.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:18:09.283676737Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:18:09.285061188Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:18:09.286211332Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:18:09.287805914Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:18:09.289279189Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:18:09.290173345Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:18:09.2910378Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:18:09.293439857Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:18:09.295685807Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:18:09.297209286Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:18:09.304368329Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:18:09.305622858Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:18:09.306675865Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:18:09.31247611Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:18:09.313719949Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:18:09.314964053Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:18:09.317189168Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:18:09.318321237Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:18:09.319448221Z | 53 | PC: 13afa | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:18:09.321222874Z | 37 | PC: 13b0f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:18:09.323341506Z | 37 | PC: 13b17 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:18:09.324436009Z | 37 | PC: 13b1f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:18:09.325615831Z | 37 | PC: 13b27 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:18:09.327072807Z | 68 | PC: 14852 | I/O control for devices (Set for = '') |
| 2018-12-17T22:18:09.328221585Z | 25 | PC: 1440f | Get default drive |
| 2018-12-17T22:18:09.329405752Z | 71 | PC: 14422 | Get current directory |
| 2018-12-17T22:18:09.331935485Z | 48 | PC: 14382 | Get DOS version |
| 2018-12-17T22:18:09.333351965Z | 61 | PC: 141c0 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:18:09.338075381Z | 72 | PC: 13a2e | Allocate memory |
| 2018-12-17T22:18:09.340553029Z | 72 | PC: 13a2e | Allocate memory |
| 2018-12-17T22:18:09.341800777Z | 66 | PC: 142f2 | Move file pointer |
| 2018-12-17T22:18:09.343169598Z | 63 | PC: 14293 | Read file or device (Read 65535 bytes on handle 5) |
| 2018-12-17T22:18:09.348691391Z | 62 | PC: 14210 | Close file |
| 2018-12-17T22:18:09.351286231Z | 60 | PC: 141c0 | Create or truncate file |
| 2018-12-17T22:18:10.22216492Z | 64 | PC: 14293 | Write file or device (Write 53248 bytes on handle 5) |
| 2018-12-17T22:18:10.264548239Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.273926467Z | 62 | PC: 14210 | Close file |
| 2018-12-17T22:18:10.281705824Z | 65 | PC: 14309 | Delete file (Filename = 'A:\tempfall.$$$') |
| 2018-12-17T22:18:10.294527714Z | 47 | PC: 13a2e | Get disk transfer address |
| 2018-12-17T22:18:10.296151886Z | 26 | PC: 13a2e | Set disk transfer address |
| 2018-12-17T22:18:10.297821466Z | 26 | PC: 1399b | Set disk transfer address |
| 2018-12-17T22:18:10.299911764Z | 78 | PC: 139a7 | Find first file |
| 2018-12-17T22:18:10.307057271Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.310211699Z | 26 | PC: 139bf | Set disk transfer address |
| 2018-12-17T22:18:10.312264552Z | 79 | PC: 139c4 | Find next file |
| 2018-12-17T22:18:10.315391039Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.319083637Z | 26 | PC: 139bf | Set disk transfer address |
| 2018-12-17T22:18:10.32159486Z | 79 | PC: 139c4 | Find next file |
| 2018-12-17T22:18:10.324885194Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.327989124Z | 26 | PC: 139bf | Set disk transfer address |
| 2018-12-17T22:18:10.329840542Z | 79 | PC: 139c4 | Find next file |
| 2018-12-17T22:18:10.332768082Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.33576939Z | 26 | PC: 139bf | Set disk transfer address |
| 2018-12-17T22:18:10.337442653Z | 79 | PC: 139c4 | Find next file |
| 2018-12-17T22:18:10.340335338Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.34358777Z | 26 | PC: 139bf | Set disk transfer address |
| 2018-12-17T22:18:10.345367668Z | 79 | PC: 139c4 | Find next file |
| 2018-12-17T22:18:10.348707869Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.351910691Z | 26 | PC: 139bf | Set disk transfer address |
| 2018-12-17T22:18:10.353941547Z | 79 | PC: 139c4 | Find next file |
| 2018-12-17T22:18:10.357177012Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.360283382Z | 26 | PC: 139bf | Set disk transfer address |
| 2018-12-17T22:18:10.362448112Z | 79 | PC: 139c4 | Find next file |
| 2018-12-17T22:18:10.36545258Z | 26 | PC: 13a2e | Set disk transfer address |
