.
| Time |
Syscall Op |
Syscall Name |
| 2018-12-17T22:38:37.313846246Z | 48 | PC: 12a4c | Get DOS version |
| 2018-12-17T22:38:37.327554323Z | 53 | PC: 12bab | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:38:37.33006238Z | 53 | PC: 12bb8 | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output') |
| 2018-12-17T22:38:37.331470874Z | 53 | PC: 12bc5 | Get interrupt vector (Interrupt = '5' AKA 'Printer output') |
| 2018-12-17T22:38:37.333803567Z | 53 | PC: 12bd2 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O') |
| 2018-12-17T22:38:37.33525338Z | 37 | PC: 12be6 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:38:37.336794264Z | 74 | PC: 12af4 | Reallocate memory |
| 2018-12-17T22:38:37.340914799Z | 68 | PC: 141cf | I/O control for devices (Set for = '����') |
| 2018-12-17T22:38:37.343295872Z | 68 | PC: 141cf | I/O control for devices (Set for = '����') |
| 2018-12-17T22:38:37.346502475Z | 51 | PC: 14124 | Get or set Ctrl-Break |
| 2018-12-17T22:38:37.355993576Z | 51 | PC: 14124 | Get or set Ctrl-Break |
| 2018-12-17T22:38:37.358044807Z | 47 | PC: 13f6d | Get disk transfer address |
| 2018-12-17T22:38:37.359895159Z | 26 | PC: 13f76 | Set disk transfer address |
| 2018-12-17T22:38:37.362085929Z | 78 | PC: 13f80 | Find first file |
| 2018-12-17T22:38:37.369265043Z | 26 | PC: 13f88 | Set disk transfer address |
| 2018-12-17T22:38:37.377416039Z | 61 | PC: 14408 | Open file (Filename = '�*P��*P�Q�YY��*�') |
| 2018-12-17T22:38:37.394912928Z | 66 | PC: 141f3 | Move file pointer |
| 2018-12-17T22:38:37.39709999Z | 63 | PC: 14509 | Read file or device (Read 9 bytes on handle 5) |
| 2018-12-17T22:38:37.410167578Z | 62 | PC: 13f51 | Close file |
| 2018-12-17T22:38:37.413215159Z | 47 | PC: 13f9f | Get disk transfer address |
| 2018-12-17T22:38:37.415664462Z | 26 | PC: 13fa8 | Set disk transfer address |
| 2018-12-17T22:38:37.417298448Z | 79 | PC: 13fac | Find next file |
| 2018-12-17T22:38:37.420496929Z | 26 | PC: 13fb4 | Set disk transfer address |
| 2018-12-17T22:38:37.423796697Z | 87 | PC: 14092 | Get or set file date and time |
| 2018-12-17T22:38:37.426074263Z | 67 | PC: 13f3c | Get or set file attributes |
| 2018-12-17T22:38:37.440824437Z | 67 | PC: 13f3c | Get or set file attributes |
| 2018-12-17T22:38:37.476203605Z | 61 | PC: 14408 | Open file (Filename = '') |
| 2018-12-17T22:38:37.483790836Z | 68 | PC: 14173 | I/O control for devices (Set for = '������W�J�W�U�W�W����') |
| 2018-12-17T22:38:37.486025675Z | 66 | PC: 141f3 | Move file pointer |
| 2018-12-17T22:38:37.505798356Z | 63 | PC: 14509 | Read file or device (Read 7480 bytes on handle 5) |
| 2018-12-17T22:38:37.561024548Z | 53 | PC: 140b1 | Get interrupt vector (Interrupt = '97' AKA 'Reserved') |
| 2018-12-17T22:38:37.562937877Z | 66 | PC: 141f3 | Move file pointer |
| 2018-12-17T22:38:37.565968285Z | 63 | PC: 14509 | Read file or device (Read 7480 bytes on handle 5) |
| 2018-12-17T22:38:37.575598356Z | 61 | PC: 14408 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:38:37.597876711Z | 87 | PC: 14092 | Get or set file date and time |
| 2018-12-17T22:38:37.60035804Z | 67 | PC: 13f3c | Get or set file attributes |
| 2018-12-17T22:38:37.607681955Z | 67 | PC: 13f3c | Get or set file attributes |
| 2018-12-17T22:38:37.632231375Z | 66 | PC: 13fd5 | Move file pointer |
| 2018-12-17T22:38:37.634348293Z | 66 | PC: 13fe2 | Move file pointer |
| 2018-12-17T22:38:37.636299298Z | 66 | PC: 13ff1 | Move file pointer |
| 2018-12-17T22:38:37.638325674Z | 66 | PC: 141f3 | Move file pointer |
| 2018-12-17T22:38:37.640777534Z | 63 | PC: 14509 | Read file or device (Read 7480 bytes on handle 6) |
| 2018-12-17T22:38:37.659198848Z | 66 | PC: 141f3 | Move file pointer |
| 2018-12-17T22:38:37.661312135Z | 64 | PC: 14833 | Write file or device (Write 7480 bytes on handle 6) |
| 2018-12-17T22:38:37.677624429Z | 47 | PC: 13f6d | Get disk transfer address |
| 2018-12-17T22:38:37.679685911Z | 26 | PC: 13f76 | Set disk transfer address |
| 2018-12-17T22:38:37.681316074Z | 78 | PC: 13f80 | Find first file |
| 2018-12-17T22:38:37.688746409Z | 26 | PC: 13f88 | Set disk transfer address |
| 2018-12-17T22:38:37.692606422Z | 41 | PC: 14fe2 | Parse filename |
| 2018-12-17T22:38:37.694593078Z | 41 | PC: 14ff0 | Parse filename |
| 2018-12-17T22:38:37.69668109Z | 75 | PC: 15030 | Execute program |
| 2018-12-17T22:38:37.718180735Z | 9 | PC: 251fc | Display string (String= '�������%��J�W�U�W����������������������� %N��������%�������������������������!����������� ����� ���������
tiS�xhach file.
�PATH=C:\DOS�PROMPT=') |
