.
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-17T22:46:14.689725178Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:46:14.691092275Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:46:14.693073923Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:46:14.694738355Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:46:14.696377966Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:46:14.698613934Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:46:14.700421792Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:46:14.702111357Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:46:14.705637657Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:46:14.718069969Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:46:14.719458066Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:46:14.721326456Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:46:14.722703901Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:46:14.724006353Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:46:14.725531419Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:46:14.735278309Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:46:14.736880541Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:46:14.738492105Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:46:14.741602001Z | 53 | PC: 13282 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:46:14.74394625Z | 37 | PC: 13297 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:46:14.746290755Z | 37 | PC: 1329f | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:46:14.748949078Z | 37 | PC: 132a7 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:46:14.751242639Z | 37 | PC: 132af | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:46:14.753985906Z | 68 | PC: 1382f | I/O control for devices (Set for = '') |
| 2018-12-17T22:46:14.757481612Z | 42 | PC: 130a7 | Get date 0x130a7: xor ah, ah 0x130a9: les di, ptr [bp + 6] 0x130ac: stosw word ptr es:[di], ax 0x130ad: mov al, dl 0x130af: les di, ptr [bp + 0xa] 0x130b2: stosw word ptr es:[di], ax 0x130b3: mov al, dh 0x130b5: les di, ptr [bp + 0xe] 0x130b8: stosw word ptr es:[di], ax 0x130b9: xchg ax, cx 0x130ba: les di, ptr [bp + 0x12] 0x130bd: stosw word ptr es:[di], ax 0x130be: pop bp 0x130bf: retf 0x10 0x130c2: push bp 0x130c3: mov bp, sp 0x130c5: mov cx, word ptr [bp + 0xa] 0x130c8: mov dh, byte ptr [bp + 8] 0x130cb: mov dl, byte ptr [bp + 6] 0x130ce: mov ah, 0x2b |
| 2018-12-17T22:46:14.760241536Z | 26 | PC: 13137 | Set disk transfer address |
| 2018-12-17T22:46:14.761470336Z | 78 | PC: 13143 | Find first file |
| 2018-12-17T22:46:14.769223097Z | 26 | PC: 1315b | Set disk transfer address |
| 2018-12-17T22:46:14.770874332Z | 79 | PC: 13160 | Find next file |
| 2018-12-17T22:46:14.775820678Z | 61 | PC: 13e1a | Open file (Filename = 'PRINT.COM') |
| 2018-12-17T22:46:14.787373509Z | 63 | PC: 13eed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:14.801898986Z | 66 | PC: 13fb6 | Move file pointer |
| 2018-12-17T22:46:14.804206753Z | 66 | PC: 13fc4 | Move file pointer |
| 2018-12-17T22:46:14.806478096Z | 66 | PC: 13fd2 | Move file pointer |
| 2018-12-17T22:46:14.808760679Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:14.811213462Z | 26 | PC: 1315b | Set disk transfer address |
| 2018-12-17T22:46:14.81302195Z | 79 | PC: 13160 | Find next file |
| 2018-12-17T22:46:14.816673092Z | 61 | PC: 13e1a | Open file (Filename = 'HELLO.COM') |
| 2018-12-17T22:46:14.824065517Z | 63 | PC: 13eed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:14.831602172Z | 66 | PC: 13fb6 | Move file pointer |
| 2018-12-17T22:46:14.833961478Z | 66 | PC: 13fc4 | Move file pointer |
| 2018-12-17T22:46:14.835538838Z | 66 | PC: 13fd2 | Move file pointer |
| 2018-12-17T22:46:14.837136442Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:14.839965916Z | 26 | PC: 1315b | Set disk transfer address |
| 2018-12-17T22:46:14.841520474Z | 79 | PC: 13160 | Find next file |
| 2018-12-17T22:46:14.845342153Z | 61 | PC: 13e1a | Open file (Filename = 'PHANG.COM') |
| 2018-12-17T22:46:14.854005611Z | 63 | PC: 13eed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:14.861565868Z | 66 | PC: 13fb6 | Move file pointer |
| 2018-12-17T22:46:14.863866638Z | 66 | PC: 13fc4 | Move file pointer |
| 2018-12-17T22:46:14.866827495Z | 66 | PC: 13fd2 | Move file pointer |
| 2018-12-17T22:46:14.868552988Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:14.872616251Z | 26 | PC: 1315b | Set disk transfer address |
| 2018-12-17T22:46:14.875474944Z | 79 | PC: 13160 | Find next file |
| 2018-12-17T22:46:14.879069256Z | 61 | PC: 13e1a | Open file (Filename = 'PRINTA~1.COM') |
| 2018-12-17T22:46:14.887865136Z | 63 | PC: 13eed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:14.895280723Z | 66 | PC: 13fb6 | Move file pointer |
| 2018-12-17T22:46:14.89766762Z | 66 | PC: 13fc4 | Move file pointer |
| 2018-12-17T22:46:14.899597382Z | 66 | PC: 13fd2 | Move file pointer |
| 2018-12-17T22:46:14.901497157Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:14.904253952Z | 26 | PC: 1315b | Set disk transfer address |
| 2018-12-17T22:46:14.905506992Z | 79 | PC: 13160 | Find next file |
