.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T23:04:30.129159989Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:04:30.1320958Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T23:04:30.138388255Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:04:30.140151211Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:04:30.143926331Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:04:30.146698265Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:30.149239314Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T23:04:30.151421318Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T23:04:30.153104173Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T23:04:30.154465233Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T23:04:30.155750941Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T23:04:30.158129715Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T23:04:30.159444328Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T23:04:30.160720838Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T23:04:30.162850414Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T23:04:30.16428929Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T23:04:30.16545329Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T23:04:30.168883671Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:04:30.170181262Z | 53 | PC: 140ba | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T23:04:30.171469875Z | 37 | PC: 140cf | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:04:30.174526104Z | 37 | PC: 140d7 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:04:30.176148234Z | 37 | PC: 140df | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:30.177374611Z | 37 | PC: 140e7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:04:30.180578447Z | 68 | PC: 14d31 | I/O control for devices (Set for = '') |
| 2018-12-17T23:04:30.282965708Z | 37 | PC: 13ae1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:04:30.284705841Z | 44 | PC: 14e68 | Get time 0x14e68: mov word ptr [0x54a], cx
0x14e6c: mov word ptr [0x54c], dx
0x14e70: retf
0x14e71: call 0x14eb8
0x14e74: jb 0x14e85
0x14e76: mov cx, word ptr es:[di + 4]
0x14e7a: cmp cx, 1
0x14e7d: je 0x14e85
0x14e7f: xor bx, bx
0x14e81: push cs
0x14e82: call 0x249f4
0x14e85: retf 4
0x14e88: call 0x14eb8
0x14e8b: jb 0x14ea0
0x14e8d: mov ax, cx
0x14e8f: mov dx, bx
0x14e91: mov cx, word ptr es:[di + 4]
0x14e95: cmp cx, 1
0x14e98: je 0x14ea0
0x14e9a: xor bx, bx
|
| 2018-12-17T23:04:30.288660739Z | 60 | PC: 14d15 | Create or truncate file |
| 2018-12-17T23:04:30.291999979Z | 26 | PC: 13809 | Set disk transfer address |
| 2018-12-17T23:04:30.293561416Z | 78 | PC: 13815 | Find first file |
| 2018-12-17T23:04:30.301568947Z | 67 | PC: 137b1 | Get or set file attributes |
| 2018-12-17T23:04:30.308952244Z | 61 | PC: 14780 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T23:04:30.316801817Z | 66 | PC: 148b2 | Move file pointer |
| 2018-12-17T23:04:30.318813641Z | 63 | PC: 14853 | Read file or device (Read 7597 bytes on handle 5) |
| 2018-12-17T23:04:30.328840199Z | 62 | PC: 147d0 | Close file |
| 2018-12-17T23:04:30.331421103Z | 26 | PC: 1382d | Set disk transfer address |
| 2018-12-17T23:04:30.332979484Z | 79 | PC: 13832 | Find next file |
| 2018-12-17T23:04:30.336977714Z | 60 | PC: 14d15 | Create or truncate file |
| 2018-12-17T23:04:30.358234694Z | 68 | PC: 14d31 | I/O control for devices (Set for = '�F�.�B������P���R�������') |
| 2018-12-17T23:04:30.361018911Z | 65 | PC: 148c9 | Delete file (Filename = '\fuck.off') |
| 2018-12-17T23:04:30.373615452Z | 26 | PC: 13809 | Set disk transfer address |
| 2018-12-17T23:04:30.375120994Z | 78 | PC: 13815 | Find first file |
| 2018-12-17T23:04:30.382133073Z | 26 | PC: 1382d | Set disk transfer address |
| 2018-12-17T23:04:30.384257929Z | 79 | PC: 13832 | Find next file |
| 2018-12-17T23:04:30.387052776Z | 26 | PC: 13809 | Set disk transfer address |
| 2018-12-17T23:04:30.388573837Z | 78 | PC: 13815 | Find first file |
| 2018-12-17T23:04:30.397543637Z | 67 | PC: 137b1 | Get or set file attributes |
| 2018-12-17T23:04:30.405167566Z | 61 | PC: 14780 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T23:04:30.41794027Z | 66 | PC: 148b2 | Move file pointer |
| 2018-12-17T23:04:30.42148721Z | 63 | PC: 14853 | Read file or device (Read 7597 bytes on handle 6) |
| 2018-12-17T23:04:30.431727891Z | 62 | PC: 147d0 | Close file |
| 2018-12-17T23:04:30.434011967Z | 26 | PC: 1382d | Set disk transfer address |
| 2018-12-17T23:04:30.435450433Z | 79 | PC: 13832 | Find next file |
| 2018-12-17T23:04:30.444630809Z | 26 | PC: 13809 | Set disk transfer address |
| 2018-12-17T23:04:30.446225578Z | 78 | PC: 13815 | Find first file |
| 2018-12-17T23:04:30.452952942Z | 26 | PC: 1382d | Set disk transfer address |
| 2018-12-17T23:04:30.45562125Z | 79 | PC: 13832 | Find next file |
| 2018-12-17T23:04:30.458015263Z | 37 | PC: 13886 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:04:30.459754534Z | 48 | PC: 14942 | Get DOS version |
| 2018-12-17T23:04:30.462812806Z | 67 | PC: 137b1 | Get or set file attributes |
| 2018-12-17T23:04:30.469473664Z | 48 | PC: 14942 | Get DOS version |
| 2018-12-17T23:04:30.471431035Z | 61 | PC: 14780 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:30.480086294Z | 66 | PC: 148b2 | Move file pointer |
| 2018-12-17T23:04:30.482469366Z | 63 | PC: 14853 | Read file or device (Read 7597 bytes on handle 6) |
