.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:31:48.269282164Z | 48 | PC: 12a4c | Get DOS version |
| 2018-12-17T22:31:48.271679067Z | 53 | PC: 12b75 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:31:48.273224101Z | 53 | PC: 12b82 | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output') |
| 2018-12-17T22:31:48.274593357Z | 53 | PC: 12b8f | Get interrupt vector (Interrupt = '5' AKA 'Printer output') |
| 2018-12-17T22:31:48.279726237Z | 53 | PC: 12b9c | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O') |
| 2018-12-17T22:31:48.281448758Z | 37 | PC: 12bb0 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:31:48.2832839Z | 74 | PC: 12af4 | Reallocate memory |
| 2018-12-17T22:31:48.286468613Z | 74 | PC: 13f35 | Reallocate memory |
| 2018-12-17T22:31:48.290267687Z | 42 | PC: 16a2f | Get date 0x16a2f: les bx, ptr [bp + 6]
0x16a32: mov word ptr es:[bx], cx
0x16a35: les bx, ptr [bp + 6]
0x16a38: mov word ptr es:[bx + 2], dx
0x16a3c: pop bp
0x16a3d: retf
0x16a3e: push bp
0x16a3f: mov bp, sp
0x16a41: mov ah, 0x2c
0x16a43: int 0x21
0x16a45: les bx, ptr [bp + 6]
0x16a48: mov word ptr es:[bx], cx
0x16a4b: les bx, ptr [bp + 6]
0x16a4e: mov word ptr es:[bx + 2], dx
0x16a52: pop bp
0x16a53: retf
0x16a54: push bp
0x16a55: mov bp, sp
0x16a57: sub sp, 4
0x16a5a: push si
|
| 2018-12-17T22:31:48.293149193Z | 44 | PC: 16a45 | Get time 0x16a45: les bx, ptr [bp + 6]
0x16a48: mov word ptr es:[bx], cx
0x16a4b: les bx, ptr [bp + 6]
0x16a4e: mov word ptr es:[bx + 2], dx
0x16a52: pop bp
0x16a53: retf
0x16a54: push bp
0x16a55: mov bp, sp
0x16a57: sub sp, 4
0x16a5a: push si
0x16a5b: push di
0x16a5c: les di, ptr [bp + 6]
0x16a5f: mov ax, es
0x16a61: or ax, di
0x16a63: je 0x16a85
0x16a65: mov al, 0
0x16a67: mov ah, byte ptr es:[di]
0x16a6a: mov cx, 0xffff
0x16a6d: cld
0x16a6e: repne scasb al, byte ptr es:[di]
|
| 2018-12-17T22:31:48.298555545Z | 74 | PC: 13f35 | Reallocate memory |
| 2018-12-17T22:31:48.302145505Z | 61 | PC: 143db | Open file (Filename = '') |
| 2018-12-17T22:31:48.309923476Z | 68 | PC: 147b2 | I/O control for devices (Set for = 'Divide error
Abnormal program termination
W��') |
| 2018-12-17T22:31:48.312328891Z | 68 | PC: 147d6 | I/O control for devices (Set for = '') |
| 2018-12-17T22:31:48.326547127Z | 63 | PC: 14d22 | Read file or device (Read 27136 bytes on handle 5) |
| 2018-12-17T22:31:48.346350904Z | 63 | PC: 14d22 | Read file or device (Read 512 bytes on handle 5) |
| 2018-12-17T22:31:48.355618809Z | 62 | PC: 14a33 | Close file |
| 2018-12-17T22:31:48.367785067Z | 25 | PC: 160cc | Get default drive |
| 2018-12-17T22:31:48.369532822Z | 42 | PC: 16a2f | Get date 0x16a2f: les bx, ptr [bp + 6]
0x16a32: mov word ptr es:[bx], cx
0x16a35: les bx, ptr [bp + 6]
0x16a38: mov word ptr es:[bx + 2], dx
0x16a3c: pop bp
0x16a3d: retf
0x16a3e: push bp
0x16a3f: mov bp, sp
0x16a41: mov ah, 0x2c
0x16a43: int 0x21
0x16a45: les bx, ptr [bp + 6]
0x16a48: mov word ptr es:[bx], cx
0x16a4b: les bx, ptr [bp + 6]
0x16a4e: mov word ptr es:[bx + 2], dx
0x16a52: pop bp
0x16a53: retf
0x16a54: push bp
0x16a55: mov bp, sp
0x16a57: sub sp, 4
0x16a5a: push si
|
| 2018-12-17T22:31:48.372477326Z | 44 | PC: 16a45 | Get time 0x16a45: les bx, ptr [bp + 6]
0x16a48: mov word ptr es:[bx], cx
0x16a4b: les bx, ptr [bp + 6]
0x16a4e: mov word ptr es:[bx + 2], dx
0x16a52: pop bp
0x16a53: retf
0x16a54: push bp
0x16a55: mov bp, sp
0x16a57: sub sp, 4
0x16a5a: push si
0x16a5b: push di
0x16a5c: les di, ptr [bp + 6]
0x16a5f: mov ax, es
0x16a61: or ax, di
0x16a63: je 0x16a85
0x16a65: mov al, 0
0x16a67: mov ah, byte ptr es:[di]
0x16a6a: mov cx, 0xffff
0x16a6d: cld
0x16a6e: repne scasb al, byte ptr es:[di]
|
| 2018-12-17T22:31:48.378524965Z | 74 | PC: 13f35 | Reallocate memory |
| 2018-12-17T22:31:48.380521228Z | 14 | PC: 160db | Set default drive (Drive = 'A') |
| 2018-12-17T22:31:48.382949683Z | 59 | PC: 160b7 | Change current directory |
| 2018-12-17T22:31:48.390876513Z | 26 | PC: 16659 | Set disk transfer address |
| 2018-12-17T22:31:48.393320443Z | 78 | PC: 16663 | Find first file |
| 2018-12-17T22:31:48.401088986Z | 37 | PC: 12bbc | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:31:48.402873148Z | 37 | PC: 12bc7 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output') |
| 2018-12-17T22:31:48.407080735Z | 37 | PC: 12bd2 | Set interrupt vector (Interrupt = '5' AKA 'Printer output') |
| 2018-12-17T22:31:48.408671205Z | 37 | PC: 12bdd | Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O') |
| 2018-12-17T22:31:48.417488386Z | 76 | PC: 12b65 | Terminate with return code (Return code = '1') |
