.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:23:25.590212095Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:23:25.592583773Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:23:25.59392005Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:23:25.595176259Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:23:25.597070586Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:23:25.59860425Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:23:25.599739173Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:23:25.601427501Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:23:25.602821548Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:23:25.604815521Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:23:25.60619187Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:23:25.607407896Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:23:25.608484061Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:23:25.609699469Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:23:25.611561512Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:23:25.612744027Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:23:25.613905551Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:23:25.615988131Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:23:25.618262481Z | 53 | PC: 12f9a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:23:25.619421092Z | 37 | PC: 12faf | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:23:25.621065773Z | 37 | PC: 12fb7 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:23:25.623058365Z | 37 | PC: 12fbf | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:23:25.624131582Z | 37 | PC: 12fc7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:23:25.626115591Z | 68 | PC: 13a83 | I/O control for devices (Set for = '') |
| 2018-12-17T22:23:25.637904881Z | 42 | PC: 12e57 | Get date 0x12e57: xor ah, ah 0x12e59: les di, ptr [bp + 6] 0x12e5c: stosw word ptr es:[di], ax 0x12e5d: mov al, dl 0x12e5f: les di, ptr [bp + 0xa] 0x12e62: stosw word ptr es:[di], ax 0x12e63: mov al, dh 0x12e65: les di, ptr [bp + 0xe] 0x12e68: stosw word ptr es:[di], ax 0x12e69: xchg ax, cx 0x12e6a: les di, ptr [bp + 0x12] 0x12e6d: stosw word ptr es:[di], ax 0x12e6e: pop bp 0x12e6f: retf 0x10 0x12e72: push bp 0x12e73: mov bp, sp 0x12e75: mov cx, word ptr [bp + 0xa] 0x12e78: mov dh, byte ptr [bp + 8] 0x12e7b: mov dl, byte ptr [bp + 6] 0x12e7e: mov ah, 0x2b |
| 2018-12-17T22:23:25.640190758Z | 26 | PC: 12ee7 | Set disk transfer address |
| 2018-12-17T22:23:25.642862363Z | 78 | PC: 12ef3 | Find first file |
| 2018-12-17T22:23:25.649556759Z | 26 | PC: 12f0b | Set disk transfer address |
| 2018-12-17T22:23:25.651955009Z | 79 | PC: 12f10 | Find next file |
| 2018-12-17T22:23:25.655981387Z | 61 | PC: 13660 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:23:25.66129133Z | 63 | PC: 13733 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:23:25.663272129Z | 62 | PC: 136b0 | Close file |
| 2018-12-17T22:23:25.664928178Z | 48 | PC: 137ae | Get DOS version |
| 2018-12-17T22:23:25.666622673Z | 61 | PC: 13660 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:23:25.671179964Z | 63 | PC: 13733 | Read file or device (Read 4240 bytes on handle 5) |
| 2018-12-17T22:23:25.676098876Z | 62 | PC: 136b0 | Close file |
| 2018-12-17T22:23:25.679731124Z | 61 | PC: 13660 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:23:25.684321958Z | 64 | PC: 13733 | Write file or device (Write 4240 bytes on handle 5) |
| 2018-12-17T22:23:25.698470863Z | 62 | PC: 136b0 | Close file |
| 2018-12-17T22:23:25.706733825Z | 64 | PC: 133b8 | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T22:23:25.708722003Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:23:25.710064574Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:23:25.713463619Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:23:25.714505312Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:23:25.715616719Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:23:25.717251258Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:23:25.718264679Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:23:25.719224276Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:23:25.721632397Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:23:25.722637915Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:23:25.723594715Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:23:25.725227173Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:23:25.726589406Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:23:25.727984573Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:23:25.729651089Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:23:25.730661144Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:23:25.731780131Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:23:25.733471724Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:23:25.734588298Z | 37 | PC: 130f1 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:23:25.735557649Z | 76 | PC: 13130 | Terminate with return code (Return code = '0') |