243529859Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.245760153Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.24876721Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.251117558Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.25351114Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.256661624Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.259322032Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.26206068Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.265007731Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.267310863Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.26969583Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.273086175Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.275371839Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.277435208Z | 6 | PC: 1343d | Direct console I/O |
| 2018-12-17T22:54:57.282812707Z | 76 | PC: 133f5 | Terminate with return code (Return code = '17') |