.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:29:59.090177234Z | 48 | PC: 16cec | Get DOS version |
| 2018-12-17T22:29:59.092636846Z | 74 | PC: 16d3c | Reallocate memory |
| 2018-12-17T22:29:59.094986933Z | 48 | PC: 16da0 | Get DOS version |
| 2018-12-17T22:29:59.096732026Z | 53 | PC: 16da8 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:29:59.103571565Z | 37 | PC: 16dba | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:29:59.105648262Z | 68 | PC: 16e4b | I/O control for devices (Set for = 'W�J�W�U�W�W����') |
| 2018-12-17T22:29:59.107689155Z | 68 | PC: 16e4b | I/O control for devices |
| 2018-12-17T22:29:59.11035799Z | 68 | PC: 16e4b | I/O control for devices |
| 2018-12-17T22:29:59.112658064Z | 68 | PC: 16e4b | I/O control for devices |
| 2018-12-17T22:29:59.114657387Z | 68 | PC: 16e4b | I/O control for devices |
| 2018-12-17T22:29:59.116929144Z | 53 | PC: 152da | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:29:59.130262052Z | 53 | PC: 152e7 | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output') |
| 2018-12-17T22:29:59.132054353Z | 53 | PC: 152f4 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:29:59.133882175Z | 37 | PC: 15309 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:29:59.136049799Z | 37 | PC: 15311 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output') |
| 2018-12-17T22:29:59.137738098Z | 37 | PC: 15319 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:29:59.139645912Z | 53 | PC: 15d98 | Get interrupt vector (Interrupt = '239' AKA 'UNKNOWN!') |
| 2018-12-17T22:29:59.142443227Z | 53 | PC: 15da5 | Get interrupt vector (Interrupt = '240' AKA 'UNKNOWN!') |
| 2018-12-17T22:29:59.144086257Z | 53 | PC: 15db4 | Get interrupt vector (Interrupt = '9' AKA 'Display string') |
| 2018-12-17T22:29:59.14569625Z | 37 | PC: 15dc1 | Set interrupt vector (Interrupt = '239' AKA 'UNKNOWN!') |
| 2018-12-17T22:29:59.149142612Z | 53 | PC: 15dc8 | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-17T22:29:59.1511463Z | 37 | PC: 15dd5 | Set interrupt vector (Interrupt = '240' AKA 'UNKNOWN!') |
| 2018-12-17T22:29:59.152781356Z | 53 | PC: 15de1 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T22:29:59.158019868Z | 48 | PC: 15ea3 | Get DOS version |
| 2018-12-17T22:29:59.15968962Z | 74 | PC: 13fa5 | Reallocate memory |
| 2018-12-17T22:29:59.161563339Z | 74 | PC: 13fa5 | Reallocate memory |
| 2018-12-17T22:29:59.163154782Z | 68 | PC: 15250 | I/O control for devices (Set for = '.COM C:\WORK\PUTZ.001U!') |
| 2018-12-17T22:29:59.165006279Z | 68 | PC: 15250 | I/O control for devices (Set for = '') |
| 2018-12-17T22:29:59.166543382Z | 51 | PC: 1526e | Get or set Ctrl-Break |
| 2018-12-17T22:29:59.167775771Z | 51 | PC: 1527a | Get or set Ctrl-Break |
| 2018-12-17T22:29:59.181689575Z | 61 | PC: 13346 | Open file (Filename = 'C:\COMMAND.COM') |
| 2018-12-17T22:29:59.18972128Z | 68 | PC: 1329f | I/O control for devices (Set for = '�md WORK�!') |
| 2018-12-17T22:29:59.193153694Z | 64 | PC: 13168 | Write file or device (Write 0 bytes on handle 5) |
| 2018-12-17T22:29:59.538058693Z | 64 | PC: 13168 | Write file or device (Write 8 bytes on handle 5) |
