{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":10244,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:27:37.892814495Z | 42 | PC: 12a6f | Get date 0x12a6f: cmp dl, 0xd 0x12a72: jne 0x12a87 0x12a74: cmp al, 5 0x12a76: jne 0x12a87 0x12a78: mov byte ptr [0x56d], 0x41 0x12a7d: mov byte ptr [0x560], 1 0x12a82: mov byte ptr [0x55e], 0x45 0x12a87: mov ah, 0x2c 0x12a89: int 0x21 0x12a8b: cmp dh, 0x32 0x12a8e: jbe 0x12aa2 0x12a90: cmp word ptr [0x55c], 0x80 0x12a96: jb 0x12aa2 0x12a98: mov byte ptr [0x560], 1 0x12a9d: mov byte ptr [0x55e], 0x45 0x12aa2: mov al, dh 0x12aa4: mov ah, 0 0x12aa6: mov bx, 8 0x12aa9: cdq 0x12aaa: idiv bx |
| 2018-12-25T12:27:37.895775442Z | 44 | PC: 12a8b | Get time 0x12a8b: cmp dh, 0x32 0x12a8e: jbe 0x12aa2 0x12a90: cmp word ptr [0x55c], 0x80 0x12a96: jb 0x12aa2 0x12a98: mov byte ptr [0x560], 1 0x12a9d: mov byte ptr [0x55e], 0x45 0x12aa2: mov al, dh 0x12aa4: mov ah, 0 0x12aa6: mov bx, 8 0x12aa9: cdq 0x12aaa: idiv bx 0x12aac: or dx, dx 0x12aae: jg 0x12ae6 0x12ab0: mov ax, cx 0x12ab2: mov bx, 0x4c 0x12ab5: xor dx, dx 0x12ab7: div bx 0x12ab9: mov word ptr [0x56e], dx 0x12abd: inc word ptr [0x55c] 0x12ac1: mov ax, 0x570 |
| 2018-12-25T12:27:37.897987546Z | 9 | PC: 12a67 | Display string (String= 'This is a tiny COM program. ') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":10244,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:27:37.896454809Z | 42 | PC: 12a6f | Get date 0x12a6f: cmp dl, 0xd 0x12a72: jne 0x12a87 0x12a74: cmp al, 5 0x12a76: jne 0x12a87 0x12a78: mov byte ptr [0x56d], 0x41 0x12a7d: mov byte ptr [0x560], 1 0x12a82: mov byte ptr [0x55e], 0x45 0x12a87: mov ah, 0x2c 0x12a89: int 0x21 0x12a8b: cmp dh, 0x32 0x12a8e: jbe 0x12aa2 0x12a90: cmp word ptr [0x55c], 0x80 0x12a96: jb 0x12aa2 0x12a98: mov byte ptr [0x560], 1 0x12a9d: mov byte ptr [0x55e], 0x45 0x12aa2: mov al, dh 0x12aa4: mov ah, 0 0x12aa6: mov bx, 8 0x12aa9: cdq 0x12aaa: idiv bx |
| 2018-12-25T12:27:37.899998507Z | 44 | PC: 12a8b | Get time 0x12a8b: cmp dh, 0x32 0x12a8e: jbe 0x12aa2 0x12a90: cmp word ptr [0x55c], 0x80 0x12a96: jb 0x12aa2 0x12a98: mov byte ptr [0x560], 1 0x12a9d: mov byte ptr [0x55e], 0x45 0x12aa2: mov al, dh 0x12aa4: mov ah, 0 0x12aa6: mov bx, 8 0x12aa9: cdq 0x12aaa: idiv bx 0x12aac: or dx, dx 0x12aae: jg 0x12ae6 0x12ab0: mov ax, cx 0x12ab2: mov bx, 0x4c 0x12ab5: xor dx, dx 0x12ab7: div bx 0x12ab9: mov word ptr [0x56e], dx 0x12abd: inc word ptr [0x55c] 0x12ac1: mov ax, 0x570 |
