{"DateBased":true,"Day":7,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":15809,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:44:32.191898766Z | 37 | PC: 151e4 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-25T12:44:32.19404525Z | 42 | PC: 151e8 | Get date 0x151e8: cmp al, 1 0x151ea: jne 0x151f4 0x151ec: dec al 0x151ee: out 0xa0, al 0x151f0: mov al, 0xb0 0x151f2: out 0x41, al 0x151f4: mov ax, cs 0x151f6: mov ds, ax 0x151f8: mov es, ax 0x151fa: pop ax 0x151fb: push cs 0x151fc: mov cx, 0x100 0x151ff: push cx 0x15200: mov cx, word ptr [0xfe] 0x15204: sub cx, 0x100 0x15208: retf 0x15209: jmp 0x17910 0x1520c: mov ax, 0xe000 0x1520f: mov ds, ax 0x15211: mov byte ptr [0], al |
| 2018-12-25T12:44:32.196632075Z | 9 | PC: 1514e | Display string (String= 'DEFGH - A 10000 byte COM test file 1994. ') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":15809,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:44:33.114427473Z | 37 | PC: 151e4 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-25T12:44:33.116960066Z | 42 | PC: 151e8 | Get date 0x151e8: cmp al, 1 0x151ea: jne 0x151f4 0x151ec: dec al 0x151ee: out 0xa0, al 0x151f0: mov al, 0xb0 0x151f2: out 0x41, al 0x151f4: mov ax, cs 0x151f6: mov ds, ax 0x151f8: mov es, ax 0x151fa: pop ax 0x151fb: push cs 0x151fc: mov cx, 0x100 0x151ff: push cx 0x15200: mov cx, word ptr [0xfe] 0x15204: sub cx, 0x100 0x15208: retf 0x15209: jmp 0x17910 0x1520c: mov ax, 0xe000 0x1520f: mov ds, ax 0x15211: mov byte ptr [0], al |
| 2018-12-25T12:44:33.119403051Z | 9 | PC: 1514e | Display string (String= 'DEFGH - A 10000 byte COM test file 1994. ') |