| 2018-12-17T22:46:14.908735338Z | 61 | PC: 13e1a | Open file (Filename = 'MANDEL.COM') |
| 2018-12-17T22:46:14.916906582Z | 63 | PC: 13eed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:14.924547083Z | 66 | PC: 13fb6 | Move file pointer |
| 2018-12-17T22:46:14.926195224Z | 66 | PC: 13fc4 | Move file pointer |
| 2018-12-17T22:46:14.933037798Z | 66 | PC: 13fd2 | Move file pointer |
| 2018-12-17T22:46:14.934728068Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:14.93674561Z | 26 | PC: 1315b | Set disk transfer address |
| 2018-12-17T22:46:14.938612859Z | 79 | PC: 13160 | Find next file |
| 2018-12-17T22:46:14.941833533Z | 61 | PC: 13e1a | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:46:14.949679632Z | 63 | PC: 13eed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:14.969332695Z | 66 | PC: 13fb6 | Move file pointer |
| 2018-12-17T22:46:14.971524957Z | 66 | PC: 13fc4 | Move file pointer |
| 2018-12-17T22:46:14.973467863Z | 66 | PC: 13fd2 | Move file pointer |
| 2018-12-17T22:46:14.976374331Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:14.97870761Z | 26 | PC: 1315b | Set disk transfer address |
| 2018-12-17T22:46:14.980063224Z | 79 | PC: 13160 | Find next file |
| 2018-12-17T22:46:14.983730682Z | 61 | PC: 13e1a | Open file (Filename = 'PAH.COM') |
| 2018-12-17T22:46:14.991724942Z | 63 | PC: 13eed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:14.99453279Z | 66 | PC: 13fb6 | Move file pointer |
| 2018-12-17T22:46:14.998308456Z | 66 | PC: 13fc4 | Move file pointer |
| 2018-12-17T22:46:15.000101185Z | 66 | PC: 13fd2 | Move file pointer |
| 2018-12-17T22:46:15.001604144Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:15.003418643Z | 26 | PC: 13137 | Set disk transfer address |
| 2018-12-17T22:46:15.004879848Z | 78 | PC: 13143 | Find first file |
| 2018-12-17T22:46:15.01153245Z | 26 | PC: 1315b | Set disk transfer address |
| 2018-12-17T22:46:15.012443553Z | 79 | PC: 13160 | Find next file |
| 2018-12-17T22:46:15.015545724Z | 61 | PC: 13e1a | Open file (Filename = 'TEST.EXE') |
| 2018-12-17T22:46:15.023059525Z | 63 | PC: 13eed | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-17T22:46:15.026432381Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:15.02965756Z | 48 | PC: 1405a | Get DOS version |
| 2018-12-17T22:46:15.031367227Z | 61 | PC: 13e1a | Open file (Filename = 'A:\TEST.EXE') |
| 2018-12-17T22:46:15.039024367Z | 66 | PC: 13fb6 | Move file pointer |
| 2018-12-17T22:46:15.041484034Z | 66 | PC: 13fc4 | Move file pointer |
| 2018-12-17T22:46:15.043123557Z | 66 | PC: 13fd2 | Move file pointer |
| 2018-12-17T22:46:15.044762395Z | 63 | PC: 13eed | Read file or device (Read 4415 bytes on handle 5) |
| 2018-12-17T22:46:15.053786504Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:15.055980708Z | 60 | PC: 13e1a | Create or truncate file |
| 2018-12-17T22:46:15.076560255Z | 62 | PC: 13e6a | Close file |
| 2018-12-17T22:46:15.080499462Z | 41 | PC: 131ee | Parse filename |
| 2018-12-17T22:46:15.082231478Z | 41 | PC: 131fc | Parse filename |
| 2018-12-17T22:46:15.083797263Z | 75 | PC: 13207 | Execute program |
| 2018-12-17T22:46:15.09389207Z | 65 | PC: 13fef | Delete file (Filename = 'temp.com') |
| 2018-12-17T22:46:15.105798843Z | 64 | PC: 13932 | Write file or device (Write 0 bytes on handle 1) |
| 2018-12-17T22:46:15.107998781Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate') |
| 2018-12-17T22:46:15.109677607Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '2' AKA 'Character output') |
| 2018-12-17T22:46:15.110960999Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive') |
| 2018-12-17T22:46:15.11214025Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-17T22:46:15.113372604Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records') |
| 2018-12-17T22:46:15.11591416Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-17T22:46:15.117312247Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer') |
| 2018-12-17T22:46:15.119352318Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector') |
| 2018-12-17T22:46:15.121626164Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space') |
| 2018-12-17T22:46:15.123157115Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character') |
| 2018-12-17T22:46:15.125287986Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info') |
| 2018-12-17T22:46:15.127429305Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory') |
| 2018-12-17T22:46:15.129136521Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory') |
| 2018-12-17T22:46:15.130872238Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory') |
| 2018-12-17T22:46:15.133253184Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file') |
| 2018-12-17T22:46:15.134745648Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '61' AKA 'Open file') |
| 2018-12-17T22:46:15.136155832Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '62' AKA 'Close file') |
| 2018-12-17T22:46:15.138379379Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device') |
| 2018-12-17T22:46:15.140132783Z | 37 | PC: 13396 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!') |
| 2018-12-17T22:46:15.142019978Z | 76 | PC: 133d5 | Terminate with return code (Return code = '0') |