.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T21:55:44.490373244Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T21:55:44.492637773Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T21:55:44.493726171Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T21:55:44.494968376Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T21:55:44.497953932Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T21:55:44.499120931Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:55:44.500201149Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T21:55:44.50185476Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T21:55:44.502910463Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T21:55:44.504320976Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T21:55:44.505972199Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T21:55:44.507327275Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T21:55:44.508456835Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T21:55:44.509966987Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T21:55:44.511104436Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T21:55:44.512127977Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T21:55:44.513446025Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T21:55:44.515962658Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T21:55:44.517263702Z | 53 | PC: 1317a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T21:55:44.518603117Z | 37 | PC: 1318f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T21:55:44.525436968Z | 37 | PC: 13197 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T21:55:44.526861544Z | 37 | PC: 1319f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:55:44.528311682Z | 37 | PC: 131a7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T21:55:44.531345773Z | 68 | PC: 13a05 | I/O control for devices (Set for = '') |
| 2018-12-17T21:55:44.533841892Z | 42 | PC: 12f88 | Get date 0x12f88: mov byte ptr [0x58], dh 0x12f8c: mov byte ptr [0x59], dl 0x12f90: cmp byte ptr [0x58], 7 0x12f95: jne 0x12fad 0x12f97: cmp byte ptr [0x59], 0x18 0x12f9c: jne 0x12fad 0x12f9e: mov di, 0x5b 0x12fa1: push ds 0x12fa2: push di 0x12fa3: call 0x22a40 0x12fa6: mov ax, 0x22 0x12fa9: push ax 0x12faa: call 0x22f31 0x12fad: push ax 0x12fae: in al, 0x21 0x12fb0: or al, 3 0x12fb2: out 0x21, al 0x12fb4: pop ax 0x12fb5: call 0x22a99 0x12fb8: call 0x22edd |
| 2018-12-17T21:55:44.536165381Z | 48 | PC: 13730 | Get DOS version |
| 2018-12-17T21:55:44.541771058Z | 48 | PC: 13730 | Get DOS version |
| 2018-12-17T21:55:44.543556679Z | 61 | PC: 135e2 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T21:55:44.550341477Z | 63 | PC: 136b5 | Read file or device (Read 4624 bytes on handle 5) |
| 2018-12-17T21:55:44.559766882Z | 62 | PC: 13632 | Close file |
| 2018-12-17T21:55:44.561695424Z | 26 | PC: 12ff5 | Set disk transfer address |
| 2018-12-17T21:55:44.562997745Z | 78 | PC: 13001 | Find first file |
| 2018-12-17T21:55:44.57103276Z | 61 | PC: 135e2 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T21:55:44.578410169Z | 66 | PC: 13714 | Move file pointer |
| 2018-12-17T21:55:44.580138626Z | 63 | PC: 136b5 | Read file or device (Read 7 bytes on handle 5) |
| 2018-12-17T21:55:44.587952458Z | 26 | PC: 13019 | Set disk transfer address |
| 2018-12-17T21:55:44.589253369Z | 79 | PC: 1301e | Find next file |
| 2018-12-17T21:55:44.593051311Z | 48 | PC: 13730 | Get DOS version |
| 2018-12-17T21:55:44.595693765Z | 26 | PC: 12ff5 | Set disk transfer address |
| 2018-12-17T21:55:44.596796895Z | 78 | PC: 13001 | Find first file |
| 2018-12-17T21:55:44.602956507Z | 48 | PC: 13730 | Get DOS version |
| 2018-12-17T21:55:44.605014461Z | 67 | PC: 12bb0 | Get or set file attributes |
| 2018-12-17T21:55:44.61054668Z | 61 | PC: 135e2 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T21:55:44.616887653Z | 66 | PC: 13714 | Move file pointer |
| 2018-12-17T21:55:44.619151751Z | 63 | PC: 136b5 | Read file or device (Read 4624 bytes on handle 6) |
| 2018-12-17T21:55:44.628419332Z | 66 | PC: 13714 | Move file pointer |
| 2018-12-17T21:55:44.629843478Z | 64 | PC: 13613 | Write file or device (Write 0 bytes on handle 6) |
| 2018-12-17T21:55:44.647685803Z | 66 | PC: 13714 | Move file pointer |
| 2018-12-17T21:55:44.649340155Z | 64 | PC: 136b5 | Write file or device (Write 4624 bytes on handle 6) |
| 2018-12-17T21:55:44.65831998Z | 62 | PC: 13632 | Close file |
| 2018-12-17T21:55:44.666406513Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T21:55:44.6675693Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T21:55:44.668409633Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T21:55:44.669708801Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T21:55:44.670807291Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T21:55:44.671801509Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T21:55:44.679510634Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T21:55:44.680613555Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T21:55:44.681686605Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T21:55:44.683031744Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T21:55:44.684298781Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:55:44.685285871Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:55:44.686806327Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T21:55:44.688024529Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T21:55:44.689091539Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T21:55:44.690598633Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T21:55:44.691576034Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T21:55:44.692526415Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T21:55:44.693897694Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T21:55:44.694876094Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T21:55:44.695778688Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T21:55:44.697311587Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T21:55:44.698428698Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T21:55:44.699530833Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T21:55:44.700873382Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T21:55:44.702006641Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T21:55:44.702850742Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T21:55:44.704638656Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T21:55:44.705957204Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T21:55:44.707141235Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T21:55:44.708447545Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T21:55:44.709774418Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T21:55:44.710900591Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T21:55:44.71306604Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T21:55:44.71500233Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T21:55:44.716086122Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T21:55:44.717593452Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T21:55:44.723544884Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T21:55:44.72485258Z | 41 | PC: 130ad | Parse filename |
