.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:43:19.896517984Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:43:19.898983384Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:43:19.900606523Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:43:19.902260079Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:43:19.904277037Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:43:19.90606213Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:43:19.907556977Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:43:19.915077763Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:43:19.92196074Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:43:19.924001112Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:43:19.925965612Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:43:19.93211987Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:43:19.933802982Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:43:19.935577044Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:43:19.938345583Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:43:19.940151335Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:43:19.941943281Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:43:19.944868625Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:43:19.946686489Z | 53 | PC: 1399a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:43:19.948492501Z | 37 | PC: 139af | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:43:19.950883432Z | 37 | PC: 139b7 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:43:19.952726523Z | 37 | PC: 139bf | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:43:19.954474937Z | 37 | PC: 139c7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:43:19.957736573Z | 68 | PC: 1439a | I/O control for devices (Set for = '') |
| 2018-12-17T22:43:19.960117495Z | 44 | PC: 12ab0 | Get time 0x12ab0: mov byte ptr [bp - 3], cl 0x12ab3: mov ah, 0x2a 0x12ab5: int 0x21 0x12ab7: mov byte ptr [bp - 2], al 0x12aba: mov byte ptr [bp - 1], dl 0x12abd: cmp byte ptr [bp - 1], 0xd 0x12ac1: jne 0x12ad2 0x12ac3: cmp byte ptr [bp - 3], 0xd 0x12ac7: jne 0x12ad2 0x12ac9: cmp byte ptr [bp - 2], 5 0x12acd: jne 0x12ad2 0x12acf: call 0x22a67 0x12ad2: mov sp, bp 0x12ad4: pop bp 0x12ad5: ret 0x12ad6: push bp 0x12ad7: mov bp, sp 0x12ad9: mov ax, 2 0x12adc: lcall 0x1394:0x2cd 0x12ae1: sub sp, 2 |
| 2018-12-17T22:43:19.962683735Z | 42 | PC: 12ab7 | Get date 0x12ab7: mov byte ptr [bp - 2], al 0x12aba: mov byte ptr [bp - 1], dl 0x12abd: cmp byte ptr [bp - 1], 0xd 0x12ac1: jne 0x12ad2 0x12ac3: cmp byte ptr [bp - 3], 0xd 0x12ac7: jne 0x12ad2 0x12ac9: cmp byte ptr [bp - 2], 5 0x12acd: jne 0x12ad2 0x12acf: call 0x22a67 0x12ad2: mov sp, bp 0x12ad4: pop bp 0x12ad5: ret 0x12ad6: push bp 0x12ad7: mov bp, sp 0x12ad9: mov ax, 2 0x12adc: lcall 0x1394:0x2cd 0x12ae1: sub sp, 2 0x12ae4: mov byte ptr [bp - 1], 0 0x12ae8: mov byte ptr [bp - 2], 0 0x12aec: mov ax, 0x3521 |
| 2018-12-17T22:43:19.965643704Z | 48 | PC: 13fab | Get DOS version |
| 2018-12-17T22:43:19.967918897Z | 67 | PC: 136ca | Get or set file attributes |
| 2018-12-17T22:43:19.98552248Z | 61 | PC: 13e5d | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:43:19.992839393Z | 63 | PC: 13f30 | Read file or device (Read 5150 bytes on handle 5) |
| 2018-12-17T22:43:20.002345867Z | 62 | PC: 13ead | Close file |
| 2018-12-17T22:43:20.005161946Z | 60 | PC: 12c86 | Create or truncate file |
| 2018-12-17T22:43:20.017828556Z | 65 | PC: 12c9c | Delete file (Filename = '0c.5y!') |
| 2018-12-17T22:43:20.030221882Z | 61 | PC: 13e5d | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:43:20.037550567Z | 66 | PC: 14499 | Move file pointer |
| 2018-12-17T22:43:20.039153788Z | 66 | PC: 144a7 | Move file pointer |
| 2018-12-17T22:43:20.041802443Z | 66 | PC: 144b5 | Move file pointer |
| 2018-12-17T22:43:20.04357924Z | 66 | PC: 13f8f | Move file pointer |
| 2018-12-17T22:43:20.045619061Z | 63 | PC: 13f30 | Read file or device (Read 5150 bytes on handle 6) |
| 2018-12-17T22:43:20.054597014Z | 66 | PC: 14499 | Move file pointer |
| 2018-12-17T22:43:20.056323276Z | 66 | PC: 144a7 | Move file pointer |
| 2018-12-17T22:43:20.058222884Z | 66 | PC: 144b5 | Move file pointer |
| 2018-12-17T22:43:20.060517623Z | 66 | PC: 13f8f | Move file pointer |
| 2018-12-17T22:43:20.062694251Z | 64 | PC: 13e8e | Write file or device (Write 0 bytes on handle 6) |