| 2018-12-17T23:04:30.491594269Z | 66 | PC: 14ed2 | Move file pointer |
| 2018-12-17T23:04:30.493694238Z | 66 | PC: 14ee0 | Move file pointer |
| 2018-12-17T23:04:30.496242922Z | 66 | PC: 14eee | Move file pointer |
| 2018-12-17T23:04:30.498222686Z | 66 | PC: 148b2 | Move file pointer |
| 2018-12-17T23:04:30.50016559Z | 63 | PC: 14853 | Read file or device (Read 7597 bytes on handle 6) |
| 2018-12-17T23:04:30.510093973Z | 62 | PC: 147d0 | Close file |
| 2018-12-17T23:04:30.512422963Z | 48 | PC: 14942 | Get DOS version |
| 2018-12-17T23:04:30.514360648Z | 61 | PC: 14780 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T23:04:30.523165838Z | 66 | PC: 148b2 | Move file pointer |
| 2018-12-17T23:04:30.525637677Z | 64 | PC: 14853 | Write file or device (Write 7597 bytes on handle 6) |
| 2018-12-17T23:04:30.534886984Z | 66 | PC: 14ed2 | Move file pointer |
| 2018-12-17T23:04:30.537703291Z | 66 | PC: 14ee0 | Move file pointer |
| 2018-12-17T23:04:30.539624574Z | 66 | PC: 14eee | Move file pointer |
| 2018-12-17T23:04:30.541611632Z | 66 | PC: 148b2 | Move file pointer |
| 2018-12-17T23:04:30.544703056Z | 64 | PC: 147b1 | Write file or device (Write 0 bytes on handle 6) |
| 2018-12-17T23:04:30.553643481Z | 62 | PC: 147d0 | Close file |
| 2018-12-17T23:04:30.562788832Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:04:30.564650864Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T23:04:30.567238461Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T23:04:30.568787575Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T23:04:30.570335957Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:04:30.572539661Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T23:04:30.57417146Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:04:30.575795185Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T23:04:30.578199877Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:04:30.579874757Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:04:30.581446613Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:30.583683591Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:30.58513465Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T23:04:30.58676681Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T23:04:30.589345339Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T23:04:30.590826014Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T23:04:30.592425383Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T23:04:30.594914093Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T23:04:30.596894428Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T23:04:30.598547898Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T23:04:30.601300976Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T23:04:30.603306558Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T23:04:30.605137672Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T23:04:30.607809067Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T23:04:30.609641383Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T23:04:30.611036156Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T23:04:30.61479198Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T23:04:30.616839381Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T23:04:30.618149525Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T23:04:30.620139317Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T23:04:30.622258944Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T23:04:30.624183363Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T23:04:30.626406795Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T23:04:30.628475747Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T23:04:30.630029529Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:04:30.632616685Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T23:04:30.633999936Z | 53 | PC: 13a0b | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T23:04:30.635398166Z | 37 | PC: 13a14 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T23:04:30.6380053Z | 48 | PC: 14942 | Get DOS version |
| 2018-12-17T23:04:30.639791279Z | 41 | PC: 1395a | Parse filename |
| 2018-12-17T23:04:30.64132794Z | 41 | PC: 13968 | Parse filename |
| 2018-12-17T23:04:30.642915385Z | 75 | PC: 13973 | Execute program |
| 2018-12-17T23:04:30.690406346Z | 80 | PC: 26729 | Set current PSP |
| 2018-12-17T23:04:30.691744263Z | 48 | PC: 2672e | Get DOS version |
| 2018-12-17T23:04:30.693797745Z | 99 | PC: 2cf10 | Get DBCS lead byte table pointer |
| 2018-12-17T23:04:30.698589387Z | 101 | PC: 267b4 | Get extended country info |
| 2018-12-17T23:04:30.700396326Z | 99 | PC: 267ba | Get DBCS lead byte table pointer |
| 2018-12-17T23:04:30.702219805Z | 74 | PC: 2681c | Reallocate memory |
| 2018-12-17T23:04:30.704997008Z | 25 | PC: 26853 | Get default drive |
| 2018-12-17T23:04:30.706317772Z | 37 | PC: 26313 | Set interrupt vector (Interrupt = '34' AKA 'Random write') |
| 2018-12-17T23:04:30.707585367Z | 37 | PC: 2631a | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T23:04:30.709678554Z | 37 | PC: 26321 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:04:30.714196501Z | 74 | PC: 254bc | Reallocate memory |
| 2018-12-17T23:04:30.715760302Z | 72 | PC: 254fd | Allocate memory |
| 2018-12-17T23:04:30.71826858Z | 72 | PC: 25535 | Allocate memory |
| 2018-12-17T23:04:30.720100566Z | 72 | PC: 2553d | Allocate memory |
