{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2109,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:44:57.812302817Z | 26 | PC: 12c3f | Set disk transfer address |
| 2018-12-25T11:44:57.813573707Z | 71 | PC: 12c48 | Get current directory |
| 2018-12-25T11:44:57.816887967Z | 59 | PC: 12c54 | Change current directory |
| 2018-12-25T11:44:57.821921877Z | 78 | PC: 12c77 | Find first file |
| 2018-12-25T11:44:57.829197052Z | 78 | PC: 12c9b | Find first file |
| 2018-12-25T11:44:57.836048589Z | 79 | PC: 12caa | Find next file |
| 2018-12-25T11:44:57.840242966Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.843071805Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.845806881Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.848882998Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.860960007Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.863572887Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.866170564Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.869123509Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.871392612Z | 42 | PC: 12cb3 | Get date 0x12cb3: mov ax, si 0x12cb5: and dl, al 0x12cb7: mov bp, dx 0x12cb9: and bp, 0xff 0x12cbd: cmp bp, 0 0x12cc0: je 0x12cce 0x12cc2: jmp 0x12c8e 0x12cc4: mov bp, 0 0x12cc7: mov dx, 0x38e 0x12cca: mov ah, 0x3b 0x12ccc: int 0x21 0x12cce: mov si, 0 0x12cd1: mov cx, 0x20 0x12cd4: mov dx, 0x3c0 0x12cd7: mov ah, 0x4e 0x12cd9: int 0x21 0x12cdb: cmp ax, 2 0x12cde: jne 0x12ce4 0x12ce0: inc bp 0x12ce1: jmp 0x12d5b |
| 2018-12-25T11:44:57.873725464Z | 78 | PC: 12cdb | Find first file |
| 2018-12-25T11:44:57.892977118Z | 79 | PC: 12ced | Find next file |
| 2018-12-25T11:44:57.895053162Z | 78 | PC: 12cdb | Find first file (See above) |
| 2018-12-25T11:44:57.899194132Z | 61 | PC: 12d02 | Open file (Filename = '�') |
| 2018-12-25T11:44:57.904271767Z | 66 | PC: 12d17 | Move file pointer |
| 2018-12-25T11:44:57.905701895Z | 63 | PC: 12d21 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-25T11:44:57.910261647Z | 62 | PC: 12d3e | Close file |
| 2018-12-25T11:44:57.912159407Z | 78 | PC: 12cdb | Find first file (See above) |
| 2018-12-25T11:44:57.916709324Z | 79 | PC: 12ced | Find next file (See above) |
| 2018-12-25T11:44:57.91853065Z | 59 | PC: 12e31 | Change current directory |
| 2018-12-25T11:44:57.922284622Z | 59 | PC: 12e38 | Change current directory |
| 2018-12-25T11:44:57.924280381Z | 42 | PC: 12e3c | Get date 0x12e3c: cmp cx, 0x7c7 0x12e40: jg 0x12e52 0x12e42: cmp dh, 0xa 0x12e45: jge 0x12e4a 0x12e47: jmp 0x12e62 0x12e49: nop 0x12e4a: cmp dl, 0x11 0x12e4d: jge 0x12e52 0x12e4f: jmp 0x12e62 0x12e51: nop 0x12e52: mov ah, 0 0x12e54: mov al, 4 0x12e56: int 0x10 0x12e58: mov ah, 9 0x12e5a: mov dx, 0x3e2 0x12e5d: int 0x21 0x12e5f: jmp 0x12e8d 0x12e61: nop 0x12e62: pop si 0x12e63: pop bx |
| 2018-12-25T11:44:57.926781925Z | 9 | PC: 12c22 | Display string (Could not find end pointer) |
| 2018-12-25T11:44:57.932480481Z | 76 | PC: 12c28 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2109,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:44:57.91297164Z | 26 | PC: 12c3f | Set disk transfer address |
| 2018-12-25T11:44:57.915515825Z | 71 | PC: 12c48 | Get current directory |
| 2018-12-25T11:44:57.919134803Z | 59 | PC: 12c54 | Change current directory |
| 2018-12-25T11:44:57.923514811Z | 78 | PC: 12c77 | Find first file |
| 2018-12-25T11:44:57.929882372Z | 78 | PC: 12c9b | Find first file |
| 2018-12-25T11:44:57.934267262Z | 79 | PC: 12caa | Find next file |
| 2018-12-25T11:44:57.936132283Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.938868085Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.942039471Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.944767496Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.947381089Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.957327556Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.960085212Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.963586833Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.96637035Z | 42 | PC: 12cb3 | Get date 0x12cb3: mov ax, si 0x12cb5: and dl, al 0x12cb7: mov bp, dx 0x12cb9: and bp, 0xff 0x12cbd: cmp bp, 0 0x12cc0: je 0x12cce 0x12cc2: jmp 0x12c8e 0x12cc4: mov bp, 0 0x12cc7: mov dx, 0x38e 0x12cca: mov ah, 0x3b 0x12ccc: int 0x21 0x12cce: mov si, 0 0x12cd1: mov cx, 0x20 0x12cd4: mov dx, 0x3c0 0x12cd7: mov ah, 0x4e 0x12cd9: int 0x21 0x12cdb: cmp ax, 2 0x12cde: jne 0x12ce4 0x12ce0: inc bp 0x12ce1: jmp 0x12d5b |
| 2018-12-25T11:44:57.968757145Z | 78 | PC: 12cdb | Find first file |
| 2018-12-25T11:44:57.975212613Z | 79 | PC: 12ced | Find next file |
| 2018-12-25T11:44:57.97778882Z | 78 | PC: 12cdb | Find first file (See above) |
| 2018-12-25T11:44:57.984489798Z | 61 | PC: 12d02 | Open file (Filename = '�') |
| 2018-12-25T11:44:57.991668776Z | 66 | PC: 12d17 | Move file pointer |
| 2018-12-25T11:44:57.992924986Z | 63 | PC: 12d21 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-25T11:44:58.000669694Z | 62 | PC: 12d3e | Close file |
| 2018-12-25T11:44:58.002306662Z | 78 | PC: 12cdb | Find first file (See above) |
| 2018-12-25T11:44:58.008735452Z | 79 | PC: 12ced | Find next file (See above) |
| 2018-12-25T11:44:58.011848005Z | 59 | PC: 12e31 | Change current directory |
| 2018-12-25T11:44:58.016160013Z | 59 | PC: 12e38 | Change current directory |
| 2018-12-25T11:44:58.01782613Z | 42 | PC: 12e3c | Get date 0x12e3c: cmp cx, 0x7c7 0x12e40: jg 0x12e52 0x12e42: cmp dh, 0xa 0x12e45: jge 0x12e4a 0x12e47: jmp 0x12e62 0x12e49: nop 0x12e4a: cmp dl, 0x11 0x12e4d: jge 0x12e52 0x12e4f: jmp 0x12e62 0x12e51: nop 0x12e52: mov ah, 0 0x12e54: mov al, 4 0x12e56: int 0x10 0x12e58: mov ah, 9 0x12e5a: mov dx, 0x3e2 0x12e5d: int 0x21 0x12e5f: jmp 0x12e8d 0x12e61: nop 0x12e62: pop si 0x12e63: pop bx |
| 2018-12-25T11:44:58.020645249Z | 9 | PC: 12c22 | Display string (Could not find end pointer) |
| 2018-12-25T11:44:58.027445156Z | 76 | PC: 12c28 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":17,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2109,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:44:57.903204519Z | 26 | PC: 12c3f | Set disk transfer address |
| 2018-12-25T11:44:57.904441741Z | 71 | PC: 12c48 | Get current directory |
| 2018-12-25T11:44:57.907715459Z | 59 | PC: 12c54 | Change current directory |
| 2018-12-25T11:44:57.9127766Z | 78 | PC: 12c77 | Find first file |
| 2018-12-25T11:44:57.919330783Z | 78 | PC: 12c9b | Find first file |
| 2018-12-25T11:44:57.927084257Z | 79 | PC: 12caa | Find next file |
| 2018-12-25T11:44:57.930494804Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.934191586Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.937752037Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.940938225Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.943858935Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.947242199Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.950585532Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.953853886Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:57.956541159Z | 42 | PC: 12cb3 | Get date 0x12cb3: mov ax, si 0x12cb5: and dl, al 0x12cb7: mov bp, dx 0x12cb9: and bp, 0xff 0x12cbd: cmp bp, 0 0x12cc0: je 0x12cce 0x12cc2: jmp 0x12c8e 0x12cc4: mov bp, 0 0x12cc7: mov dx, 0x38e 0x12cca: mov ah, 0x3b 0x12ccc: int 0x21 0x12cce: mov si, 0 0x12cd1: mov cx, 0x20 0x12cd4: mov dx, 0x3c0 0x12cd7: mov ah, 0x4e 0x12cd9: int 0x21 0x12cdb: cmp ax, 2 0x12cde: jne 0x12ce4 0x12ce0: inc bp 0x12ce1: jmp 0x12d5b |