| 2018-12-17T21:55:44.726214401Z | 41 | PC: 130bb | Parse filename |
| 2018-12-17T21:55:44.729613414Z | 75 | PC: 130c6 | Execute program |
| 2018-12-17T21:55:44.744352475Z | 9 | PC: 17148 | Display string (Could not find end pointer) |
| 2018-12-17T21:55:44.758527576Z | 76 | PC: 1714c | Terminate with return code (Return code = '36') |
| 2018-12-17T21:55:44.76227991Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T21:55:44.76369301Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T21:55:44.764856953Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T21:55:44.766382859Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T21:55:44.767378158Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T21:55:44.768371023Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T21:55:44.769740512Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T21:55:44.770726653Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T21:55:44.771659556Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T21:55:44.773048685Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T21:55:44.774490525Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:55:44.775609266Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:55:44.776984343Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T21:55:44.777875788Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T21:55:44.778793912Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T21:55:44.780280716Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T21:55:44.781204558Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T21:55:44.782108243Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T21:55:44.783614078Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T21:55:44.784455778Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T21:55:44.785280284Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T21:55:44.786595956Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T21:55:44.787514343Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T21:55:44.788535109Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T21:55:44.790269378Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T21:55:44.791366684Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T21:55:44.792415684Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T21:55:44.793887402Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T21:55:44.794882363Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T21:55:44.795852723Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T21:55:44.79725322Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T21:55:44.798217392Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T21:55:44.799164085Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T21:55:44.80062136Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T21:55:44.801547871Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T21:55:44.802497108Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T21:55:44.804121501Z | 53 | PC: 130f6 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T21:55:44.805257175Z | 37 | PC: 130ff | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T21:55:44.806223667Z | 48 | PC: 13730 | Get DOS version |
| 2018-12-17T21:55:44.807903017Z | 61 | PC: 135e2 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T21:55:44.8142884Z | 64 | PC: 136b5 | Write file or device (Write 4624 bytes on handle 6) |
| 2018-12-17T21:55:44.821845572Z | 66 | PC: 13714 | Move file pointer |
| 2018-12-17T21:55:44.824087082Z | 64 | PC: 136b5 | Write file or device (Write 4624 bytes on handle 6) |
| 2018-12-17T21:55:44.832483484Z | 66 | PC: 13714 | Move file pointer |
| 2018-12-17T21:55:44.834307531Z | 64 | PC: 136b5 | Write file or device (Write 7 bytes on handle 6) |
| 2018-12-17T21:55:44.837489065Z | 62 | PC: 13632 | Close file |
| 2018-12-17T21:55:44.846517838Z | 64 | PC: 1353d | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T21:55:44.849544192Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T21:55:44.850854388Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T21:55:44.852362815Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T21:55:44.853994801Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T21:55:44.855057463Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T21:55:44.85600211Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T21:55:44.857411422Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T21:55:44.858415535Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T21:55:44.859257194Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T21:55:44.860600491Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T21:55:44.861605732Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T21:55:44.86242483Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T21:55:44.863769008Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T21:55:44.864717897Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T21:55:44.865552341Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T21:55:44.867350109Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T21:55:44.868648561Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T21:55:44.870075933Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T21:55:44.87201225Z | 37 | PC: 132d1 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T21:55:44.873857192Z | 76 | PC: 13310 | Terminate with return code (Return code = '0') |