.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:06:32.214693862Z | 238 | PC: 132c3 | UNKNOWN! |
| 2018-12-17T22:06:32.216117519Z | 53 | PC: 132d1 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:06:32.21758356Z | 54 | PC: 9f72c | Get free disk space |
| 2018-12-17T22:06:32.264333975Z | 53 | PC: 9f74e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:06:32.266119692Z | 67 | PC: 9f779 | Get or set file attributes |
| 2018-12-17T22:06:32.279916488Z | 67 | PC: 9f785 | Get or set file attributes |
| 2018-12-17T22:06:32.622352454Z | 61 | PC: 9f78f | Open file (Filename = '') |
| 2018-12-17T22:06:32.629979617Z | 87 | PC: 9f79f | Get or set file date and time |
| 2018-12-17T22:06:32.636664715Z | 66 | PC: 9fa18 | Move file pointer |
| 2018-12-17T22:06:32.640793435Z | 63 | PC: 9fa09 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:06:32.654622456Z | 66 | PC: 9f924 | Move file pointer |
| 2018-12-17T22:06:32.664745699Z | 63 | PC: 9fa09 | Read file or device (Read 2 bytes on handle 5) |
| 2018-12-17T22:06:32.671470826Z | 66 | PC: 9fa18 | Move file pointer |
| 2018-12-17T22:06:32.67352495Z | 63 | PC: 9f960 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:06:32.67761613Z | 66 | PC: 9fa27 | Move file pointer |
| 2018-12-17T22:06:32.679553364Z | 64 | PC: 9f983 | Write file or device (Write 1463 bytes on handle 5) |
| 2018-12-17T22:06:32.689290746Z | 66 | PC: 9fa18 | Move file pointer |
| 2018-12-17T22:06:32.692258001Z | 64 | PC: 9f9a9 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-17T22:06:32.695337604Z | 87 | PC: 9f9bd | Get or set file date and time |
| 2018-12-17T22:06:32.697054431Z | 62 | PC: 9f9c1 | Close file |
| 2018-12-17T22:06:32.705900796Z | 67 | PC: 9f9d5 | Get or set file attributes |
| 2018-12-17T22:06:32.717892755Z | 42 | PC: 13383 | Get date 0x13383: cmp dl, 0x22 0x13386: jne 0x133a8 0x13388: xor ax, ax 0x1338a: mov es, ax 0x1338c: lea dx, word ptr [0x4ed] 0x13390: mov word ptr es:[0x70], dx 0x13395: mov word ptr es:[0x72], ds 0x1339a: mov dx, 0x80 0x1339d: mov cx, 1 0x133a0: mov ax, 0x301 0x133a3: mov bx, 0x100 0x133a6: int 0x13 0x133a8: cmp byte ptr cs:[si + 0x73], 1 0x133ad: je 0x133c1 0x133af: push cs 0x133b0: push cs 0x133b1: pop ds 0x133b2: pop es 0x133b3: add si, 4 0x133b6: mov di, 0x100 |