| 2018-12-17T22:43:20.071206218Z | 66 | PC: 13f8f | Move file pointer |
| 2018-12-17T22:43:20.073304659Z | 64 | PC: 13f30 | Write file or device (Write 5150 bytes on handle 6) |
| 2018-12-17T22:43:20.084313356Z | 62 | PC: 13ead | Close file |
| 2018-12-17T22:43:20.093280648Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:43:20.095016038Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:43:20.097446662Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:43:20.099131687Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:43:20.100748253Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:43:20.103274288Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:43:20.105300654Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:43:20.106982011Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:43:20.109267604Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:43:20.11125163Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:43:20.112850944Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:43:20.115471406Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:43:20.117221613Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:43:20.119154133Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:43:20.120928796Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:43:20.123520674Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:43:20.125109768Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:43:20.126745821Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:43:20.129118507Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:43:20.131144132Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:43:20.132838835Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:43:20.135194659Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:43:20.137782229Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:43:20.139397152Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:43:20.141112705Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:43:20.143475913Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:43:20.144972384Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:43:20.146526483Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:43:20.14898995Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:43:20.150510746Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:43:20.152014139Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:43:20.154318207Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:43:20.15616719Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:43:20.157700279Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:43:20.159901293Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:43:20.161792054Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:43:20.163289075Z | 53 | PC: 13913 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:43:20.165032279Z | 37 | PC: 1391c | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:43:20.167781984Z | 48 | PC: 13fab | Get DOS version |
| 2018-12-17T22:43:20.169683756Z | 41 | PC: 138ca | Parse filename |
| 2018-12-17T22:43:20.17144808Z | 41 | PC: 138d8 | Parse filename |
| 2018-12-17T22:43:20.174228522Z | 75 | PC: 138e3 | Execute program |
| 2018-12-17T22:43:20.197201198Z | 80 | PC: 1a689 | Set current PSP |
| 2018-12-17T22:43:20.198395532Z | 48 | PC: 1a68e | Get DOS version |
| 2018-12-17T22:43:20.201093569Z | 99 | PC: 20e70 | Get DBCS lead byte table pointer |
| 2018-12-17T22:43:20.207874925Z | 101 | PC: 1a714 | Get extended country info |
| 2018-12-17T22:43:20.209395401Z | 99 | PC: 1a71a | Get DBCS lead byte table pointer |
| 2018-12-17T22:43:20.211632904Z | 74 | PC: 1a77c | Reallocate memory |
| 2018-12-17T22:43:20.213369315Z | 25 | PC: 1a7b3 | Get default drive |
| 2018-12-17T22:43:20.214762702Z | 37 | PC: 1a273 | Set interrupt vector (Interrupt = '34' AKA 'Random write') |
| 2018-12-17T22:43:20.216233344Z | 37 | PC: 1a27a | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:43:20.218336755Z | 37 | PC: 1a281 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:43:20.222900847Z | 74 | PC: 1941c | Reallocate memory |
| 2018-12-17T22:43:20.224791828Z | 72 | PC: 1945d | Allocate memory |
| 2018-12-17T22:43:20.228808091Z | 72 | PC: 19495 | Allocate memory |
| 2018-12-17T22:43:20.231252352Z | 72 | PC: 1949d | Allocate memory |