{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":10,"Second":0,"TimeBased":true,"OriginalID":15612,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:44:00.294538786Z | 136 | PC: 12a51 | UNKNOWN! |
| 2018-12-25T12:44:00.295873516Z | 74 | PC: 12a5e | Reallocate memory |
| 2018-12-25T12:44:00.298623053Z | 74 | PC: 12a66 | Reallocate memory |
| 2018-12-25T12:44:00.300698455Z | 72 | PC: 12a6d | Allocate memory |
| 2018-12-25T12:44:00.302951534Z | 44 | PC: 12a90 | Get time 0x12a90: cmp cl, 0xa 0x12a93: jbe 0x12abb 0x12a95: cmp cl, 0x37 0x12a98: jge 0x12a9a 0x12a9a: xor ax, ax 0x12a9c: mov ds, ax 0x12a9e: push ds 0x12a9f: lds ax, ptr [0x98] 0x12aa3: mov word ptr es:[0x2c6], ax 0x12aa7: mov word ptr es:[0x2c8], ds 0x12aac: pop ds 0x12aad: mov word ptr [0x98], 0x27c 0x12ab3: mov bx, es 0x12ab5: mov word ptr [0x9a], bx 0x12ab9: jmp 0x12ada 0x12abb: xor ax, ax 0x12abd: mov ds, ax 0x12abf: push ds 0x12ac0: lds ax, ptr [0x24] 0x12ac4: mov word ptr es:[0x2be], ax |
{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":15612,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:44:00.605023822Z | 136 | PC: 12a51 | UNKNOWN! |
| 2018-12-25T12:44:00.605921779Z | 74 | PC: 12a5e | Reallocate memory |
| 2018-12-25T12:44:00.608145501Z | 74 | PC: 12a66 | Reallocate memory |
| 2018-12-25T12:44:00.60990191Z | 72 | PC: 12a6d | Allocate memory |
| 2018-12-25T12:44:00.611454014Z | 44 | PC: 12a90 | Get time 0x12a90: cmp cl, 0xa 0x12a93: jbe 0x12abb 0x12a95: cmp cl, 0x37 0x12a98: jge 0x12a9a 0x12a9a: xor ax, ax 0x12a9c: mov ds, ax 0x12a9e: push ds 0x12a9f: lds ax, ptr [0x98] 0x12aa3: mov word ptr es:[0x2c6], ax 0x12aa7: mov word ptr es:[0x2c8], ds 0x12aac: pop ds 0x12aad: mov word ptr [0x98], 0x27c 0x12ab3: mov bx, es 0x12ab5: mov word ptr [0x9a], bx 0x12ab9: jmp 0x12ada 0x12abb: xor ax, ax 0x12abd: mov ds, ax 0x12abf: push ds 0x12ac0: lds ax, ptr [0x24] 0x12ac4: mov word ptr es:[0x2be], ax |