| 2018-12-17T22:18:10.366945189Z | 47 | PC: 13a2e | Get disk transfer address |
| 2018-12-17T22:18:10.368786351Z | 26 | PC: 13a2e | Set disk transfer address |
| 2018-12-17T22:18:10.370798004Z | 26 | PC: 1399b | Set disk transfer address |
| 2018-12-17T22:18:10.372018334Z | 78 | PC: 139a7 | Find first file |
| 2018-12-17T22:18:10.379547316Z | 54 | PC: 1390a | Get free disk space |
| 2018-12-17T22:18:10.383037957Z | 67 | PC: 13943 | Get or set file attributes |
| 2018-12-17T22:18:10.389091907Z | 67 | PC: 1396a | Get or set file attributes |
| 2018-12-17T22:18:10.399514409Z | 61 | PC: 141c0 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:18:10.406364263Z | 67 | PC: 1396a | Get or set file attributes |
| 2018-12-17T22:18:10.416496667Z | 26 | PC: 139bf | Set disk transfer address |
| 2018-12-17T22:18:10.418316986Z | 79 | PC: 139c4 | Find next file |
| 2018-12-17T22:18:10.420979753Z | 26 | PC: 13a2e | Set disk transfer address |
| 2018-12-17T22:18:10.422448045Z | 47 | PC: 13a2e | Get disk transfer address |
| 2018-12-17T22:18:10.424451096Z | 26 | PC: 13a2e | Set disk transfer address |
| 2018-12-17T22:18:10.426029546Z | 26 | PC: 1399b | Set disk transfer address |
| 2018-12-17T22:18:10.427024878Z | 78 | PC: 139a7 | Find first file |
| 2018-12-17T22:18:10.433618655Z | 26 | PC: 13a2e | Set disk transfer address |
| 2018-12-17T22:18:10.434777116Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:18:10.435855256Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:18:10.437084176Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:18:10.438648951Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:18:10.440063635Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:18:10.44117876Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:18:10.443246673Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:18:10.444726232Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:18:10.44625562Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:18:10.448044725Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:18:10.449159836Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:18:10.45027461Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:18:10.454356842Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:18:10.455436541Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:18:10.456497728Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:18:10.459016621Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:18:10.460057283Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:18:10.461122715Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:18:10.463154669Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:18:10.464431857Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:18:10.465724656Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:18:10.467859166Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:18:10.469137271Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:18:10.470445007Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:18:10.472542194Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:18:10.473640536Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:18:10.474946922Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:18:10.476850225Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:18:10.478124658Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:18:10.479366553Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:18:10.481084814Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:18:10.482374004Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:18:10.483596103Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:18:10.48596445Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:18:10.487197964Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:18:10.488431045Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:18:10.490397141Z | 53 | PC: 13a6b | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:18:10.491594588Z | 37 | PC: 13a74 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:18:10.493054141Z | 73 | PC: 13a2e | Release memory |
| 2018-12-17T22:18:10.495634023Z | 9 | PC: 160b5 | Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ') |
| 2018-12-17T22:18:10.500872113Z | 0 | PC: 160b9 | Program terminate |
| 2018-12-17T22:18:10.502712846Z | 77 | PC: 11fe0 | Get program return code |
| 2018-12-17T22:18:10.504719236Z | 72 | PC: 12174 | Allocate memory |
| 2018-12-17T22:18:10.506723472Z | 2 | PC: 1268d | Character output (Char = '0d') |
| 2018-12-17T22:18:10.50877253Z | 2 | PC: 1268d | Character output (Char = '0a') |
| 2018-12-17T22:18:10.512679486Z | 2 | PC: 1268d | Character output (Char = '4d') |
| 2018-12-17T22:18:10.51520076Z | 2 | PC: 1268d | Character output (Char = '65') |
| 2018-12-17T22:18:10.517046998Z | 2 | PC: 1268d | Character output (Char = '6d') |
| 2018-12-17T22:18:10.519114231Z | 2 | PC: 1268d | Character output (Char = '6f') |
