.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:34:03.924195052Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:34:03.925721631Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:34:03.926874521Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:34:03.927985735Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:34:03.929933076Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:34:03.931025584Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:03.932037098Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:34:03.934146436Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:34:03.935246453Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:34:03.936201017Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:34:03.937467014Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:34:03.938857071Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:34:03.939828865Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:34:03.940757274Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:34:03.942021551Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:34:03.942990635Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:34:03.944205959Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:34:03.945508394Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:34:03.946495177Z | 53 | PC: 14472 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:34:03.947535963Z | 37 | PC: 14487 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:34:03.949584148Z | 37 | PC: 1448f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:34:03.950509048Z | 37 | PC: 14497 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:03.951452774Z | 37 | PC: 1449f | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:34:03.957934738Z | 68 | PC: 1480f | I/O control for devices (Set for = '') |
| 2018-12-17T22:34:03.962103909Z | 48 | PC: 14f8e | Get DOS version |
| 2018-12-17T22:34:03.963526191Z | 25 | PC: 1501b | Get default drive |
| 2018-12-17T22:34:03.964996568Z | 71 | PC: 1502e | Get current directory |
| 2018-12-17T22:34:03.967868541Z | 59 | PC: 150e2 | Change current directory |
| 2018-12-17T22:34:03.971762204Z | 44 | PC: 14d5b | Get time 0x14d5b: mov word ptr [0x3e], cx 0x14d5f: mov word ptr [0x40], dx 0x14d63: retf 0x14d64: mov bx, sp 0x14d66: push ds 0x14d67: les di, ptr ss:[bx + 8] 0x14d6b: lds si, ptr ss:[bx + 4] 0x14d6f: cld 0x14d70: xor ax, ax 0x14d72: stosw word ptr es:[di], ax 0x14d73: mov ax, 0xd7b0 0x14d76: stosw word ptr es:[di], ax 0x14d77: xor ax, ax 0x14d79: mov cx, 0x16 0x14d7c: rep stosd dword ptr es:[di], eax 0x14d7e: lodsb al, byte ptr [si] 0x14d7f: cmp al, 0x4f 0x14d81: jbe 0x14d85 0x14d83: mov al, 0x4f 0x14d85: mov cl, al |
| 2018-12-17T22:34:03.974723335Z | 67 | PC: 14239 | Get or set file attributes |
| 2018-12-17T22:34:03.980414609Z | 67 | PC: 14239 | Get or set file attributes |
| 2018-12-17T22:34:03.989932895Z | 67 | PC: 14239 | Get or set file attributes |
| 2018-12-17T22:34:03.996361552Z | 67 | PC: 14239 | Get or set file attributes |
| 2018-12-17T22:34:04.002957198Z | 26 | PC: 140e5 | Set disk transfer address |
| 2018-12-17T22:34:04.003848885Z | 78 | PC: 140f1 | Find first file |
| 2018-12-17T22:34:04.011160855Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.012092205Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.014554981Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.016359438Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.019904542Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.020817316Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.024440104Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.025657599Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.028539885Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.030416693Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.033614862Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.03493207Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.038290336Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.039632862Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.042528689Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.044564402Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.047519406Z | 26 | PC: 14109 | Set disk transfer address |
| 2018-12-17T22:34:04.048762975Z | 79 | PC: 1410e | Find next file |
| 2018-12-17T22:34:04.051497392Z | 14 | PC: 15074 | Set default drive (Drive = 'A') |
| 2018-12-17T22:34:04.053008991Z | 25 | PC: 15078 | Get default drive |
| 2018-12-17T22:34:04.054013611Z | 59 | PC: 150e2 | Change current directory |
| 2018-12-17T22:34:04.058915568Z | 61 | PC: 14dda | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:34:04.065714917Z | 65 | PC: 14f23 | Delete file (Filename = 'TEST.EXE') |
| 2018-12-17T22:34:04.090988006Z | 26 | PC: 140e5 | Set disk transfer address |
| 2018-12-17T22:34:04.100549065Z | 78 | PC: 140f1 | Find first file |
| 2018-12-17T22:34:04.107297011Z | 26 | PC: 140e5 | Set disk transfer address |
| 2018-12-17T22:34:04.108527597Z | 78 | PC: 140f1 | Find first file |
| 2018-12-17T22:34:04.114505118Z | 26 | PC: 140e5 | Set disk transfer address |
| 2018-12-17T22:34:04.116318444Z | 78 | PC: 140f1 | Find first file |
| 2018-12-17T22:34:04.12233045Z | 26 | PC: 140e5 | Set disk transfer address |
| 2018-12-17T22:34:04.123602306Z | 78 | PC: 140f1 | Find first file |
| 2018-12-17T22:34:04.130262799Z | 26 | PC: 140e5 | Set disk transfer address |
| 2018-12-17T22:34:04.131342904Z | 78 | PC: 140f1 | Find first file |
