.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:24:57.475007556Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:24:57.478110932Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:24:57.479966728Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:24:57.481937277Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:24:57.484371029Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:24:57.4865173Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:24:57.488199033Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:24:57.489851774Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:24:57.498782891Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:24:57.500353437Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:24:57.501880862Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:24:57.504781535Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:24:57.506284427Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:24:57.507776416Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:24:57.510663256Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:24:57.512130382Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:24:57.513532054Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:24:57.515104433Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:24:57.516874762Z | 53 | PC: 145b2 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:24:57.518300976Z | 37 | PC: 145c7 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:24:57.519638325Z | 37 | PC: 145cf | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:24:57.52158294Z | 37 | PC: 145d7 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:24:57.523649439Z | 37 | PC: 145df | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:24:57.525377392Z | 68 | PC: 1494f | I/O control for devices (Set for = '') |
| 2018-12-17T22:24:57.532921063Z | 48 | PC: 1520e | Get DOS version |
| 2018-12-17T22:24:57.534735149Z | 25 | PC: 1529b | Get default drive |
| 2018-12-17T22:24:57.535914237Z | 71 | PC: 152ae | Get current directory |
| 2018-12-17T22:24:57.53958053Z | 59 | PC: 15362 | Change current directory |
| 2018-12-17T22:24:57.543530273Z | 44 | PC: 14f4f | Get time 0x14f4f: mov word ptr [0x3e], cx 0x14f53: mov word ptr [0x40], dx 0x14f57: retf 0x14f58: mov bx, sp 0x14f5a: push ds 0x14f5b: les di, ptr ss:[bx + 8] 0x14f5f: lds si, ptr ss:[bx + 4] 0x14f63: cld 0x14f64: xor ax, ax 0x14f66: stosw word ptr es:[di], ax 0x14f67: mov ax, 0xd7b0 0x14f6a: stosw word ptr es:[di], ax 0x14f6b: xor ax, ax 0x14f6d: mov cx, 0x16 0x14f70: rep stosd dword ptr es:[di], eax 0x14f72: lodsb al, byte ptr [si] 0x14f73: cmp al, 0x4f 0x14f75: jbe 0x14f79 0x14f77: mov al, 0x4f 0x14f79: mov cl, al |
| 2018-12-17T22:24:57.546228609Z | 67 | PC: 1437b | Get or set file attributes |
| 2018-12-17T22:24:57.552816484Z | 67 | PC: 1437b | Get or set file attributes |
| 2018-12-17T22:24:57.562373433Z | 67 | PC: 1437b | Get or set file attributes |
| 2018-12-17T22:24:57.568276176Z | 67 | PC: 1437b | Get or set file attributes |
| 2018-12-17T22:24:57.575924691Z | 26 | PC: 14227 | Set disk transfer address |
| 2018-12-17T22:24:57.576997076Z | 78 | PC: 14233 | Find first file |
| 2018-12-17T22:24:57.583010877Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.584843887Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.587897414Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.589313708Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.593569353Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.594740711Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.597428634Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.599359204Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.602409016Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.603849443Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.607575058Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.60881793Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.611580267Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.613235396Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.616532733Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.617898708Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.621615748Z | 26 | PC: 1424b | Set disk transfer address |
| 2018-12-17T22:24:57.623254146Z | 79 | PC: 14250 | Find next file |
| 2018-12-17T22:24:57.625941984Z | 14 | PC: 152f4 | Set default drive (Drive = 'A') |
| 2018-12-17T22:24:57.628161114Z | 25 | PC: 152f8 | Get default drive |
| 2018-12-17T22:24:57.629732755Z | 59 | PC: 15362 | Change current directory |
| 2018-12-17T22:24:57.634279442Z | 61 | PC: 14fce | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:24:57.641290588Z | 65 | PC: 151a3 | Delete file (Filename = 'TEST.EXE') |
| 2018-12-17T22:24:57.658318658Z | 26 | PC: 14227 | Set disk transfer address |
| 2018-12-17T22:24:57.662212039Z | 78 | PC: 14233 | Find first file |
| 2018-12-17T22:24:57.669181981Z | 26 | PC: 14227 | Set disk transfer address |
| 2018-12-17T22:24:57.671512921Z | 78 | PC: 14233 | Find first file |
| 2018-12-17T22:24:57.6776427Z | 26 | PC: 14227 | Set disk transfer address |
| 2018-12-17T22:24:57.679146206Z | 78 | PC: 14233 | Find first file |
| 2018-12-17T22:24:57.685903876Z | 26 | PC: 14227 | Set disk transfer address |
| 2018-12-17T22:24:57.686950706Z | 78 | PC: 14233 | Find first file |
| 2018-12-17T22:24:57.692783573Z | 26 | PC: 14227 | Set disk transfer address |
| 2018-12-17T22:24:57.694600085Z | 78 | PC: 14233 | Find first file |
