.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:26:40.516297028Z | 48 | PC: 12b4c | Get DOS version |
| 2018-12-17T22:26:40.525883897Z | 53 | PC: 12c79 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:26:40.527206661Z | 37 | PC: 12c8d | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:26:40.528588669Z | 74 | PC: 12c1f | Reallocate memory |
| 2018-12-17T22:26:40.531505497Z | 37 | PC: 13763 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:26:40.532863786Z | 25 | PC: 132dd | Get default drive |
| 2018-12-17T22:26:40.534014563Z | 25 | PC: 132dd | Get default drive |
| 2018-12-17T22:26:40.535654754Z | 71 | PC: 1369b | Get current directory |
| 2018-12-17T22:26:40.539353027Z | 26 | PC: 13466 | Set disk transfer address |
| 2018-12-17T22:26:40.54046819Z | 78 | PC: 13470 | Find first file |
| 2018-12-17T22:26:40.547535017Z | 26 | PC: 13486 | Set disk transfer address |
| 2018-12-17T22:26:40.548841921Z | 79 | PC: 1348a | Find next file |
| 2018-12-17T22:26:40.552158289Z | 67 | PC: 13344 | Get or set file attributes |
| 2018-12-17T22:26:40.556734158Z | 67 | PC: 13344 | Get or set file attributes |
| 2018-12-17T22:26:40.56207483Z | 14 | PC: 132ea | Set default drive (Drive = 'A') |
| 2018-12-17T22:26:40.563419253Z | 25 | PC: 132dd | Get default drive |
| 2018-12-17T22:26:40.564662489Z | 26 | PC: 13466 | Set disk transfer address |
| 2018-12-17T22:26:40.566663823Z | 78 | PC: 13470 | Find first file |
| 2018-12-17T22:26:40.579707649Z | 25 | PC: 132dd | Get default drive |
| 2018-12-17T22:26:40.581640659Z | 71 | PC: 1369b | Get current directory |
| 2018-12-17T22:26:40.586860327Z | 44 | PC: 13738 | Get time 0x13738: mov bx, word ptr [bp + 4] 0x1373b: mov word ptr [bx], cx 0x1373d: mov bx, word ptr [bp + 4] 0x13740: mov word ptr [bx + 2], dx 0x13743: pop bp 0x13744: ret 0x13745: push bp 0x13746: mov bp, sp 0x13748: mov ah, 0x35 0x1374a: mov al, byte ptr [bp + 4] 0x1374d: int 0x21 0x1374f: mov ax, bx 0x13751: mov dx, es 0x13753: pop bp 0x13754: ret 0x13755: push bp 0x13756: mov bp, sp 0x13758: mov ah, 0x25 0x1375a: mov al, byte ptr [bp + 4] 0x1375d: push ds |
| 2018-12-17T22:26:40.590248344Z | 57 | PC: 13a2d | Create subdirectory |
| 2018-12-17T22:26:40.611606693Z | 44 | PC: 13738 | Get time 0x13738: mov bx, word ptr [bp + 4] 0x1373b: mov word ptr [bx], cx 0x1373d: mov bx, word ptr [bp + 4] 0x13740: mov word ptr [bx + 2], dx 0x13743: pop bp 0x13744: ret 0x13745: push bp 0x13746: mov bp, sp 0x13748: mov ah, 0x35 0x1374a: mov al, byte ptr [bp + 4] 0x1374d: int 0x21 0x1374f: mov ax, bx 0x13751: mov dx, es 0x13753: pop bp 0x13754: ret 0x13755: push bp 0x13756: mov bp, sp 0x13758: mov ah, 0x25 0x1375a: mov al, byte ptr [bp + 4] 0x1375d: push ds |
| 2018-12-17T22:26:40.615945398Z | 61 | PC: 13c13 | Open file (Filename = 'A:\') |
| 2018-12-17T22:26:40.621457696Z | 14 | PC: 132ea | Set default drive (Drive = 'B') |
| 2018-12-17T22:26:40.623074383Z | 25 | PC: 132dd | Get default drive |
| 2018-12-17T22:26:40.625000487Z | 26 | PC: 13466 | Set disk transfer address |
| 2018-12-17T22:26:40.626636366Z | 78 | PC: 13470 | Find first file |