{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14960,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:42:13.606370793Z | 42 | PC: 12a54 | Get date 0x12a54: cmp cx, 0x7bc 0x12a58: jbe 0x12a75 0x12a5a: jmp 0x12a5d 0x12a5c: nop 0x12a5d: mov ah, 0x2a 0x12a5f: int 0x21 0x12a61: cmp dh, 0xb 0x12a64: je 0x12a69 0x12a66: jmp 0x12a81 0x12a68: nop 0x12a69: mov ah, 0x2a 0x12a6b: int 0x21 0x12a6d: cmp dl, 0x19 0x12a70: je 0x12ab0 0x12a72: jmp 0x12a81 0x12a74: nop 0x12a75: mov ah, 0x2c 0x12a77: int 0x21 0x12a79: cmp cl, 0x1e 0x12a7c: jge 0x12aa6 |
| 2018-12-25T12:42:13.609255347Z | 44 | PC: 12a79 | Get time 0x12a79: cmp cl, 0x1e 0x12a7c: jge 0x12aa6 0x12a7e: jmp 0x12a81 0x12a80: nop 0x12a81: mov dx, 0x277 0x12a84: mov ah, 0x4e 0x12a86: xor cx, cx 0x12a88: int 0x21 0x12a8a: por mm7, qword ptr [bx + di] 0x12a8e: nop 0x12a8f: mov ah, 0x4f 0x12a91: int 0x21 0x12a93: cmp ax, 0x12 0x12a96: je 0x12a9b 0x12a98: jmp 0x12ac7 0x12a9a: nop 0x12a9b: mov dx, 0x27d 0x12a9e: mov ah, 0x3b 0x12aa0: int 0x21 0x12aa2: jb 0x12ac5 |
| 2018-12-25T12:42:13.61164578Z | 9 | PC: 12aad | Display string (Could not find end pointer) |
| 2018-12-25T12:42:13.62687923Z | 9 | PC: 12ab7 | Display string (String= 'HEY EVERYONE!!! Its Seneca's B-Day! Let's Party! ') |
| 2018-12-25T12:42:13.634567181Z | 17 | PC: 12abb | Find first file |
| 2018-12-25T12:42:13.63721246Z | 77 | PC: 11fe0 | Get program return code |
| 2018-12-25T12:42:13.638552912Z | 72 | PC: 12174 | Allocate memory |
| 2018-12-25T12:42:13.640511524Z | 2 | PC: 1268d | Character output (Char = '0d') |
| 2018-12-25T12:42:13.643120799Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.647106281Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.649430791Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.65212798Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.654635345Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.657047928Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.660422998Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.663581011Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.666745998Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.670013695Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.678101155Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.68148564Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.688925388Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.692190677Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.696382269Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.700696101Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.703822474Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.706750963Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.70969388Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.713159872Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.715547712Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.71793171Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.722656085Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.724999748Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.728210276Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.731001073Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.735538787Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.737241334Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.741986553Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.747537702Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.749978346Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.753520126Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.756482577Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.759018731Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.761588844Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.764226745Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.766535661Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.768837125Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.77354358Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.776670767Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.780046964Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.78282046Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.786411159Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.790001188Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.79281701Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.796427146Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.799485971Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.812448274Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.815153723Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.81904292Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.821748472Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.824562118Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.827753165Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.830451492Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.832746021Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.835703276Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.838108369Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.84139146Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.844281981Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.846872028Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.849200147Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:13.852271721Z | 2 | PC: 1268d | Character output (See above) |
{"DateBased":true,"Day":1,"Month":11,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14960,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:42:13.980425154Z | 42 | PC: 12a54 | Get date 0x12a54: cmp cx, 0x7bc 0x12a58: jbe 0x12a75 0x12a5a: jmp 0x12a5d 0x12a5c: nop 0x12a5d: mov ah, 0x2a 0x12a5f: int 0x21 0x12a61: cmp dh, 0xb 0x12a64: je 0x12a69 0x12a66: jmp 0x12a81 0x12a68: nop 0x12a69: mov ah, 0x2a 0x12a6b: int 0x21 0x12a6d: cmp dl, 0x19 0x12a70: je 0x12ab0 0x12a72: jmp 0x12a81 0x12a74: nop 0x12a75: mov ah, 0x2c 0x12a77: int 0x21 0x12a79: cmp cl, 0x1e 0x12a7c: jge 0x12aa6 |
| 2018-12-25T12:42:13.983996748Z | 44 | PC: 12a79 | Get time 0x12a79: cmp cl, 0x1e 0x12a7c: jge 0x12aa6 0x12a7e: jmp 0x12a81 0x12a80: nop 0x12a81: mov dx, 0x277 0x12a84: mov ah, 0x4e 0x12a86: xor cx, cx 0x12a88: int 0x21 0x12a8a: por mm7, qword ptr [bx + di] 0x12a8e: nop 0x12a8f: mov ah, 0x4f 0x12a91: int 0x21 0x12a93: cmp ax, 0x12 0x12a96: je 0x12a9b 0x12a98: jmp 0x12ac7 0x12a9a: nop 0x12a9b: mov dx, 0x27d 0x12a9e: mov ah, 0x3b 0x12aa0: int 0x21 0x12aa2: jb 0x12ac5 |
| 2018-12-25T12:42:13.985992982Z | 9 | PC: 12aad | Display string (Could not find end pointer) |
| 2018-12-25T12:42:14.000799597Z | 9 | PC: 12ab7 | Display string (String= 'HEY EVERYONE!!! Its Seneca's B-Day! Let's Party! ') |
| 2018-12-25T12:42:14.008519656Z | 17 | PC: 12abb | Find first file |
| 2018-12-25T12:42:14.009691933Z | 77 | PC: 11fe0 | Get program return code |
| 2018-12-25T12:42:14.010555917Z | 72 | PC: 12174 | Allocate memory |
| 2018-12-25T12:42:14.012253822Z | 2 | PC: 1268d | Character output (Char = '0d') |
| 2018-12-25T12:42:14.013666268Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.015772758Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.017584694Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.018947885Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.020238248Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.021762315Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.023568131Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.024990604Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.026470112Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.028302778Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.029553365Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.030784367Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.032342829Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.033608369Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.034870719Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.038604376Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.040964749Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.044016267Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.0468497Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.048768626Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.050564512Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.052944553Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.05491477Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.056887418Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.072979353Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.074824405Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.078149351Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.080445938Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.082326648Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.084161622Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.086562325Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.088419448Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.090315792Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.092797526Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.09514623Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.103521637Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.106177974Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.10810189Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.111459469Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.113814376Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.115890215Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.117759373Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.120072469Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.122093174Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.124009796Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.126301471Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.138134975Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.140159669Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.142651603Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.144595963Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.146537897Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.148885599Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.150836216Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.152809659Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.155285095Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.157308033Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.159334401Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.16165465Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.16389211Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.166741618Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.169180193Z | 2 | PC: 1268d | Character output (See above) |
| 2018-12-25T12:42:14.171059223Z | 2 | PC: 1268d | Character output (See above) |