.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:03:49.320161814Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:03:49.322060185Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T23:03:49.323733062Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:03:49.325275204Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:03:49.327305684Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:03:49.329714154Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:03:49.331276062Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T23:03:49.332831278Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T23:03:49.346556407Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T23:03:49.348278517Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T23:03:49.349918923Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T23:03:49.352837833Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T23:03:49.355303472Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T23:03:49.356911266Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T23:03:49.359440003Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T23:03:49.367080065Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T23:03:49.368819427Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T23:03:49.371336352Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:03:49.377772289Z | 53 | PC: 133ea | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T23:03:49.382791511Z | 37 | PC: 133ff | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:03:49.386333945Z | 37 | PC: 13407 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:03:49.393968907Z | 37 | PC: 1340f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:03:49.400795399Z | 37 | PC: 13417 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:03:49.403540212Z | 68 | PC: 13f55 | I/O control for devices (Set for = '� ') |
| 2018-12-17T23:03:49.508233968Z | 37 | PC: 12d21 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:03:49.510344599Z | 44 | PC: 132dd | Get time 0x132dd: xor ah, ah 0x132df: mov al, dl 0x132e1: les di, ptr [bp + 6] 0x132e4: stosw word ptr es:[di], ax 0x132e5: mov al, dh 0x132e7: les di, ptr [bp + 0xa] 0x132ea: stosw word ptr es:[di], ax 0x132eb: mov al, cl 0x132ed: les di, ptr [bp + 0xe] 0x132f0: stosw word ptr es:[di], ax 0x132f1: mov al, ch 0x132f3: les di, ptr [bp + 0x12] 0x132f6: stosw word ptr es:[di], ax 0x132f7: pop bp 0x132f8: retf 0x10 0x132fb: push bp 0x132fc: mov bp, sp 0x132fe: mov ch, byte ptr [bp + 0xc] 0x13301: mov cl, byte ptr [bp + 0xa] 0x13304: mov dh, byte ptr [bp + 8] |
| 2018-12-17T23:03:49.513193278Z | 48 | PC: 13e97 | Get DOS version |
| 2018-12-17T23:03:49.516122839Z | 61 | PC: 13d49 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:03:49.527617151Z | 63 | PC: 13e1c | Read file or device (Read 4943 bytes on handle 5) |
| 2018-12-17T23:03:49.538363767Z | 62 | PC: 13d99 | Close file |
| 2018-12-17T23:03:49.542220252Z | 26 | PC: 13337 | Set disk transfer address |
| 2018-12-17T23:03:49.543608354Z | 78 | PC: 13343 | Find first file |
| 2018-12-17T23:03:49.552431522Z | 61 | PC: 13d49 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T23:03:49.562850842Z | 62 | PC: 13d99 | Close file |
| 2018-12-17T23:03:49.565844113Z | 60 | PC: 13d49 | Create or truncate file |
| 2018-12-17T23:03:49.590580917Z | 64 | PC: 13e1c | Write file or device (Write 4943 bytes on handle 5) |
| 2018-12-17T23:03:49.603482647Z | 62 | PC: 13d99 | Close file |
| 2018-12-17T23:03:49.616133134Z | 26 | PC: 1335b | Set disk transfer address |
| 2018-12-17T23:03:49.61809226Z | 79 | PC: 13360 | Find next file |
| 2018-12-17T23:03:49.62982987Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:03:49.634372525Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T23:03:49.637042247Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:03:49.643198709Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:03:49.647589468Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:03:49.649785249Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:03:49.651506648Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T23:03:49.653939134Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T23:03:49.657653061Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T23:03:49.659223535Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T23:03:49.662795384Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T23:03:49.665076014Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T23:03:49.667170524Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T23:03:49.670586951Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T23:03:49.672252564Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T23:03:49.674448355Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T23:03:49.677439732Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T23:03:49.679062655Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:03:49.681165411Z | 37 | PC: 13541 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T23:03:49.68327555Z | 76 | PC: 13580 | Terminate with return code (Return code = '0') |