| 2018-12-17T22:18:10.521698382Z | 2 | PC: 1268d | Character output (Char = '72') |
| 2018-12-17T22:18:10.524037851Z | 2 | PC: 1268d | Character output (Char = '79') |
| 2018-12-17T22:18:10.527362728Z | 2 | PC: 1268d | Character output (Char = '20') |
| 2018-12-17T22:18:10.52979018Z | 2 | PC: 1268d | Character output (Char = '61') |
| 2018-12-17T22:18:10.534818744Z | 2 | PC: 1268d | Character output (Char = '6c') |
| 2018-12-17T22:18:10.538086961Z | 2 | PC: 1268d | Character output (Char = '6c') |
| 2018-12-17T22:18:10.540389028Z | 2 | PC: 1268d | Character output (Char = '6f') |
| 2018-12-17T22:18:10.542651831Z | 2 | PC: 1268d | Character output (Char = '63') |
| 2018-12-17T22:18:10.545087226Z | 2 | PC: 1268d | Character output (Char = '61') |
| 2018-12-17T22:18:10.54789469Z | 2 | PC: 1268d | Character output (Char = '74') |
| 2018-12-17T22:18:10.550847484Z | 2 | PC: 1268d | Character output (Char = '69') |
| 2018-12-17T22:18:10.552732881Z | 2 | PC: 1268d | Character output (Char = '6f') |
| 2018-12-17T22:18:10.555252059Z | 2 | PC: 1268d | Character output (Char = '6e') |
| 2018-12-17T22:18:10.557449174Z | 2 | PC: 1268d | Character output (Char = '20') |
| 2018-12-17T22:18:10.559803001Z | 2 | PC: 1268d | Character output (Char = '65') |
| 2018-12-17T22:18:10.562644812Z | 2 | PC: 1268d | Character output (Char = '72') |
| 2018-12-17T22:18:10.565242989Z | 2 | PC: 1268d | Character output (Char = '72') |
| 2018-12-17T22:18:10.567577823Z | 2 | PC: 1268d | Character output (Char = '6f') |
| 2018-12-17T22:18:10.569760345Z | 2 | PC: 1268d | Character output (Char = '72') |
| 2018-12-17T22:18:10.571786386Z | 2 | PC: 1268d | Character output (Char = '0d') |
| 2018-12-17T22:18:10.574721149Z | 2 | PC: 1268d | Character output (Char = '0a') |
| 2018-12-17T22:18:10.579352857Z | 2 | PC: 1268d | Character output (Char = '43') |
| 2018-12-17T22:18:10.581367941Z | 2 | PC: 1268d | Character output (Char = '61') |
| 2018-12-17T22:18:10.584169128Z | 2 | PC: 1268d | Character output (Char = '6e') |
| 2018-12-17T22:18:10.587060028Z | 2 | PC: 1268d | Character output (Char = '6e') |
| 2018-12-17T22:18:10.589093082Z | 2 | PC: 1268d | Character output (Char = '6f') |
| 2018-12-17T22:18:10.594506936Z | 2 | PC: 1268d | Character output (Char = '74') |
| 2018-12-17T22:18:10.605566419Z | 2 | PC: 1268d | Character output (Char = '20') |
| 2018-12-17T22:18:10.607731591Z | 2 | PC: 1268d | Character output (Char = '6c') |
| 2018-12-17T22:18:10.61037549Z | 2 | PC: 1268d | Character output (Char = '6f') |
| 2018-12-17T22:18:10.613279704Z | 2 | PC: 1268d | Character output (Char = '61') |
| 2018-12-17T22:18:10.616076841Z | 2 | PC: 1268d | Character output (Char = '64') |
| 2018-12-17T22:18:10.619541704Z | 2 | PC: 1268d | Character output (Char = '20') |
| 2018-12-17T22:18:10.622832543Z | 2 | PC: 1268d | Character output (Char = '43') |
| 2018-12-17T22:18:10.625396629Z | 2 | PC: 1268d | Character output (Char = '4f') |
| 2018-12-17T22:18:10.627668621Z | 2 | PC: 1268d | Character output (Char = '4d') |
| 2018-12-17T22:18:10.629831545Z | 2 | PC: 1268d | Character output (Char = '4d') |
| 2018-12-17T22:18:10.631729283Z | 2 | PC: 1268d | Character output (Char = '41') |
| 2018-12-17T22:18:10.634221363Z | 2 | PC: 1268d | Character output (Char = '4e') |
| 2018-12-17T22:18:10.636188463Z | 2 | PC: 1268d | Character output (Char = '44') |
| 2018-12-17T22:18:10.638202677Z | 2 | PC: 1268d | Character output (Char = '2c') |
| 2018-12-17T22:18:10.641383186Z | 2 | PC: 1268d | Character output (Char = '20') |
| 2018-12-17T22:18:10.643189747Z | 2 | PC: 1268d | Character output (Char = '73') |
| 2018-12-17T22:18:10.645055845Z | 2 | PC: 1268d | Character output (Char = '79') |
| 2018-12-17T22:18:10.647550112Z | 2 | PC: 1268d | Character output (Char = '73') |
| 2018-12-17T22:18:10.64947921Z | 2 | PC: 1268d | Character output (Char = '74') |
| 2018-12-17T22:18:10.651365187Z | 2 | PC: 1268d | Character output (Char = '65') |
| 2018-12-17T22:18:10.653713208Z | 2 | PC: 1268d | Character output (Char = '6d') |
| 2018-12-17T22:18:10.65554597Z | 2 | PC: 1268d | Character output (Char = '20') |
| 2018-12-17T22:18:10.657376228Z | 2 | PC: 1268d | Character output (Char = '68') |
| 2018-12-17T22:18:10.663866892Z | 2 | PC: 1268d | Character output (Char = '61') |
| 2018-12-17T22:18:10.674364619Z | 2 | PC: 1268d | Character output (Char = '6c') |
| 2018-12-17T22:18:10.675767265Z | 2 | PC: 1268d | Character output (Char = '74') |
| 2018-12-17T22:18:10.677934131Z | 2 | PC: 1268d | Character output (Char = '65') |
| 2018-12-17T22:18:10.679354013Z | 2 | PC: 1268d | Character output (Char = '64') |
| 2018-12-17T22:18:10.68077635Z | 2 | PC: 1268d | Character output (Char = '0d') |
| 2018-12-17T22:18:10.682473398Z | 2 | PC: 1268d | Character output (Char = '0a') |