| 2018-12-17T22:24:57.700806576Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:24:57.702159957Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:24:57.704064575Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:24:57.705476281Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:24:57.706856246Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:24:57.709007976Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:24:57.710374415Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:24:57.711779641Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:24:57.713634742Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:24:57.715022131Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:24:57.716388877Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:24:57.719054778Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:24:57.720430562Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:24:57.721822973Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:24:57.723401468Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:24:57.724457712Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:24:57.725363268Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:24:57.726613484Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:24:57.727600979Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:24:57.728448505Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:24:57.73001702Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:24:57.73088665Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:24:57.731631977Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:24:57.733331125Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:24:57.734252498Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:24:57.735202836Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:24:57.736459379Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:24:57.738011501Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:24:57.738874314Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:24:57.740293195Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:24:57.741633449Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:24:57.742975148Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:24:57.74508514Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:24:57.746141903Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:24:57.747440844Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:24:57.749554991Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:24:57.750682764Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:24:57.75176441Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:24:57.753056432Z | 41 | PC: 14317 | Parse filename |
| 2018-12-17T22:24:57.75504923Z | 41 | PC: 14325 | Parse filename |
| 2018-12-17T22:24:57.756524135Z | 75 | PC: 14330 | Execute program |
| 2018-12-17T22:24:57.763460374Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:24:57.765076623Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:24:57.766127589Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:24:57.767508344Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:24:57.769597355Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:24:57.770800952Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:24:57.771944713Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:24:57.773407372Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:24:57.774423406Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:24:57.775439052Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:24:57.77699284Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:24:57.778050278Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:24:57.779177199Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:24:57.780898739Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:24:57.782050734Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:24:57.783387119Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:24:57.785358402Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:24:57.786487504Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:24:57.787572184Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:24:57.789375271Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:24:57.790646228Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:24:57.791876687Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:24:57.795935089Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:24:57.79706713Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:24:57.798122368Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:24:57.800505477Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:24:57.801893378Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:24:57.803319864Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:24:57.805072189Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:24:57.806400905Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:24:57.807558462Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:24:57.809327747Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:24:57.810600045Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:24:57.81174242Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:24:57.813459796Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:24:57.814621972Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:24:57.815782327Z | 53 | PC: 1428e | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:24:57.817531937Z | 37 | PC: 14297 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:24:57.818916461Z | 64 | PC: 14a52 | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T22:24:57.820551648Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:24:57.822171869Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:24:57.823356688Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:24:57.824518176Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:24:57.826183241Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:24:57.827235481Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:24:57.828393674Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:24:57.830098646Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:24:57.831004022Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:24:57.832031735Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:24:57.833393672Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:24:57.834295307Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:24:57.835084702Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:24:57.836383593Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:24:57.837250304Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:24:57.838146729Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:24:57.839506982Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:24:57.840437365Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:24:57.841414056Z | 37 | PC: 146c6 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:24:57.842866496Z | 76 | PC: 14705 | Terminate with return code (Return code = '0') |