| 2018-12-17T22:34:04.137906547Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:34:04.139900976Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:34:04.141558745Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:34:04.142552717Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:34:04.144160989Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:34:04.145553542Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:34:04.146889014Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:34:04.148468993Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:34:04.149475636Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:34:04.150474021Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:34:04.152029353Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:04.153167252Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:04.154369545Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:34:04.156603794Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:34:04.158114906Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:34:04.159225714Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:34:04.16441413Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:34:04.165494129Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:34:04.166533936Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:34:04.168479527Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:34:04.169592301Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:34:04.170879995Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:34:04.172385908Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:34:04.175348275Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:34:04.182818443Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:34:04.185274764Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:34:04.186641348Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:34:04.188016534Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:34:04.190391571Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:34:04.191533581Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:34:04.192698926Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:34:04.194678495Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:34:04.196230236Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:34:04.197315484Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:34:04.198579529Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:34:04.200141347Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:34:04.201418058Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:34:04.203533779Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:34:04.205177657Z | 41 | PC: 141d5 | Parse filename |
| 2018-12-17T22:34:04.206478942Z | 41 | PC: 141e3 | Parse filename |
| 2018-12-17T22:34:04.208170713Z | 75 | PC: 141ee | Execute program |
| 2018-12-17T22:34:04.215461832Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:34:04.216509261Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:34:04.218478575Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:34:04.219574065Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:34:04.220569904Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:34:04.221627436Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:34:04.222905521Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:34:04.224475916Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:34:04.225485552Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:34:04.227678999Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:34:04.228944784Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:04.230433359Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:04.233120517Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:34:04.234991958Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:34:04.236330055Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:34:04.238671696Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:34:04.239807989Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:34:04.240850489Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:34:04.242370239Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:34:04.243427155Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:34:04.244434176Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:34:04.246339606Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:34:04.247359989Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:34:04.248433404Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:34:04.249781311Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:34:04.250754689Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:34:04.251676017Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:34:04.252908401Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:34:04.253997975Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:34:04.254946685Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:34:04.25638868Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:34:04.25737171Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:34:04.258310729Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:34:04.259934389Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:34:04.260904686Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:34:04.261870604Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:34:04.263340271Z | 53 | PC: 1414c | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:34:04.265095697Z | 37 | PC: 14155 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:34:04.266296143Z | 64 | PC: 14912 | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T22:34:04.268262669Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:34:04.269254291Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:34:04.270183543Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:34:04.271656175Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:34:04.272648846Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:34:04.273572021Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:04.274975095Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:34:04.275909478Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:34:04.276928346Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:34:04.278318335Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:34:04.279290224Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:34:04.280126667Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:34:04.281521438Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:34:04.282467526Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:34:04.283403566Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:34:04.289889573Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:34:04.29082215Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:34:04.291626136Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:34:04.29311934Z | 37 | PC: 14586 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:34:04.294498426Z | 76 | PC: 145c5 | Terminate with return code (Return code = '0') |