{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":14542,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:40:52.375139844Z | 75 | PC: 12f47 | Execute program |
| 2018-12-25T12:40:52.377037291Z | 26 | PC: 12f89 | Set disk transfer address |
| 2018-12-25T12:40:52.378730506Z | 53 | PC: 12f8e | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:40:52.380201425Z | 37 | PC: 12f9f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:40:52.382514047Z | 44 | PC: 12fa4 | Get time 0x12fa4: cmp ch, 6 0x12fa7: jb 0x12fc3 0x12fa9: cmp ch, 0xe 0x12fac: ja 0x12fc3 0x12fae: mov ax, 0x3528 0x12fb1: int 0x21 0x12fb3: mov word ptr [0xd3], bx 0x12fb7: mov word ptr [0xd5], es 0x12fbb: mov ax, 0x2528 0x12fbe: mov dx, 0x3c4 0x12fc1: int 0x21 0x12fc3: pop es 0x12fc4: pop ds 0x12fc5: pop bx 0x12fc6: cli 0x12fc7: mov ss, word ptr cs:[bx + 0xa1] 0x12fcc: mov sp, word ptr cs:[bx + 0xa3] 0x12fd1: sti 0x12fd2: ljmp ptr cs:[bx + 0xac] 0x12fd7: pop dx |
{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":6,"Min":0,"Second":0,"TimeBased":true,"OriginalID":14542,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:40:52.387649257Z | 75 | PC: 12f47 | Execute program |
| 2018-12-25T12:40:52.389698641Z | 26 | PC: 12f89 | Set disk transfer address |
| 2018-12-25T12:40:52.391071268Z | 53 | PC: 12f8e | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:40:52.392607682Z | 37 | PC: 12f9f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:40:52.393658669Z | 44 | PC: 12fa4 | Get time 0x12fa4: cmp ch, 6 0x12fa7: jb 0x12fc3 0x12fa9: cmp ch, 0xe 0x12fac: ja 0x12fc3 0x12fae: mov ax, 0x3528 0x12fb1: int 0x21 0x12fb3: mov word ptr [0xd3], bx 0x12fb7: mov word ptr [0xd5], es 0x12fbb: mov ax, 0x2528 0x12fbe: mov dx, 0x3c4 0x12fc1: int 0x21 0x12fc3: pop es 0x12fc4: pop ds 0x12fc5: pop bx 0x12fc6: cli 0x12fc7: mov ss, word ptr cs:[bx + 0xa1] 0x12fcc: mov sp, word ptr cs:[bx + 0xa3] 0x12fd1: sti 0x12fd2: ljmp ptr cs:[bx + 0xac] 0x12fd7: pop dx |
| 2018-12-25T12:40:52.395652851Z | 53 | PC: 12fb3 | Get interrupt vector (Interrupt = '40' AKA 'Random block write') |
| 2018-12-25T12:40:52.397334066Z | 37 | PC: 12fc3 | Set interrupt vector (Interrupt = '40' AKA 'Random block write') |
{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":15,"Min":0,"Second":0,"TimeBased":true,"OriginalID":14542,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:40:52.492517882Z | 75 | PC: 12f47 | Execute program |
| 2018-12-25T12:40:52.49488868Z | 26 | PC: 12f89 | Set disk transfer address |
| 2018-12-25T12:40:52.496107226Z | 53 | PC: 12f8e | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:40:52.497377283Z | 37 | PC: 12f9f | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:40:52.499261768Z | 44 | PC: 12fa4 | Get time 0x12fa4: cmp ch, 6 0x12fa7: jb 0x12fc3 0x12fa9: cmp ch, 0xe 0x12fac: ja 0x12fc3 0x12fae: mov ax, 0x3528 0x12fb1: int 0x21 0x12fb3: mov word ptr [0xd3], bx 0x12fb7: mov word ptr [0xd5], es 0x12fbb: mov ax, 0x2528 0x12fbe: mov dx, 0x3c4 0x12fc1: int 0x21 0x12fc3: pop es 0x12fc4: pop ds 0x12fc5: pop bx 0x12fc6: cli 0x12fc7: mov ss, word ptr cs:[bx + 0xa1] 0x12fcc: mov sp, word ptr cs:[bx + 0xa3] 0x12fd1: sti 0x12fd2: ljmp ptr cs:[bx + 0xac] 0x12fd7: pop dx |