{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11335,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:30:22.600083029Z | 42 | PC: 7c553 | Get date 0x7c553: cmp dl, 5 0x7c556: jne 0x7c55d 0x7c558: mov byte ptr [0x12], 0x7e 0x7c55d: ret 0x7c55e: push bx 0x7c55f: push cx 0x7c560: push dx 0x7c561: push es 0x7c562: mov ax, 0x7c00 0x7c565: mov es, ax 0x7c567: mov ax, 0x301 0x7c56a: mov cx, 0x2709 0x7c56d: mov dh, 1 0x7c56f: mov dl, 2 0x7c571: nop 0x7c572: nop 0x7c573: mov bx, 0x700 0x7c576: int 0x13 0x7c578: mov al, 0 0x7c57a: jae 0x7c583 |
| 2018-12-25T12:30:22.602612936Z | 25 | PC: 7c54a | Get default drive |
| 2018-12-25T12:30:22.61022367Z | 9 | PC: 13dc6 | Display string (String= 'Hello - Copyright S & S International, 1990 ') |
| 2018-12-25T12:30:22.616449329Z | 42 | PC: 7c553 | Get date (See above) |
| 2018-12-25T12:30:22.618951274Z | 25 | PC: 7c54a | Get default drive (See above) |
| 2018-12-25T12:30:22.621558426Z | 26 | PC: 7c544 | Set disk transfer address |
| 2018-12-25T12:30:22.623879117Z | 78 | PC: 7c472 | Find first file |
| 2018-12-25T12:30:22.631470571Z | 79 | PC: 7c482 | Find next file |
| 2018-12-25T12:30:22.634816041Z | 79 | PC: 7c482 | Find next file (See above) |
| 2018-12-25T12:30:22.638650965Z | 79 | PC: 7c482 | Find next file (See above) |
| 2018-12-25T12:30:22.642071996Z | 79 | PC: 7c482 | Find next file (See above) |
| 2018-12-25T12:30:22.645449643Z | 79 | PC: 7c482 | Find next file (See above) |
| 2018-12-25T12:30:22.649318341Z | 79 | PC: 7c482 | Find next file (See above) |
| 2018-12-25T12:30:22.653997908Z | 79 | PC: 7c482 | Find next file (See above) |
| 2018-12-25T12:30:22.65784419Z | 61 | PC: 7c4bd | Open file (Filename = ' ') |
| 2018-12-25T12:30:22.66680328Z | 66 | PC: 7c529 | Move file pointer |
| 2018-12-25T12:30:22.668680306Z | 63 | PC: 7c533 | Read file or device (Read 1500 bytes on handle 5) |
| 2018-12-25T12:30:22.677054757Z | 62 | PC: 7c50c | Close file |
| 2018-12-25T12:30:22.680049945Z | 79 | PC: 7c482 | Find next file (See above) |
{"DateBased":true,"Day":5,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11335,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:30:22.968819483Z | 42 | PC: 7c553 | Get date 0x7c553: cmp dl, 5 0x7c556: jne 0x7c55d 0x7c558: mov byte ptr [0x12], 0x7e 0x7c55d: ret 0x7c55e: push bx 0x7c55f: push cx 0x7c560: push dx 0x7c561: push es 0x7c562: mov ax, 0x7c00 0x7c565: mov es, ax 0x7c567: mov ax, 0x301 0x7c56a: mov cx, 0x2709 0x7c56d: mov dh, 1 0x7c56f: mov dl, 2 0x7c571: nop 0x7c572: nop 0x7c573: mov bx, 0x700 0x7c576: int 0x13 0x7c578: mov al, 0 0x7c57a: jae 0x7c583 |
| 2018-12-25T12:30:22.971490933Z | 25 | PC: 7c54a | Get default drive |
| 2018-12-25T12:30:22.977299273Z | 9 | PC: 13dc6 | Display string (String= 'Hello - Copyright S & S International, 1990 ') |
| 2018-12-25T12:30:22.982568712Z | 42 | PC: 7c553 | Get date (See above) |
| 2018-12-25T12:30:22.986454891Z | 26 | PC: 7c544 | Set disk transfer address |
| 2018-12-25T12:30:22.987535399Z | 78 | PC: 7c44f | Find first file |
| 2018-12-25T12:30:22.993326137Z | 65 | PC: 7c456 | Delete file (Filename = ' ') |
| 2018-12-25T12:30:23.011449358Z | 9 | PC: 7c421 | Display string (Could not find end pointer) |