| 2018-12-17T22:29:59.542585202Z | 66 | PC: 12f1b | Move file pointer |
| 2018-12-17T22:29:59.545482742Z | 62 | PC: 13179 | Close file |
| 2018-12-17T22:29:59.55649293Z | 61 | PC: 13346 | Open file (Filename = 'C:\AUTOEXEC.BAT') |
| 2018-12-17T22:29:59.564355177Z | 68 | PC: 1329f | I/O control for devices (Set for = '�md WORK�!') |
| 2018-12-17T22:29:59.567785025Z | 64 | PC: 13168 | Write file or device (Write 0 bytes on handle 5) |
| 2018-12-17T22:29:59.576691572Z | 64 | PC: 13168 | Write file or device (Write 8 bytes on handle 5) |
| 2018-12-17T22:29:59.582193124Z | 66 | PC: 12f1b | Move file pointer |
| 2018-12-17T22:29:59.584563071Z | 62 | PC: 13179 | Close file |
| 2018-12-17T22:29:59.595153461Z | 61 | PC: 13346 | Open file (Filename = 'C:\CONFIG.SYS') |
| 2018-12-17T22:29:59.603312632Z | 68 | PC: 1329f | I/O control for devices (Set for = '�md WORK�!') |
| 2018-12-17T22:29:59.606563869Z | 64 | PC: 13168 | Write file or device (Write 0 bytes on handle 5) |
| 2018-12-17T22:29:59.614241567Z | 64 | PC: 13168 | Write file or device (Write 8 bytes on handle 5) |
| 2018-12-17T22:29:59.619288671Z | 66 | PC: 12f1b | Move file pointer |
| 2018-12-17T22:29:59.621280355Z | 62 | PC: 13179 | Close file |
| 2018-12-17T22:29:59.63189712Z | 74 | PC: 13fa5 | Reallocate memory |
| 2018-12-17T22:29:59.634483239Z | 51 | PC: 15285 | Get or set Ctrl-Break |
| 2018-12-17T22:29:59.636004599Z | 37 | PC: 15507 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:29:59.637697652Z | 37 | PC: 15511 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output') |
| 2018-12-17T22:29:59.640451081Z | 37 | PC: 1551b | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:29:59.642176206Z | 53 | PC: 139d2 | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-17T22:29:59.643876738Z | 53 | PC: 139df | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T22:29:59.646442769Z | 53 | PC: 139ec | Get interrupt vector (Interrupt = '9' AKA 'Display string') |
| 2018-12-17T22:29:59.648183444Z | 37 | PC: 13a07 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-17T22:29:59.649880148Z | 53 | PC: 13a0f | Get interrupt vector (Interrupt = '239' AKA 'UNKNOWN!') |
| 2018-12-17T22:29:59.653295251Z | 37 | PC: 13a1c | Set interrupt vector (Interrupt = '9' AKA 'Display string') |
| 2018-12-17T22:29:59.655237839Z | 53 | PC: 13a23 | Get interrupt vector (Interrupt = '240' AKA 'UNKNOWN!') |
| 2018-12-17T22:29:59.65690339Z | 37 | PC: 13a30 | Set interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-17T22:29:59.658513716Z | 37 | PC: 13a3a | Set interrupt vector (Interrupt = '239' AKA 'UNKNOWN!') |
| 2018-12-17T22:29:59.661170057Z | 37 | PC: 13a45 | Set interrupt vector (Interrupt = '240' AKA 'UNKNOWN!') |
| 2018-12-17T22:29:59.662835643Z | 37 | PC: 16efc | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:29:59.665931312Z | 41 | PC: 16add | Parse filename |
| 2018-12-17T22:29:59.668894894Z | 41 | PC: 16adf | Parse filename |
| 2018-12-17T22:29:59.670820076Z | 41 | PC: 16ae4 | Parse filename |
| 2018-12-17T22:29:59.672756087Z | 75 | PC: 16afa | Execute program |
