.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:58:18.847107732Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:58:18.849362475Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:58:18.854232715Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:58:18.856142018Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:58:18.858100828Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:58:18.860471582Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:58:18.861813533Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:58:18.863165169Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:58:18.869518894Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:58:18.870458476Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:58:18.871406654Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:58:18.880721522Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:58:18.881787699Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:58:18.882845176Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:58:18.884273643Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:58:18.885492921Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:58:18.886667863Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:58:18.888131395Z | 53 | PC: 13886 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:58:18.890727292Z | 37 | PC: 1389b | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:58:18.891873077Z | 37 | PC: 138a3 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:58:18.894957804Z | 37 | PC: 138ab | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:58:18.902321772Z | 37 | PC: 138b3 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:58:18.904447489Z | 68 | PC: 13dea | I/O control for devices (Set for = '') |
| 2018-12-17T22:58:18.962843979Z | 37 | PC: 12ff7 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:58:18.965298844Z | 48 | PC: 1422f | Get DOS version |
| 2018-12-17T22:58:18.96738636Z | 61 | PC: 140e1 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:58:18.97443904Z | 63 | PC: 141b4 | Read file or device (Read 6624 bytes on handle 5) |
| 2018-12-17T22:58:18.981806296Z | 62 | PC: 14131 | Close file |
| 2018-12-17T22:58:18.983317841Z | 42 | PC: 13587 | Get date 0x13587: xor ah, ah
0x13589: les di, ptr [bp + 6]
0x1358c: stosw word ptr es:[di], ax
0x1358d: mov al, dl
0x1358f: les di, ptr [bp + 0xa]
0x13592: stosw word ptr es:[di], ax
0x13593: mov al, dh
0x13595: les di, ptr [bp + 0xe]
0x13598: stosw word ptr es:[di], ax
0x13599: xchg ax, cx
0x1359a: les di, ptr [bp + 0x12]
0x1359d: stosw word ptr es:[di], ax
0x1359e: pop bp
0x1359f: retf 0x10
0x135a2: push bp
0x135a3: mov bp, sp
0x135a5: mov cx, word ptr [bp + 0xa]
0x135a8: mov dh, byte ptr [bp + 8]
0x135ab: mov dl, byte ptr [bp + 6]
0x135ae: mov ah, 0x2b
|
| 2018-12-17T22:58:18.986910592Z | 26 | PC: 13617 | Set disk transfer address |
| 2018-12-17T22:58:18.989198571Z | 78 | PC: 13623 | Find first file |
| 2018-12-17T22:58:18.994516629Z | 61 | PC: 140e1 | Open file (Filename = 'C:\DOS�u
+�I��&��#�S��') |
| 2018-12-17T22:58:18.999313767Z | 60 | PC: 140e1 | Create or truncate file |
| 2018-12-17T22:58:19.00871478Z | 48 | PC: 1422f | Get DOS version |
| 2018-12-17T22:58:19.010453597Z | 42 | PC: 13587 | Get date 0x13587: xor ah, ah
0x13589: les di, ptr [bp + 6]
0x1358c: stosw word ptr es:[di], ax
0x1358d: mov al, dl
0x1358f: les di, ptr [bp + 0xa]
0x13592: stosw word ptr es:[di], ax
0x13593: mov al, dh
0x13595: les di, ptr [bp + 0xe]
0x13598: stosw word ptr es:[di], ax
0x13599: xchg ax, cx
0x1359a: les di, ptr [bp + 0x12]
0x1359d: stosw word ptr es:[di], ax
0x1359e: pop bp
0x1359f: retf 0x10
0x135a2: push bp
0x135a3: mov bp, sp
0x135a5: mov cx, word ptr [bp + 0xa]
0x135a8: mov dh, byte ptr [bp + 8]
0x135ab: mov dl, byte ptr [bp + 6]
0x135ae: mov ah, 0x2b
|
