.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T23:05:10.568310545Z | 48 | PC: 1311e | Get DOS version |
| 2018-12-17T23:05:10.570032974Z | 44 | PC: 13114 | Get time 0x13114: cmp dl, 0 0x13117: je 0x13110 0x13119: ret 0x1311a: mov ah, 0x30 0x1311c: int 0x21 0x1311e: ret 0x1311f: add al, ch 0x13121: add byte ptr [bx + si], al 0x13123: pop bx 0x13124: sub bx, 4 0x13127: mov dl, byte ptr [bx] 0x13129: sub bx, 0x6d3 0x1312d: cmp dl, 0 0x13130: je 0x13148 0x13132: jmp 0x13139 0x13134: nop 0x13135: lea bx, word ptr [bp + 0x10c] 0x13139: mov dh, dl 0x1313b: mov cx, 0x6c3 0x1313e: xor byte ptr [bx], dl |
| 2018-12-17T23:05:10.573862375Z | 48 | PC: 1311e | Get DOS version |
| 2018-12-17T23:05:10.575417159Z | 25 | PC: 12b86 | Get default drive |
| 2018-12-17T23:05:10.576870452Z | 71 | PC: 12c08 | Get current directory |
| 2018-12-17T23:05:10.581290043Z | 53 | PC: 12c26 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:05:10.583125936Z | 37 | PC: 12c36 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T23:05:10.584883881Z | 53 | PC: 12c48 | Get interrupt vector (Interrupt = '22' AKA 'Create or truncate file') |
| 2018-12-17T23:05:10.587815805Z | 44 | PC: 13114 | Get time 0x13114: cmp dl, 0 0x13117: je 0x13110 0x13119: ret 0x1311a: mov ah, 0x30 0x1311c: int 0x21 0x1311e: ret 0x1311f: add al, ch 0x13121: add byte ptr [bx + si], al 0x13123: pop bx 0x13124: sub bx, 4 0x13127: mov dl, byte ptr [bx] 0x13129: sub bx, 0x6d3 0x1312d: cmp dl, 0 0x13130: je 0x13148 0x13132: jmp 0x13139 0x13134: nop 0x13135: lea bx, word ptr [bp + 0x10c] 0x13139: mov dh, dl 0x1313b: mov cx, 0x6c3 0x1313e: xor byte ptr [bx], dl |
| 2018-12-17T23:05:10.590707333Z | 37 | PC: 12fd8 | Set interrupt vector (Interrupt = '208' AKA 'UNKNOWN!') |
| 2018-12-17T23:05:10.592362505Z | 47 | PC: 12c0d | Get disk transfer address |
| 2018-12-17T23:05:10.594986229Z | 26 | PC: 12c19 | Set disk transfer address |
| 2018-12-17T23:05:10.596680745Z | 44 | PC: 13114 | Get time 0x13114: cmp dl, 0 0x13117: je 0x13110 0x13119: ret 0x1311a: mov ah, 0x30 0x1311c: int 0x21 0x1311e: ret 0x1311f: inc bx 0x13120: call 0x13123 0x13123: pop bx 0x13124: sub bx, 4 0x13127: mov dl, byte ptr [bx] 0x13129: sub bx, 0x6d3 0x1312d: cmp dl, 0 0x13130: je 0x13148 0x13132: jmp 0x13139 0x13134: nop 0x13135: lea bx, word ptr [bp + 0x10c] 0x13139: mov dh, dl 0x1313b: mov cx, 0x6c3 0x1313e: xor byte ptr [bx], dl |
| 2018-12-17T23:05:10.599554239Z | 14 | PC: 12cef | Set default drive (Drive = 'C') |
| 2018-12-17T23:05:10.602331912Z | 59 | PC: 12f37 | Change current directory |
| 2018-12-17T23:05:10.614341917Z | 78 | PC: 12a86 | Find first file |
| 2018-12-17T23:05:10.624305334Z | 61 | PC: 12b46 | Open file (Filename = 'EDIT.COM') |
| 2018-12-17T23:05:10.63656579Z | 66 | PC: 12b53 | Move file pointer |
| 2018-12-17T23:05:10.65018437Z | 63 | PC: 12b5e | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T23:05:10.656358891Z | 66 | PC: 12d19 | Move file pointer |
| 2018-12-17T23:05:10.659877849Z | 62 | PC: 12b3b | Close file |
| 2018-12-17T23:05:10.662621779Z | 79 | PC: 12aec | Find next file |
| 2018-12-17T23:05:10.666731728Z | 61 | PC: 12b46 | Open file (Filename = 'FORMAT.COM') |
| 2018-12-17T23:05:10.673823474Z | 66 | PC: 12b53 | Move file pointer |
| 2018-12-17T23:05:10.676535083Z | 63 | PC: 12b5e | Read file or device (Read 1 bytes on handle 5) |
| 2018-12-17T23:05:10.683168056Z | 66 | PC: 12d19 | Move file pointer |
| 2018-12-17T23:05:10.685071696Z | 62 | PC: 12b76 | Close file |
| 2018-12-17T23:05:10.688440922Z | 67 | PC: 12f0c | Get or set file attributes |
| 2018-12-17T23:05:10.694901602Z | 67 | PC: 12f19 | Get or set file attributes |
| 2018-12-17T23:05:11.093309153Z | 86 | PC: 12bd5 | Rename file |
| 2018-12-17T23:05:11.107719973Z | 78 | PC: 12aa7 | Find first file |
| 2018-12-17T23:05:11.114720367Z | 61 | PC: 12ab0 | Open file (Filename = 'FORMAT.TXT') |
| 2018-12-17T23:05:11.12732496Z | 87 | PC: 12d07 | Get or set file date and time |
| 2018-12-17T23:05:11.130267313Z | 63 | PC: 12ac2 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T23:05:11.136351805Z | 66 | PC: 12d19 | Move file pointer |
| 2018-12-17T23:05:11.13830053Z | 66 | PC: 12ad7 | Move file pointer |
| 2018-12-17T23:05:11.140862768Z | 64 | PC: 12ae2 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T23:05:11.145184255Z | 66 | PC: 12d19 | Move file pointer |
| 2018-12-17T23:05:11.147630164Z | 64 | PC: 132bf | Write file or device (Write 1798 bytes on handle 5) |
| 2018-12-17T23:05:11.160475971Z | 87 | PC: 12cfd | Get or set file date and time |
| 2018-12-17T23:05:11.16230471Z | 62 | PC: 12afd | Close file |
| 2018-12-17T23:05:11.17007381Z | 86 | PC: 12bec | Rename file |
| 2018-12-17T23:05:11.18221959Z | 67 | PC: 12f2e | Get or set file attributes |
| 2018-12-17T23:05:11.19332313Z | 78 | PC: 12cc6 | Find first file |
| 2018-12-17T23:05:11.199823655Z | 78 | PC: 12cc6 | Find first file |
| 2018-12-17T23:05:11.206525818Z | 78 | PC: 12cc6 | Find first file |
| 2018-12-17T23:05:11.214553715Z | 26 | PC: 12b0e | Set disk transfer address |
| 2018-12-17T23:05:11.215964738Z | 14 | PC: 12b16 | Set default drive (Drive = 'A') |
| 2018-12-17T23:05:11.217554908Z | 59 | PC: 12b1e | Change current directory |
| 2018-12-17T23:05:11.223540455Z | 37 | PC: 12c41 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |