{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2083,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T13:06:46.308737895Z | 42 | PC: 13e63 | Get date 0x13e63: cmp dx, 0x101 0x13e67: jne 0x13e71 0x13e69: mov ah, 9 0x13e6b: lea dx, word ptr [si + 0x424] 0x13e6f: int 0x21 0x13e71: mov di, 0x100 0x13e74: push si 0x13e75: mov ax, 0x550 0x13e78: add si, ax 0x13e7a: mov cx, 5 0x13e7d: cld 0x13e7e: rep movsb byte ptr es:[di], byte ptr [si] 0x13e80: mov ax, 0xffa4 0x13e83: int 0x21 0x13e85: pop si 0x13e86: cmp ax, 0x42a1 0x13e89: je 0x13ee4 0x13e8b: xor ax, ax 0x13e8d: push ax 0x13e8e: mov ax, ds |
| 2018-12-25T13:06:46.312864206Z | 9 | PC: 13e71 | Display string (Could not find end pointer) |
| 2018-12-25T13:06:46.348699446Z | 255 | PC: 13e85 | UNKNOWN! |
| 2018-12-25T13:06:46.349772367Z | 9 | PC: 12a85 | Display string (String= 'So ') |
| 2018-12-25T13:06:46.356316215Z | 0 | PC: 12a89 | Program terminate |
{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2083,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:44:53.814279236Z | 42 | PC: 13e63 | Get date 0x13e63: cmp dx, 0x101 0x13e67: jne 0x13e71 0x13e69: mov ah, 9 0x13e6b: lea dx, word ptr [si + 0x424] 0x13e6f: int 0x21 0x13e71: mov di, 0x100 0x13e74: push si 0x13e75: mov ax, 0x550 0x13e78: add si, ax 0x13e7a: mov cx, 5 0x13e7d: cld 0x13e7e: rep movsb byte ptr es:[di], byte ptr [si] 0x13e80: mov ax, 0xffa4 0x13e83: int 0x21 0x13e85: pop si 0x13e86: cmp ax, 0x42a1 0x13e89: je 0x13ee4 0x13e8b: xor ax, ax 0x13e8d: push ax 0x13e8e: mov ax, ds |
| 2018-12-25T11:44:53.816837929Z | 255 | PC: 13e85 | UNKNOWN! |
| 2018-12-25T11:44:53.818793423Z | 9 | PC: 12a85 | Display string (String= 'So ') |
| 2018-12-25T11:44:53.825263544Z | 0 | PC: 12a89 | Program terminate |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2083,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:44:53.910916895Z | 42 | PC: 13e63 | Get date 0x13e63: cmp dx, 0x101 0x13e67: jne 0x13e71 0x13e69: mov ah, 9 0x13e6b: lea dx, word ptr [si + 0x424] 0x13e6f: int 0x21 0x13e71: mov di, 0x100 0x13e74: push si 0x13e75: mov ax, 0x550 0x13e78: add si, ax 0x13e7a: mov cx, 5 0x13e7d: cld 0x13e7e: rep movsb byte ptr es:[di], byte ptr [si] 0x13e80: mov ax, 0xffa4 0x13e83: int 0x21 0x13e85: pop si 0x13e86: cmp ax, 0x42a1 0x13e89: je 0x13ee4 0x13e8b: xor ax, ax 0x13e8d: push ax 0x13e8e: mov ax, ds |
| 2018-12-25T11:44:53.914253923Z | 9 | PC: 13e71 | Display string (Could not find end pointer) |
| 2018-12-25T11:44:53.958516411Z | 255 | PC: 13e85 | UNKNOWN! |
| 2018-12-25T11:44:53.959531931Z | 9 | PC: 12a85 | Display string (String= 'So ') |
| 2018-12-25T11:44:53.965591475Z | 0 | PC: 12a89 | Program terminate |
{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2083,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:44:54.247836899Z | 42 | PC: 13e63 | Get date 0x13e63: cmp dx, 0x101 0x13e67: jne 0x13e71 0x13e69: mov ah, 9 0x13e6b: lea dx, word ptr [si + 0x424] 0x13e6f: int 0x21 0x13e71: mov di, 0x100 0x13e74: push si 0x13e75: mov ax, 0x550 0x13e78: add si, ax 0x13e7a: mov cx, 5 0x13e7d: cld 0x13e7e: rep movsb byte ptr es:[di], byte ptr [si] 0x13e80: mov ax, 0xffa4 0x13e83: int 0x21 0x13e85: pop si 0x13e86: cmp ax, 0x42a1 0x13e89: je 0x13ee4 0x13e8b: xor ax, ax 0x13e8d: push ax 0x13e8e: mov ax, ds |
| 2018-12-25T11:44:54.250891223Z | 255 | PC: 13e85 | UNKNOWN! |
| 2018-12-25T11:44:54.253098466Z | 9 | PC: 12a85 | Display string (String= 'So ') |
| 2018-12-25T11:44:54.260300525Z | 0 | PC: 12a89 | Program terminate |