{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17374,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:55:37.18948339Z | 42 | PC: 12af1 | Get date 0x12af1: cmp dl, 0xa 0x12af4: jne 0x12af9 0x12af6: call 0x12d13 0x12af9: push cs 0x12afa: pop ds 0x12afb: pop es 0x12afc: mov bx, es 0x12afe: add word ptr cs:[0x114], bx 0x12b03: add word ptr cs:[0x10e], bx 0x12b08: mov ax, word ptr cs:[0x114] 0x12b0c: mov bx, word ptr cs:[0x112] 0x12b11: mov bp, 0x1ef 0x12b14: mov byte ptr ds:[bp], 0xea 0x12b19: mov word ptr ds:[bp + 1], bx 0x12b1d: mov word ptr ds:[bp + 3], ax 0x12b21: popf 0x12b22: pop es 0x12b23: pop ds 0x12b24: pop dx 0x12b25: pop cx |
{"DateBased":true,"Day":10,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":17374,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:55:37.388523412Z | 42 | PC: 12af1 | Get date 0x12af1: cmp dl, 0xa 0x12af4: jne 0x12af9 0x12af6: call 0x12d13 0x12af9: push cs 0x12afa: pop ds 0x12afb: pop es 0x12afc: mov bx, es 0x12afe: add word ptr cs:[0x114], bx 0x12b03: add word ptr cs:[0x10e], bx 0x12b08: mov ax, word ptr cs:[0x114] 0x12b0c: mov bx, word ptr cs:[0x112] 0x12b11: mov bp, 0x1ef 0x12b14: mov byte ptr ds:[bp], 0xea 0x12b19: mov word ptr ds:[bp + 1], bx 0x12b1d: mov word ptr ds:[bp + 3], ax 0x12b21: popf 0x12b22: pop es 0x12b23: pop ds 0x12b24: pop dx 0x12b25: pop cx |