.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:56:01.715563236Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:56:01.718697991Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:56:01.7203083Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:56:01.721891246Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:56:01.723433326Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:56:01.726613396Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:56:01.739561255Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:56:01.74096815Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:56:01.743256163Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:56:01.745207582Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:56:01.747536832Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:56:01.750500425Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:56:01.752651801Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:56:01.754477754Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:56:01.757410138Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:56:01.759214081Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:56:01.760927042Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:56:01.762892689Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:56:01.765393051Z | 53 | PC: 139fa | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:56:01.766840172Z | 37 | PC: 13a0f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:56:01.768082007Z | 37 | PC: 13a17 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:56:01.770464157Z | 37 | PC: 13a1f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:56:01.77199239Z | 37 | PC: 13a27 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:56:01.776248233Z | 68 | PC: 1446e | I/O control for devices (Set for = '') |
| 2018-12-17T22:56:01.786278626Z | 42 | PC: 12af1 | Get date 0x12af1: mov byte ptr [bp - 2], dl 0x12af4: mov al, byte ptr [bp - 2] 0x12af7: mov byte ptr [bp - 1], al 0x12afa: mov al, byte ptr [bp - 1] 0x12afd: leave 0x12afe: ret 0x12aff: mov al, 3 0x12b01: iret 0x12b02: ret 0x12b03: add ax, 0x2e2a 0x12b06: inc bp 0x12b07: pop ax 0x12b08: inc bp 0x12b09: or ax, word ptr [bp + di + 0x4f] 0x12b0c: dec bp 0x12b0d: dec bp 0x12b0e: inc cx 0x12b0f: dec si 0x12b10: inc sp 0x12b11: inc bx |
| 2018-12-17T22:56:01.789327429Z | 44 | PC: 145a5 | Get time 0x145a5: mov word ptr [0x44], cx 0x145a9: mov word ptr [0x46], dx 0x145ad: retf 0x145ae: call 0x145f5 0x145b1: jb 0x145c2 0x145b3: mov cx, word ptr es:[di + 4] 0x145b7: cmp cx, 1 0x145ba: je 0x145c2 0x145bc: xor bx, bx 0x145be: push cs 0x145bf: call 0x24131 0x145c2: retf 4 0x145c5: call 0x145f5 0x145c8: jb 0x145dd 0x145ca: mov ax, cx 0x145cc: mov dx, bx 0x145ce: mov cx, word ptr es:[di + 4] 0x145d2: cmp cx, 1 0x145d5: je 0x145dd 0x145d7: xor bx, bx |
| 2018-12-17T22:56:01.792382674Z | 48 | PC: 1407f | Get DOS version |
| 2018-12-17T22:56:01.796588553Z | 67 | PC: 1368f | Get or set file attributes |
| 2018-12-17T22:56:01.803345049Z | 67 | PC: 136b6 | Get or set file attributes |
| 2018-12-17T22:56:01.821034594Z | 61 | PC: 13ebd | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:56:01.830881771Z | 66 | PC: 1460f | Move file pointer |
| 2018-12-17T22:56:01.832670304Z | 66 | PC: 1461d | Move file pointer |
| 2018-12-17T22:56:01.834696234Z | 66 | PC: 1462b | Move file pointer |
| 2018-12-17T22:56:01.83745429Z | 66 | PC: 13fef | Move file pointer |
| 2018-12-17T22:56:01.839453059Z | 63 | PC: 13f90 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:56:01.842755229Z | 63 | PC: 13f90 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:56:01.848569232Z | 66 | PC: 13fef | Move file pointer |
| 2018-12-17T22:56:01.865361711Z | 63 | PC: 13f90 | Read file or device (Read 6018 bytes on handle 5) |
| 2018-12-17T22:56:01.874241258Z | 66 | PC: 13fef | Move file pointer |
| 2018-12-17T22:56:01.876272077Z | 63 | PC: 13f90 | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:56:01.879627086Z | 62 | PC: 13f0d | Close file |
| 2018-12-17T22:56:01.891779649Z | 61 | PC: 13ebd | Open file (Filename = 'C:\WINBOOT.QG') |
| 2018-12-17T22:56:01.899057384Z | 60 | PC: 13ebd | Create or truncate file |
| 2018-12-17T22:56:02.23585668Z | 64 | PC: 13f90 | Write file or device (Write 6018 bytes on handle 5) |
| 2018-12-17T22:56:02.247538667Z | 62 | PC: 13f0d | Close file |
| 2018-12-17T22:56:02.256378751Z | 61 | PC: 13ebd | Open file (Filename = 'C:\CONFIG.SYS') |
| 2018-12-17T22:56:02.264920203Z | 66 | PC: 1460f | Move file pointer |
| 2018-12-17T22:56:02.267126452Z | 66 | PC: 1461d | Move file pointer |
| 2018-12-17T22:56:02.269291252Z | 66 | PC: 1462b | Move file pointer |
| 2018-12-17T22:56:02.272443199Z | 66 | PC: 13fef | Move file pointer |
| 2018-12-17T22:56:02.275431749Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.282620588Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.288403002Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.292141101Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.295855406Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.302575723Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.307922879Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.313642695Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.317204993Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.321562086Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.325293483Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.329097708Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.333655007Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.337723348Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.341424187Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.345841013Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.349860531Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.353557915Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.358344415Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.362102943Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.366636749Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.37033366Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.375051843Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.378753975Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.383008896Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.388130728Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.392204699Z | 64 | PC: 13f90 | Write file or device (Write 1 bytes on handle 5) |
| 2018-12-17T22:56:02.395868157Z | 62 | PC: 13f0d | Close file |
| 2018-12-17T22:56:02.404782712Z | 53 | PC: 1378e | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:56:02.407161395Z | 37 | PC: 137aa | Set interrupt vector (Interrupt = '228' AKA 'UNKNOWN!') |
| 2018-12-17T22:56:02.409121691Z | 37 | PC: 137aa | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:56:02.412225628Z | 37 | PC: 13010 | Set interrupt vector (Interrupt = '227' AKA 'UNKNOWN!') |
| 2018-12-17T22:56:02.414443508Z | 98 | PC: 13010 | Get current PSP |
| 2018-12-17T22:56:02.416394367Z | 49 | PC: 13010 | Terminate and stay resident (Return code = '0' | Memory size = '2815') |