{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":17107,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:54:48.468834364Z | 240 | PC: 12a52 | UNKNOWN! |
| 2018-12-25T12:54:48.470275374Z | 44 | PC: 12a62 | Get time 0x12a62: cmp cl, 5 0x12a65: jne 0x12a6f 0x12a67: mov byte ptr cs:[si + 0x1b7], 1 0x12a6d: nop 0x12a6e: nop 0x12a6f: push ds 0x12a70: mov bx, es 0x12a72: dec bx 0x12a73: mov ds, bx 0x12a75: xor di, di 0x12a77: cmp byte ptr [di], 0x5a 0x12a7a: jne 0x12ab6 0x12a7c: inc di 0x12a7d: mov bx, 0xf2 0x12a80: nop 0x12a81: sub word ptr [di + 2], bx 0x12a84: sub word ptr [di + 0x11], bx 0x12a87: inc di 0x12a88: mov es, word ptr [di + 0x10] 0x12a8b: xor ax, ax |
{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":5,"Second":0,"TimeBased":true,"OriginalID":17107,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:54:49.117366699Z | 240 | PC: 12a52 | UNKNOWN! |
| 2018-12-25T12:54:49.123123325Z | 44 | PC: 12a62 | Get time 0x12a62: cmp cl, 5 0x12a65: jne 0x12a6f 0x12a67: mov byte ptr cs:[si + 0x1b7], 1 0x12a6d: nop 0x12a6e: nop 0x12a6f: push ds 0x12a70: mov bx, es 0x12a72: dec bx 0x12a73: mov ds, bx 0x12a75: xor di, di 0x12a77: cmp byte ptr [di], 0x5a 0x12a7a: jne 0x12ab6 0x12a7c: inc di 0x12a7d: mov bx, 0xf2 0x12a80: nop 0x12a81: sub word ptr [di + 2], bx 0x12a84: sub word ptr [di + 0x11], bx 0x12a87: inc di 0x12a88: mov es, word ptr [di + 0x10] 0x12a8b: xor ax, ax |