{"DateBased":true,"Day":9,"Month":5,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1014,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:42:24.65329034Z | 48 | PC: 15154 | Get DOS version |
| 2018-12-25T11:42:24.655515621Z | 48 | PC: 151f3 | Get DOS version |
| 2018-12-25T11:42:24.657439211Z | 74 | PC: 15200 | Reallocate memory |
| 2018-12-25T11:42:24.659262706Z | 74 | PC: 15207 | Reallocate memory |
| 2018-12-25T11:42:24.660877397Z | 72 | PC: 15216 | Allocate memory |
| 2018-12-25T11:42:24.664330795Z | 42 | PC: 15265 | Get date 0x15265: cmp dh, 5 0x15268: jb 0x15294 0x1526a: cmp dl, 9 0x1526d: jb 0x15294 0x1526f: cmp cx, 0x7cb 0x15273: jb 0x15294 0x15275: cmp al, 0 0x15277: jne 0x15294 0x15279: mov ah, 0x2c 0x1527b: int 0x21 0x1527d: cmp ch, 0xc 0x15280: jne 0x15294 0x15282: cmp cl, 0x1e 0x15285: jb 0x15294 0x15287: cmp dh, 0x1e 0x1528a: jb 0x15294 0x1528c: cmp dl, 0x32 0x1528f: jb 0x15294 0x15291: call 0x1546c 0x15294: xor ax, ax |
| 2018-12-25T11:42:24.667222551Z | 48 | PC: 15154 | Get DOS version (See above) |
{"DateBased":true,"Day":9,"Month":5,"Year":1995,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1014,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:42:24.706311954Z | 48 | PC: 15154 | Get DOS version |
| 2018-12-25T11:42:24.709830177Z | 48 | PC: 151f3 | Get DOS version |
| 2018-12-25T11:42:24.711018065Z | 74 | PC: 15200 | Reallocate memory |
| 2018-12-25T11:42:24.712749929Z | 74 | PC: 15207 | Reallocate memory |
| 2018-12-25T11:42:24.714488368Z | 72 | PC: 15216 | Allocate memory |
| 2018-12-25T11:42:24.717022508Z | 42 | PC: 15265 | Get date 0x15265: cmp dh, 5 0x15268: jb 0x15294 0x1526a: cmp dl, 9 0x1526d: jb 0x15294 0x1526f: cmp cx, 0x7cb 0x15273: jb 0x15294 0x15275: cmp al, 0 0x15277: jne 0x15294 0x15279: mov ah, 0x2c 0x1527b: int 0x21 0x1527d: cmp ch, 0xc 0x15280: jne 0x15294 0x15282: cmp cl, 0x1e 0x15285: jb 0x15294 0x15287: cmp dh, 0x1e 0x1528a: jb 0x15294 0x1528c: cmp dl, 0x32 0x1528f: jb 0x15294 0x15291: call 0x1546c 0x15294: xor ax, ax |
| 2018-12-25T11:42:24.720191423Z | 48 | PC: 15154 | Get DOS version (See above) |
{"DateBased":true,"Day":14,"Month":5,"Year":1995,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1014,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:42:24.736618714Z | 48 | PC: 15154 | Get DOS version |
| 2018-12-25T11:42:24.739174276Z | 48 | PC: 151f3 | Get DOS version |
| 2018-12-25T11:42:24.740243689Z | 74 | PC: 15200 | Reallocate memory |
| 2018-12-25T11:42:24.741720254Z | 74 | PC: 15207 | Reallocate memory |
| 2018-12-25T11:42:24.743630824Z | 72 | PC: 15216 | Allocate memory |
| 2018-12-25T11:42:24.74526169Z | 42 | PC: 15265 | Get date 0x15265: cmp dh, 5 0x15268: jb 0x15294 0x1526a: cmp dl, 9 0x1526d: jb 0x15294 0x1526f: cmp cx, 0x7cb 0x15273: jb 0x15294 0x15275: cmp al, 0 0x15277: jne 0x15294 0x15279: mov ah, 0x2c 0x1527b: int 0x21 0x1527d: cmp ch, 0xc 0x15280: jne 0x15294 0x15282: cmp cl, 0x1e 0x15285: jb 0x15294 0x15287: cmp dh, 0x1e 0x1528a: jb 0x15294 0x1528c: cmp dl, 0x32 0x1528f: jb 0x15294 0x15291: call 0x1546c 0x15294: xor ax, ax |
