{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10722,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:28:55.089305284Z | 48 | PC: 13c4b | Get DOS version |
| 2018-12-25T12:28:55.09177359Z | 42 | PC: 13c72 | Get date 0x13c72: cmp dl, 5 0x13c75: jne 0x13c7e 0x13c77: mov byte ptr cs:[0x5e7], 0xff 0x13c7d: nop 0x13c7e: mov ax, es 0x13c80: dec ax 0x13c81: mov es, ax 0x13c83: mov ax, word ptr es:[3] 0x13c87: sub ax, 0x7d 0x13c8a: mov word ptr es:[3], ax 0x13c8e: mov bx, word ptr es:[1] 0x13c93: add ax, bx 0x13c95: mov es, ax 0x13c97: mov dx, es 0x13c99: mov ah, 0x26 0x13c9b: int 0x21 0x13c9d: mov ax, cs 0x13c9f: mov ds, ax 0x13ca1: mov si, 0 0x13ca4: mov di, 0x100 |
| 2018-12-25T12:28:55.094161786Z | 38 | PC: 13c9d | Create PSP |
| 2018-12-25T12:28:55.095796333Z | 53 | PC: 13d4a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T12:28:55.097829095Z | 37 | PC: 13d5d | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T12:28:55.099213733Z | 67 | PC: 13d71 | Get or set file attributes |
| 2018-12-25T12:28:55.103800766Z | 67 | PC: 13d81 | Get or set file attributes |
| 2018-12-25T12:28:55.107560553Z | 61 | PC: 13d9c | Open file (Filename = '') |
| 2018-12-25T12:28:55.110499259Z | 87 | PC: 13da3 | Get or set file date and time |
| 2018-12-25T12:28:55.111529026Z | 66 | PC: 140c3 | Move file pointer |
| 2018-12-25T12:28:55.112811734Z | 66 | PC: 140cf | Move file pointer |
| 2018-12-25T12:28:55.119016293Z | 63 | PC: 140d9 | Read file or device (Read 3 bytes on handle 2) |
{"DateBased":true,"Day":5,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10722,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:28:55.283800957Z | 48 | PC: 13c4b | Get DOS version |
| 2018-12-25T12:28:55.285512551Z | 42 | PC: 13c72 | Get date 0x13c72: cmp dl, 5 0x13c75: jne 0x13c7e 0x13c77: mov byte ptr cs:[0x5e7], 0xff 0x13c7d: nop 0x13c7e: mov ax, es 0x13c80: dec ax 0x13c81: mov es, ax 0x13c83: mov ax, word ptr es:[3] 0x13c87: sub ax, 0x7d 0x13c8a: mov word ptr es:[3], ax 0x13c8e: mov bx, word ptr es:[1] 0x13c93: add ax, bx 0x13c95: mov es, ax 0x13c97: mov dx, es 0x13c99: mov ah, 0x26 0x13c9b: int 0x21 0x13c9d: mov ax, cs 0x13c9f: mov ds, ax 0x13ca1: mov si, 0 0x13ca4: mov di, 0x100 |
| 2018-12-25T12:28:55.28760644Z | 38 | PC: 13c9d | Create PSP |
| 2018-12-25T12:28:55.289154498Z | 53 | PC: 13d4a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T12:28:55.293096347Z | 37 | PC: 13d5d | Set interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T12:28:55.300694835Z | 67 | PC: 13d71 | Get or set file attributes |
| 2018-12-25T12:28:55.304858591Z | 67 | PC: 13d81 | Get or set file attributes |
| 2018-12-25T12:28:55.309356181Z | 61 | PC: 13d9c | Open file (Filename = '') |
| 2018-12-25T12:28:55.314354822Z | 87 | PC: 13da3 | Get or set file date and time |
| 2018-12-25T12:28:55.315722094Z | 66 | PC: 140c3 | Move file pointer |
| 2018-12-25T12:28:55.317075323Z | 66 | PC: 140cf | Move file pointer |
| 2018-12-25T12:28:55.323144136Z | 63 | PC: 140d9 | Read file or device (Read 3 bytes on handle 2) |