.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:45:22.793988548Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:45:22.799704119Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:45:22.801084103Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:45:22.802431369Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:45:22.806686426Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:45:22.808977013Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:22.810956151Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:45:22.812762672Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:45:22.815798343Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:45:22.817695905Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:45:22.819542392Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:45:22.830566244Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:45:22.83241998Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:45:22.834171381Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:45:22.836806006Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:45:22.839130362Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:45:22.841412448Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:45:22.844148601Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:45:22.847099737Z | 53 | PC: 132aa | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:45:22.854804506Z | 37 | PC: 132bf | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:45:22.855969533Z | 37 | PC: 132c7 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:45:22.875257304Z | 37 | PC: 132cf | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:22.877426601Z | 37 | PC: 132d7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:45:22.87928754Z | 68 | PC: 13b35 | I/O control for devices (Set for = '') |
| 2018-12-17T22:45:22.8814166Z | 42 | PC: 1309b | Get date 0x1309b: mov byte ptr [0x56], dh 0x1309f: mov byte ptr [0x57], dl 0x130a3: mov di, 0x59 0x130a6: push ds 0x130a7: push di 0x130a8: call 0x22a40 0x130ab: cmp byte ptr [0x57], 0x17 0x130b0: mov al, 0 0x130b2: jne 0x130b5 0x130b4: inc ax 0x130b5: mov dl, al 0x130b7: cmp byte ptr [0x56], 8 0x130bc: mov al, 0 0x130be: jne 0x130c1 0x130c0: inc ax 0x130c1: and al, dl 0x130c3: or al, al 0x130c5: je 0x130d5 0x130c7: mov ah, 0x40 0x130c9: mov bx, 1 |
| 2018-12-17T22:45:22.884908142Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:45:22.897516957Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:45:22.900001416Z | 61 | PC: 13712 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:45:22.907594715Z | 63 | PC: 137e5 | Read file or device (Read 4928 bytes on handle 5) |
| 2018-12-17T22:45:22.916093908Z | 62 | PC: 13762 | Close file |
| 2018-12-17T22:45:22.919168275Z | 26 | PC: 13125 | Set disk transfer address |
| 2018-12-17T22:45:22.920431568Z | 78 | PC: 13131 | Find first file |
| 2018-12-17T22:45:22.92694011Z | 61 | PC: 13712 | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:45:22.935301589Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:45:22.937499368Z | 63 | PC: 137e5 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-17T22:45:22.946295487Z | 26 | PC: 13149 | Set disk transfer address |
| 2018-12-17T22:45:22.948387459Z | 79 | PC: 1314e | Find next file |
| 2018-12-17T22:45:22.952035757Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:45:22.953637839Z | 26 | PC: 13125 | Set disk transfer address |
| 2018-12-17T22:45:22.955128634Z | 78 | PC: 13131 | Find first file |
| 2018-12-17T22:45:22.962581747Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:45:22.964491639Z | 67 | PC: 12cd9 | Get or set file attributes |
| 2018-12-17T22:45:22.969648726Z | 61 | PC: 13712 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:45:22.977682942Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:45:22.979764492Z | 63 | PC: 137e5 | Read file or device (Read 4928 bytes on handle 6) |
| 2018-12-17T22:45:22.988584172Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:45:22.991632884Z | 64 | PC: 13743 | Write file or device (Write 0 bytes on handle 6) |
| 2018-12-17T22:45:23.25132887Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:45:23.253803059Z | 64 | PC: 137e5 | Write file or device (Write 4928 bytes on handle 6) |
| 2018-12-17T22:45:23.26918368Z | 62 | PC: 13762 | Close file |
| 2018-12-17T22:45:23.282135167Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:45:23.284052518Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:45:23.286612233Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:45:23.290538719Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:45:23.295006471Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:45:23.298408285Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:45:23.300520929Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:45:23.303105503Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:45:23.305144591Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:45:23.307023463Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:45:23.309727114Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:23.311670658Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:23.31342055Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:45:23.314783037Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:45:23.316108314Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:45:23.31830161Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:45:23.320374857Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:45:23.321662955Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:45:23.323968595Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:45:23.325592132Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:45:23.327187053Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:45:23.329502672Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:45:23.331118061Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:45:23.332876221Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:45:23.335105481Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:45:23.336631932Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:45:23.338360691Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:45:23.340746154Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:45:23.342451609Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:45:23.346440084Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:45:23.348730662Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:45:23.350321262Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:45:23.351920578Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:45:23.354443756Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:45:23.355897937Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:45:23.357279556Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:45:23.358648434Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:45:23.361135009Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:45:23.362770008Z | 41 | PC: 131dd | Parse filename |
| 2018-12-17T22:45:23.364382087Z | 41 | PC: 131eb | Parse filename |
| 2018-12-17T22:45:23.366910599Z | 75 | PC: 131f6 | Execute program |
| 2018-12-17T22:45:23.385735858Z | 9 | PC: 173a8 | Display string (Could not find end pointer) |
| 2018-12-17T22:45:23.401628008Z | 76 | PC: 173ac | Terminate with return code (Return code = '36') |
| 2018-12-17T22:45:23.405916683Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:45:23.40731616Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:45:23.408637989Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:45:23.410789927Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:45:23.412404191Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:45:23.413755034Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:45:23.415293606Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:45:23.417499178Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:45:23.418848392Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:45:23.421061418Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:45:23.423539386Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:23.425310894Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:23.427055443Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:45:23.429271433Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:45:23.430795703Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:45:23.432216683Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:45:23.434917521Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:45:23.436738941Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:45:23.43860655Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:45:23.44158598Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:45:23.445776315Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:45:23.44736861Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:45:23.449307083Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:45:23.450732113Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:45:23.452103463Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:45:23.454532968Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:45:23.455915991Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:45:23.458169856Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:45:23.460619662Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:45:23.462101892Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:45:23.463368197Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:45:23.464767286Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:45:23.467853959Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:45:23.469450062Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:45:23.471421435Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:45:23.486408505Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:45:23.487608829Z | 53 | PC: 13226 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:45:23.488854056Z | 37 | PC: 1322f | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:45:23.490853052Z | 48 | PC: 13860 | Get DOS version |
| 2018-12-17T22:45:23.492240626Z | 61 | PC: 13712 | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:45:23.496834363Z | 64 | PC: 137e5 | Write file or device (Write 4928 bytes on handle 6) |
| 2018-12-17T22:45:23.503092326Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:45:23.504576212Z | 64 | PC: 137e5 | Write file or device (Write 4928 bytes on handle 6) |
| 2018-12-17T22:45:23.510393369Z | 66 | PC: 13844 | Move file pointer |
| 2018-12-17T22:45:23.512952798Z | 64 | PC: 137e5 | Write file or device (Write 5 bytes on handle 6) |
| 2018-12-17T22:45:23.515189242Z | 62 | PC: 13762 | Close file |
| 2018-12-17T22:45:23.52156024Z | 64 | PC: 1366d | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T22:45:23.523713399Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:45:23.524810808Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:45:23.525913559Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:45:23.532426969Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:45:23.535367692Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:45:23.536639502Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:45:23.538400013Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:45:23.539861583Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:45:23.541072258Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:45:23.542690803Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:45:23.543956326Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:45:23.545147807Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:45:23.546924994Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:45:23.548160032Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:45:23.549377598Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:45:23.551115406Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:45:23.552346066Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:45:23.553420006Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:45:23.55523181Z | 37 | PC: 13401 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:45:23.556571995Z | 76 | PC: 13440 | Terminate with return code (Return code = '0') |