.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:34:42.069835037Z | 48 | PC: 13224 | Get DOS version |
| 2018-12-17T22:34:42.072610724Z | 53 | PC: 132a3 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:34:42.073979331Z | 37 | PC: 132da | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:34:42.075385441Z | 48 | PC: 1339c | Get DOS version |
| 2018-12-17T22:34:42.077884813Z | 53 | PC: 133a6 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:42.079483821Z | 37 | PC: 133bb | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:42.080925488Z | 47 | PC: 133c1 | Get disk transfer address |
| 2018-12-17T22:34:42.082365358Z | 26 | PC: 133d1 | Set disk transfer address |
| 2018-12-17T22:34:42.084804384Z | 78 | PC: 133db | Find first file |
| 2018-12-17T22:34:42.091011982Z | 53 | PC: 9efa5 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:42.092087325Z | 37 | PC: 9efa5 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:42.093428655Z | 67 | PC: 9efa5 | Get or set file attributes |
| 2018-12-17T22:34:42.097328461Z | 67 | PC: 9efa5 | Get or set file attributes |
| 2018-12-17T22:34:42.110330316Z | 61 | PC: 9efa5 | Open file (Filename = 'FILENAME.EXT') |
| 2018-12-17T22:34:42.123869545Z | 87 | PC: 9efa5 | Get or set file date and time |
| 2018-12-17T22:34:42.125889371Z | 66 | PC: 9efa5 | Move file pointer |
| 2018-12-17T22:34:42.127318079Z | 66 | PC: 9efa5 | Move file pointer |
| 2018-12-17T22:34:42.12921773Z | 63 | PC: 9efa5 | Read file or device (Read 28 bytes on handle 5) |
| 2018-12-17T22:34:42.131928753Z | 62 | PC: 9efa5 | Close file |
| 2018-12-17T22:34:42.133808022Z | 42 | PC: 9efa5 | Get date 0x9efa5: ret 0x9efa6: push ds 0x9efa7: pop es 0x9efa8: push ds 0x9efa9: pop word ptr cs:[0xcee] 0x9efae: mov word ptr cs:[0xcec], dx 0x9efb3: mov ax, 0x4300 0x9efb6: call 0xaef9f 0x9efb9: jb 0x9ef90 0x9efbb: test cx, 0x1e 0x9efbf: jne 0x9ef90 0x9efc1: mov word ptr cs:[0xcf2], cx 0x9efc6: and cx, 0xfe 0x9efca: mov dx, word ptr cs:[0xcec] 0x9efcf: mov ax, 0x4301 0x9efd2: call 0xaef9f 0x9efd5: jb 0x9ef90 0x9efd7: mov dx, word ptr cs:[0xcec] 0x9efdc: mov di, dx 0x9efde: xor al, al |
| 2018-12-17T22:34:42.149308855Z | 37 | PC: 9efa5 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:42.151067809Z | 61 | PC: 133e5 | Open file (Filename = '') |
| 2018-12-17T22:34:42.158427743Z | 62 | PC: 133ed | Close file |
| 2018-12-17T22:34:42.160526259Z | 79 | PC: 133f9 | Find next file |
| 2018-12-17T22:34:42.163122993Z | 37 | PC: 1340b | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:34:42.164697668Z | 26 | PC: 13414 | Set disk transfer address |
| 2018-12-17T22:34:42.166271649Z | 9 | PC: 137ca | Display string (String= '... SEARCHING.......FOUND !!!!!!!!!!!! !!!!! 481-11-39 !!!!!!! call at all times,������� ���!!!!! �� ��ॣ����,����� ! <---(�⢥� ������� ;) ') |
| 2018-12-17T22:34:42.172517407Z | 76 | PC: 137cf | Terminate with return code (Return code = '0') |