.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:41:29.92517081Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:41:29.92722111Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:41:29.928934057Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:41:29.930472898Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:41:29.931970861Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:41:29.934485905Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:29.93602223Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:41:29.937612687Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:41:29.94012689Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:41:29.941476264Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:41:29.94277832Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:41:29.946722889Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:41:29.94872574Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:41:29.951281571Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:41:29.953468438Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:41:29.955596305Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:41:29.957432714Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:41:29.962292021Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:41:29.964433423Z | 53 | PC: 1310a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:41:29.966170215Z | 37 | PC: 1311f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:41:29.967609759Z | 37 | PC: 13127 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:41:29.969734589Z | 37 | PC: 1312f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:29.971398465Z | 37 | PC: 13137 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:41:29.973506023Z | 68 | PC: 13d4d | I/O control for devices (Set for = '') |
| 2018-12-17T22:41:29.976957195Z | 48 | PC: 13992 | Get DOS version |
| 2018-12-17T22:41:29.978916725Z | 61 | PC: 137d0 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:41:29.986477606Z | 63 | PC: 138a3 | Read file or device (Read 5616 bytes on handle 5) |
| 2018-12-17T22:41:29.997236493Z | 62 | PC: 13820 | Close file |
| 2018-12-17T22:41:30.001161636Z | 25 | PC: 13049 | Get default drive |
| 2018-12-17T22:41:30.002969091Z | 44 | PC: 13e84 | Get time 0x13e84: mov word ptr [0x3e], cx 0x13e88: mov word ptr [0x40], dx 0x13e8c: retf 0x13e8d: mov bx, sp 0x13e8f: mov al, byte ptr ss:[bx + 4] 0x13e93: cmp al, 0x61 0x13e95: jb 0x13e9d 0x13e97: cmp al, 0x7a 0x13e99: ja 0x13e9d 0x13e9b: sub al, 0x20 0x13e9d: retf 2 0x13ea0: mov di, 0x52 0x13ea3: push ds 0x13ea4: pop es 0x13ea5: mov cx, 0x1ac6 0x13ea8: sub cx, di 0x13eaa: shr cx, 1 0x13eac: xor ax, ax 0x13eae: cld 0x13eaf: rep stosd dword ptr es:[di], eax |
| 2018-12-17T22:41:30.007182264Z | 14 | PC: 13049 | Set default drive (Drive = 'C') |
| 2018-12-17T22:41:30.009367548Z | 26 | PC: 12f1d | Set disk transfer address |
| 2018-12-17T22:41:30.011068132Z | 78 | PC: 12f29 | Find first file |
| 2018-12-17T22:41:30.019153588Z | 14 | PC: 13049 | Set default drive (Drive = 'A') |
| 2018-12-17T22:41:30.021241831Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:41:30.022977601Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:41:30.024886957Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:41:30.026777497Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:41:30.028208626Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:41:30.029716297Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:41:30.032104553Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:41:30.033846063Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:41:30.035631677Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:41:30.038135711Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:41:30.039947634Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:30.04189389Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:30.044175585Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:41:30.045484533Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:41:30.046727969Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:41:30.048729077Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:41:30.049985928Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:41:30.052171412Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:41:30.054370753Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:41:30.05568925Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:41:30.057372161Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:41:30.059237645Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:41:30.061150788Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:41:30.06347338Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:41:30.065225791Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:41:30.068192203Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:41:30.07002732Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:41:30.071842208Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:41:30.074240162Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:41:30.07595353Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:41:30.077682818Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:41:30.080330481Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:41:30.081942779Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:41:30.084255843Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:41:30.086595468Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:41:30.088213617Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:41:30.089624477Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:41:30.093744946Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:41:30.095171826Z | 48 | PC: 13992 | Get DOS version |
| 2018-12-17T22:41:30.096679869Z | 48 | PC: 13992 | Get DOS version |
| 2018-12-17T22:41:30.099679302Z | 41 | PC: 12fd5 | Parse filename |
| 2018-12-17T22:41:30.101409882Z | 41 | PC: 12fe3 | Parse filename |
| 2018-12-17T22:41:30.103080871Z | 75 | PC: 12fee | Execute program |
| 2018-12-17T22:41:30.110039531Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:41:30.112026543Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:41:30.113676882Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:41:30.115409947Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:41:30.118334851Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:41:30.119639672Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:41:30.121320689Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:41:30.123995693Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:41:30.125563348Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:41:30.127135991Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:41:30.129727538Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:30.131350827Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:30.132861575Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:41:30.134705018Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:41:30.137053799Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:41:30.138641471Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:41:30.140160063Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:41:30.142762982Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:41:30.144287926Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:41:30.145854058Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:41:30.148274053Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:41:30.150261886Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:41:30.15175978Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:41:30.154021468Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:41:30.155838731Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:41:30.157364878Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:41:30.159078105Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:41:30.162252818Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:41:30.163744339Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:41:30.16526212Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:41:30.16782862Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:41:30.169376688Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:41:30.170885692Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:41:30.173192936Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:41:30.17506389Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:41:30.17661332Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:41:30.178851403Z | 53 | PC: 13086 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:41:30.180724341Z | 37 | PC: 1308f | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:41:30.182529772Z | 64 | PC: 13528 | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T22:41:30.184866501Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:41:30.187169226Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:41:30.188652422Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:41:30.190196692Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:41:30.192730682Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:41:30.194262208Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:41:30.195742097Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:41:30.198247984Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:41:30.199801271Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:41:30.201297231Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:41:30.203796425Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:41:30.205403363Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:41:30.206934409Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:41:30.209154669Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:41:30.214801926Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:41:30.21609788Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:41:30.21772174Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:41:30.219741173Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:41:30.22127853Z | 37 | PC: 13261 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:41:30.223490625Z | 76 | PC: 132a0 | Terminate with return code (Return code = '0') |