.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:58:23.064649231Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:58:23.066110718Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:58:23.068272291Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:58:23.069967788Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:58:23.071695355Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:58:23.078224127Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:58:23.079791483Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:58:23.081510815Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:58:23.083765112Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:58:23.085243651Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:58:23.086805857Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:58:23.088874716Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:58:23.090878612Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:58:23.092592253Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:58:23.09537318Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:58:23.09800115Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:58:23.100936527Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:58:23.103046513Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:58:23.10560396Z | 53 | PC: 147c2 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:58:23.107602177Z | 37 | PC: 147d7 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:58:23.109492299Z | 37 | PC: 147df | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:58:23.114635116Z | 37 | PC: 147e7 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:58:23.116454385Z | 37 | PC: 147ef | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:58:23.118580512Z | 68 | PC: 14b5f | I/O control for devices (Set for = '') |
| 2018-12-17T22:58:23.196675771Z | 37 | PC: 141e5 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:58:23.198203824Z | 42 | PC: 13e37 | Get date 0x13e37: xor ah, ah 0x13e39: les di, ptr [bp + 6] 0x13e3c: stosw word ptr es:[di], ax 0x13e3d: mov al, dl 0x13e3f: les di, ptr [bp + 0xa] 0x13e42: stosw word ptr es:[di], ax 0x13e43: mov al, dh 0x13e45: les di, ptr [bp + 0xe] 0x13e48: stosw word ptr es:[di], ax 0x13e49: xchg ax, cx 0x13e4a: les di, ptr [bp + 0x12] 0x13e4d: stosw word ptr es:[di], ax 0x13e4e: pop bp 0x13e4f: retf 0x10 0x13e52: push bp 0x13e53: mov bp, sp 0x13e55: mov cx, word ptr [bp + 0xa] 0x13e58: mov dh, byte ptr [bp + 8] 0x13e5b: mov dl, byte ptr [bp + 6] 0x13e5e: mov ah, 0x2b |
| 2018-12-17T22:58:23.201577465Z | 48 | PC: 154e9 | Get DOS version |
| 2018-12-17T22:58:23.203950315Z | 61 | PC: 152d8 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:58:23.211296112Z | 66 | PC: 15474 | Move file pointer |
| 2018-12-17T22:58:23.213269521Z | 66 | PC: 15482 | Move file pointer |
| 2018-12-17T22:58:23.216487931Z | 66 | PC: 15490 | Move file pointer |
| 2018-12-17T22:58:23.218486968Z | 66 | PC: 1540a | Move file pointer |
| 2018-12-17T22:58:23.224130206Z | 63 | PC: 1536a | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:58:23.229693092Z | 63 | PC: 1536a | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:58:23.232957708Z | 63 | PC: 1536a | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:58:23.236487883Z | 63 | PC: 1536a | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T22:58:23.240060238Z | 62 | PC: 15328 | Close file |
| 2018-12-17T22:58:23.244650275Z | 61 | PC: 152d8 | Open file (Filename = 'C:\DOS\DIR.COM') |
| 2018-12-17T22:58:23.256437972Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:58:23.25834649Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:58:23.260783991Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:58:23.262681127Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:58:23.264504584Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:58:23.267336718Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:58:23.269588309Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:58:23.271470527Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:58:23.274233471Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:58:23.276814172Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:58:23.278690118Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:58:23.28063313Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:58:23.283169247Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:58:23.284732355Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:58:23.286158726Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:58:23.289261418Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:58:23.290633667Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:58:23.29230585Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:58:23.294238523Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:58:23.298703916Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:58:23.300791119Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:58:23.303971458Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:58:23.305503357Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:58:23.311294221Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:58:23.313076241Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:58:23.314950524Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:58:23.316353932Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:58:23.317811661Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:58:23.319791172Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:58:23.32116754Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:58:23.322476781Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:58:23.324902801Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:58:23.326258369Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:58:23.328202924Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:58:23.330663599Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:58:23.332468561Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:58:23.334039955Z | 53 | PC: 13fb6 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:58:23.336807557Z | 37 | PC: 13fbf | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:58:23.338569589Z | 41 | PC: 1403f | Parse filename |
| 2018-12-17T22:58:23.339938252Z | 41 | PC: 1404d | Parse filename |
| 2018-12-17T22:58:23.341833764Z | 75 | PC: 14058 | Execute program |
| 2018-12-17T22:58:23.367322584Z | 80 | PC: 195e9 | Set current PSP |
| 2018-12-17T22:58:23.368565711Z | 48 | PC: 195ee | Get DOS version |
| 2018-12-17T22:58:23.370686938Z | 99 | PC: 1fdd0 | Get DBCS lead byte table pointer |
| 2018-12-17T22:58:23.373870321Z | 101 | PC: 19674 | Get extended country info |
| 2018-12-17T22:58:23.375305118Z | 99 | PC: 1967a | Get DBCS lead byte table pointer |
| 2018-12-17T22:58:23.377110642Z | 74 | PC: 196dc | Reallocate memory |
| 2018-12-17T22:58:23.379303704Z | 25 | PC: 19713 | Get default drive |
| 2018-12-17T22:58:23.381027264Z | 37 | PC: 191d3 | Set interrupt vector (Interrupt = '34' AKA 'Random write') |
| 2018-12-17T22:58:23.382754841Z | 37 | PC: 191da | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:58:23.38440894Z | 37 | PC: 191e1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:58:23.389317396Z | 74 | PC: 1837c | Reallocate memory |
| 2018-12-17T22:58:23.391457348Z | 72 | PC: 183bd | Allocate memory |
| 2018-12-17T22:58:23.394276757Z | 72 | PC: 183f5 | Allocate memory |
| 2018-12-17T22:58:23.396147804Z | 72 | PC: 183fd | Allocate memory |