Sample viewer

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10716,"SideJobID":0}

.

GIF

Syscalls:

{"DateBased":true,"Day":1,"Month":1,"Year":1997,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10716,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:28:54.940341349Z	48	PC: 13d70 | Get DOS version
2018-12-25T12:28:54.941853472Z	42	PC: 13d78 | Get date 0x13d78: cmp cx, 0x7cd 0x13d7c: jb 0x13d98 0x13d7e: int 0x12 0x13d80: mov cl, 6 0x13d82: shl ax, cl 0x13d84: mov es, ax 0x13d86: push cs 0x13d87: pop ds 0x13d88: lea si, word ptr [bp - 0x10] 0x13d8c: mov di, 0xc35 0x13d8f: mov cx, 0x10 0x13d92: nop 0x13d93: cld 0x13d94: repe cmpsb byte ptr [si], byte ptr es:[di] 0x13d96: jne 0x13dd6 0x13d98: pop ax 0x13d99: push cs 0x13d9a: push cs 0x13d9b: pop ds 0x13d9c: pop es
2018-12-25T12:28:54.946144608Z	48	PC: 13e3f | Get DOS version
2018-12-25T12:28:54.947115013Z	227	PC: 13e59 | UNKNOWN!
2018-12-25T12:28:54.948352244Z	9	PC: 12a86 | Display string (String= 'Goat file (COM/....). Size=00000834h/0000002100d bytes. ')
2018-12-25T12:28:54.953642581Z	48	PC: 12a8f | Get DOS version
2018-12-25T12:28:54.954795989Z	239	PC: 9ee3c | UNKNOWN!
2018-12-25T12:28:54.955615568Z	82	PC: 9ee3c | Get DOS internal pointers (SYSVARS) (See above)
2018-12-25T12:28:54.967962775Z	61	PC: 9ee3c | Open file (See above)
2018-12-25T12:28:54.974413042Z	66	PC: 9ee3c | Move file pointer (See above)
2018-12-25T12:28:54.975636835Z	63	PC: 9ee3c | Read file or device (See above)
2018-12-25T12:28:54.97843524Z	62	PC: 9ee3c | Close file (See above)
2018-12-25T12:28:54.980113509Z	61	PC: 12b5c | Open file (Filename = '')
2018-12-25T12:28:54.986615262Z	93	PC: 12afe | File sharing functions
2018-12-25T12:28:54.989651783Z	9	PC: 12a86 | Display string (See above)
2018-12-25T12:28:54.996682114Z	76	PC: 12ae3 | Terminate with return code (Return code = '1')