| 2018-12-25T12:27:37.902629123Z | 9 | PC: 12a67 | Display string (String= 'This is a tiny COM program. ') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":50,"TimeBased":true,"OriginalID":10244,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:27:38.301618262Z | 42 | PC: 12a6f | Get date 0x12a6f: cmp dl, 0xd 0x12a72: jne 0x12a87 0x12a74: cmp al, 5 0x12a76: jne 0x12a87 0x12a78: mov byte ptr [0x56d], 0x41 0x12a7d: mov byte ptr [0x560], 1 0x12a82: mov byte ptr [0x55e], 0x45 0x12a87: mov ah, 0x2c 0x12a89: int 0x21 0x12a8b: cmp dh, 0x32 0x12a8e: jbe 0x12aa2 0x12a90: cmp word ptr [0x55c], 0x80 0x12a96: jb 0x12aa2 0x12a98: mov byte ptr [0x560], 1 0x12a9d: mov byte ptr [0x55e], 0x45 0x12aa2: mov al, dh 0x12aa4: mov ah, 0 0x12aa6: mov bx, 8 0x12aa9: cdq 0x12aaa: idiv bx |
| 2018-12-25T12:27:38.304280632Z | 44 | PC: 12a8b | Get time 0x12a8b: cmp dh, 0x32 0x12a8e: jbe 0x12aa2 0x12a90: cmp word ptr [0x55c], 0x80 0x12a96: jb 0x12aa2 0x12a98: mov byte ptr [0x560], 1 0x12a9d: mov byte ptr [0x55e], 0x45 0x12aa2: mov al, dh 0x12aa4: mov ah, 0 0x12aa6: mov bx, 8 0x12aa9: cdq 0x12aaa: idiv bx 0x12aac: or dx, dx 0x12aae: jg 0x12ae6 0x12ab0: mov ax, cx 0x12ab2: mov bx, 0x4c 0x12ab5: xor dx, dx 0x12ab7: div bx 0x12ab9: mov word ptr [0x56e], dx 0x12abd: inc word ptr [0x55c] 0x12ac1: mov ax, 0x570 |
| 2018-12-25T12:27:38.307198992Z | 9 | PC: 12a67 | Display string (String= 'This is a tiny COM program. ') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":50,"TimeBased":true,"OriginalID":10244,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:27:38.442988197Z | 42 | PC: 12a6f | Get date 0x12a6f: cmp dl, 0xd 0x12a72: jne 0x12a87 0x12a74: cmp al, 5 0x12a76: jne 0x12a87 0x12a78: mov byte ptr [0x56d], 0x41 0x12a7d: mov byte ptr [0x560], 1 0x12a82: mov byte ptr [0x55e], 0x45 0x12a87: mov ah, 0x2c 0x12a89: int 0x21 0x12a8b: cmp dh, 0x32 0x12a8e: jbe 0x12aa2 0x12a90: cmp word ptr [0x55c], 0x80 0x12a96: jb 0x12aa2 0x12a98: mov byte ptr [0x560], 1 0x12a9d: mov byte ptr [0x55e], 0x45 0x12aa2: mov al, dh 0x12aa4: mov ah, 0 0x12aa6: mov bx, 8 0x12aa9: cdq 0x12aaa: idiv bx |
| 2018-12-25T12:27:38.445637449Z | 44 | PC: 12a8b | Get time 0x12a8b: cmp dh, 0x32 0x12a8e: jbe 0x12aa2 0x12a90: cmp word ptr [0x55c], 0x80 0x12a96: jb 0x12aa2 0x12a98: mov byte ptr [0x560], 1 0x12a9d: mov byte ptr [0x55e], 0x45 0x12aa2: mov al, dh 0x12aa4: mov ah, 0 0x12aa6: mov bx, 8 0x12aa9: cdq 0x12aaa: idiv bx 0x12aac: or dx, dx 0x12aae: jg 0x12ae6 0x12ab0: mov ax, cx 0x12ab2: mov bx, 0x4c 0x12ab5: xor dx, dx 0x12ab7: div bx 0x12ab9: mov word ptr [0x56e], dx 0x12abd: inc word ptr [0x55c] 0x12ac1: mov ax, 0x570 |
| 2018-12-25T12:27:38.448808887Z | 9 | PC: 12a67 | Display string (String= 'This is a tiny COM program. ') |