| 2018-12-25T11:42:24.747432548Z | 44 | PC: 1527d | Get time 0x1527d: cmp ch, 0xc 0x15280: jne 0x15294 0x15282: cmp cl, 0x1e 0x15285: jb 0x15294 0x15287: cmp dh, 0x1e 0x1528a: jb 0x15294 0x1528c: cmp dl, 0x32 0x1528f: jb 0x15294 0x15291: call 0x1546c 0x15294: xor ax, ax 0x15296: ret 0x15297: mov ax, ds 0x15299: add ax, 0x10 0x1529c: add word ptr cs:[bp + 0x17a], ax 0x152a1: add ax, word ptr cs:[bp + 0x172] 0x152a6: cli 0x152a7: mov ss, ax 0x152a9: mov sp, word ptr cs:[bp + 0x174] 0x152ae: sti 0x152af: ljmp ptr cs:[bp + 0x178] |
| 2018-12-25T11:42:24.750027348Z | 48 | PC: 15154 | Get DOS version (See above) |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1014,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:42:24.935107836Z | 48 | PC: 15154 | Get DOS version |
| 2018-12-25T11:42:24.936903058Z | 48 | PC: 151f3 | Get DOS version |
| 2018-12-25T11:42:24.93801857Z | 74 | PC: 15200 | Reallocate memory |
| 2018-12-25T11:42:24.939419326Z | 74 | PC: 15207 | Reallocate memory |
| 2018-12-25T11:42:24.940987734Z | 72 | PC: 15216 | Allocate memory |
| 2018-12-25T11:42:24.942686538Z | 42 | PC: 15265 | Get date 0x15265: cmp dh, 5 0x15268: jb 0x15294 0x1526a: cmp dl, 9 0x1526d: jb 0x15294 0x1526f: cmp cx, 0x7cb 0x15273: jb 0x15294 0x15275: cmp al, 0 0x15277: jne 0x15294 0x15279: mov ah, 0x2c 0x1527b: int 0x21 0x1527d: cmp ch, 0xc 0x15280: jne 0x15294 0x15282: cmp cl, 0x1e 0x15285: jb 0x15294 0x15287: cmp dh, 0x1e 0x1528a: jb 0x15294 0x1528c: cmp dl, 0x32 0x1528f: jb 0x15294 0x15291: call 0x1546c 0x15294: xor ax, ax |
| 2018-12-25T11:42:24.944876561Z | 48 | PC: 15154 | Get DOS version (See above) |
{"DateBased":true,"Day":1,"Month":5,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1014,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:42:24.943466256Z | 48 | PC: 15154 | Get DOS version |
| 2018-12-25T11:42:24.94576288Z | 48 | PC: 151f3 | Get DOS version |
| 2018-12-25T11:42:24.946901336Z | 74 | PC: 15200 | Reallocate memory |
| 2018-12-25T11:42:24.948503473Z | 74 | PC: 15207 | Reallocate memory |
| 2018-12-25T11:42:24.950663277Z | 72 | PC: 15216 | Allocate memory |
| 2018-12-25T11:42:24.952446508Z | 42 | PC: 15265 | Get date 0x15265: cmp dh, 5 0x15268: jb 0x15294 0x1526a: cmp dl, 9 0x1526d: jb 0x15294 0x1526f: cmp cx, 0x7cb 0x15273: jb 0x15294 0x15275: cmp al, 0 0x15277: jne 0x15294 0x15279: mov ah, 0x2c 0x1527b: int 0x21 0x1527d: cmp ch, 0xc 0x15280: jne 0x15294 0x15282: cmp cl, 0x1e 0x15285: jb 0x15294 0x15287: cmp dh, 0x1e 0x1528a: jb 0x15294 0x1528c: cmp dl, 0x32 0x1528f: jb 0x15294 0x15291: call 0x1546c 0x15294: xor ax, ax |
| 2018-12-25T11:42:24.954633239Z | 48 | PC: 15154 | Get DOS version (See above) |