{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17240,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:55:16.810085176Z | 127 | PC: 12ac7 | UNKNOWN! |
| 2018-12-25T12:55:16.811033754Z | 53 | PC: 12aea | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:55:16.812012689Z | 37 | PC: 12afe | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:55:16.812862122Z | 37 | PC: 12b06 | Set interrupt vector (Interrupt = '247' AKA 'UNKNOWN!') |
| 2018-12-25T12:55:16.814356663Z | 42 | PC: 12b0a | Get date 0x12b0a: cmp dx, 0xa01 0x12b0e: jne 0x12b29 0x12b10: mov ax, 0x3508 0x12b13: int 0x21 0x12b15: mov word ptr cs:[0x39], bx 0x12b1a: mov word ptr cs:[0x3b], es 0x12b1f: mov ax, 0x2508 0x12b22: push cs 0x12b23: pop ds 0x12b24: mov dx, 0x2c2 0x12b27: int 0x21 0x12b29: mov es, word ptr cs:[0x11] 0x12b2e: mov bx, 0x600 0x12b31: mov cl, 4 0x12b33: shr bx, cl 0x12b35: add bx, 0x10 0x12b38: mov ah, 0x4a 0x12b3a: int 0x21 0x12b3c: mov es, word ptr cs:[0x11] 0x12b41: mov es, word ptr es:[0x2c] |
| 2018-12-25T12:55:16.816914747Z | 53 | PC: 12b15 | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-25T12:55:16.817930507Z | 37 | PC: 12b29 | Set interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-25T12:55:16.819381076Z | 74 | PC: 12b3c | Reallocate memory |
| 2018-12-25T12:55:16.820615958Z | 75 | PC: 12b7f | Execute program |
| 2018-12-25T12:55:16.834790252Z | 73 | PC: 12b85 | Release memory |
| 2018-12-25T12:55:16.836354161Z | 77 | PC: 12b89 | Get program return code |
| 2018-12-25T12:55:16.837422137Z | 49 | PC: 12b97 | Terminate and stay resident (Return code = '0' | Memory size = '112') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17240,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:55:17.041091114Z | 127 | PC: 12ac7 | UNKNOWN! |
| 2018-12-25T12:55:17.042219821Z | 53 | PC: 12aea | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:55:17.043205453Z | 37 | PC: 12afe | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T12:55:17.044070297Z | 37 | PC: 12b06 | Set interrupt vector (Interrupt = '247' AKA 'UNKNOWN!') |
| 2018-12-25T12:55:17.045666739Z | 42 | PC: 12b0a | Get date 0x12b0a: cmp dx, 0xa01 0x12b0e: jne 0x12b29 0x12b10: mov ax, 0x3508 0x12b13: int 0x21 0x12b15: mov word ptr cs:[0x39], bx 0x12b1a: mov word ptr cs:[0x3b], es 0x12b1f: mov ax, 0x2508 0x12b22: push cs 0x12b23: pop ds 0x12b24: mov dx, 0x2c2 0x12b27: int 0x21 0x12b29: mov es, word ptr cs:[0x11] 0x12b2e: mov bx, 0x600 0x12b31: mov cl, 4 0x12b33: shr bx, cl 0x12b35: add bx, 0x10 0x12b38: mov ah, 0x4a 0x12b3a: int 0x21 0x12b3c: mov es, word ptr cs:[0x11] 0x12b41: mov es, word ptr es:[0x2c] |
| 2018-12-25T12:55:17.047657571Z | 74 | PC: 12b3c | Reallocate memory |
| 2018-12-25T12:55:17.048907459Z | 75 | PC: 12b7f | Execute program |
| 2018-12-25T12:55:17.063555703Z | 73 | PC: 12b85 | Release memory |
| 2018-12-25T12:55:17.064834262Z | 77 | PC: 12b89 | Get program return code |
| 2018-12-25T12:55:17.0658973Z | 49 | PC: 12b97 | Terminate and stay resident (Return code = '0' | Memory size = '112') |