{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16348,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:52:32.655351952Z | 250 | PC: 12a53 | UNKNOWN! |
| 2018-12-25T12:52:32.656289218Z | 42 | PC: 12a62 | Get date 0x12a62: cmp dl, 1 0x12a65: jne 0x12a6e 0x12a67: mov byte ptr cs:[bp + 0x28b], 1 0x12a6d: nop 0x12a6e: mov ax, ds 0x12a70: dec ax 0x12a71: mov ds, ax 0x12a73: cmp byte ptr [0], 0x5a 0x12a78: jne 0x12ab7 0x12a7a: sub word ptr [3], 0x180 0x12a80: sub word ptr [0x12], 0x180 0x12a86: mov es, word ptr [0x12] 0x12a8a: push cs 0x12a8b: pop ds 0x12a8c: mov si, bp 0x12a8e: mov cx, 0x4d4 0x12a91: xor di, di 0x12a93: rep movsd dword ptr es:[di], dword ptr [si] 0x12a95: xor ax, ax 0x12a97: mov ds, ax |
| 2018-12-25T12:52:32.658934253Z | 1 | PC: 12b46 | Character input |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":16348,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:52:32.516427209Z | 250 | PC: 12a53 | UNKNOWN! |
| 2018-12-25T12:52:32.5177814Z | 42 | PC: 12a62 | Get date 0x12a62: cmp dl, 1 0x12a65: jne 0x12a6e 0x12a67: mov byte ptr cs:[bp + 0x28b], 1 0x12a6d: nop 0x12a6e: mov ax, ds 0x12a70: dec ax 0x12a71: mov ds, ax 0x12a73: cmp byte ptr [0], 0x5a 0x12a78: jne 0x12ab7 0x12a7a: sub word ptr [3], 0x180 0x12a80: sub word ptr [0x12], 0x180 0x12a86: mov es, word ptr [0x12] 0x12a8a: push cs 0x12a8b: pop ds 0x12a8c: mov si, bp 0x12a8e: mov cx, 0x4d4 0x12a91: xor di, di 0x12a93: rep movsd dword ptr es:[di], dword ptr [si] 0x12a95: xor ax, ax 0x12a97: mov ds, ax |
| 2018-12-25T12:52:32.520279659Z | 1 | PC: 12b46 | Character input |