| 2018-12-25T11:44:57.959111328Z | 78 | PC: 12cdb | Find first file |
| 2018-12-25T11:44:57.966327746Z | 79 | PC: 12ced | Find next file |
| 2018-12-25T11:44:57.969011869Z | 78 | PC: 12cdb | Find first file (See above) |
| 2018-12-25T11:44:57.976149674Z | 61 | PC: 12d02 | Open file (Filename = '�') |
| 2018-12-25T11:44:57.984419687Z | 66 | PC: 12d17 | Move file pointer |
| 2018-12-25T11:44:57.986015631Z | 63 | PC: 12d21 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-25T11:44:57.99658782Z | 62 | PC: 12d3e | Close file |
| 2018-12-25T11:44:57.998580657Z | 78 | PC: 12cdb | Find first file (See above) |
| 2018-12-25T11:44:58.005177686Z | 79 | PC: 12ced | Find next file (See above) |
| 2018-12-25T11:44:58.010111899Z | 59 | PC: 12e31 | Change current directory |
| 2018-12-25T11:44:58.014684234Z | 59 | PC: 12e38 | Change current directory |
| 2018-12-25T11:44:58.016597951Z | 42 | PC: 12e3c | Get date 0x12e3c: cmp cx, 0x7c7 0x12e40: jg 0x12e52 0x12e42: cmp dh, 0xa 0x12e45: jge 0x12e4a 0x12e47: jmp 0x12e62 0x12e49: nop 0x12e4a: cmp dl, 0x11 0x12e4d: jge 0x12e52 0x12e4f: jmp 0x12e62 0x12e51: nop 0x12e52: mov ah, 0 0x12e54: mov al, 4 0x12e56: int 0x10 0x12e58: mov ah, 9 0x12e5a: mov dx, 0x3e2 0x12e5d: int 0x21 0x12e5f: jmp 0x12e8d 0x12e61: nop 0x12e62: pop si 0x12e63: pop bx |
| 2018-12-25T11:44:58.026328783Z | 9 | PC: 12e5f | Display string (Could not find end pointer) |
| 2018-12-25T11:44:58.032309622Z | 76 | PC: 12e91 | Terminate with return code (Return code = '36') |
{"DateBased":true,"Day":1,"Month":1,"Year":1992,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2109,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:44:58.423165963Z | 26 | PC: 12c3f | Set disk transfer address |
| 2018-12-25T11:44:58.424480068Z | 71 | PC: 12c48 | Get current directory |
| 2018-12-25T11:44:58.428278828Z | 59 | PC: 12c54 | Change current directory |
| 2018-12-25T11:44:58.432641628Z | 78 | PC: 12c77 | Find first file |
| 2018-12-25T11:44:58.438875667Z | 78 | PC: 12c9b | Find first file |
| 2018-12-25T11:44:58.445418666Z | 79 | PC: 12caa | Find next file |
| 2018-12-25T11:44:58.447861847Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:58.450622308Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:58.460682255Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:58.463477228Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:58.467457007Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:58.470752451Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:58.473638236Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:58.476355805Z | 79 | PC: 12caa | Find next file (See above) |
| 2018-12-25T11:44:58.479576609Z | 42 | PC: 12cb3 | Get date 0x12cb3: mov ax, si 0x12cb5: and dl, al 0x12cb7: mov bp, dx 0x12cb9: and bp, 0xff 0x12cbd: cmp bp, 0 0x12cc0: je 0x12cce 0x12cc2: jmp 0x12c8e 0x12cc4: mov bp, 0 0x12cc7: mov dx, 0x38e 0x12cca: mov ah, 0x3b 0x12ccc: int 0x21 0x12cce: mov si, 0 0x12cd1: mov cx, 0x20 0x12cd4: mov dx, 0x3c0 0x12cd7: mov ah, 0x4e 0x12cd9: int 0x21 0x12cdb: cmp ax, 2 0x12cde: jne 0x12ce4 0x12ce0: inc bp 0x12ce1: jmp 0x12d5b |
| 2018-12-25T11:44:58.482242293Z | 78 | PC: 12cdb | Find first file |
| 2018-12-25T11:44:58.495563923Z | 79 | PC: 12ced | Find next file |
| 2018-12-25T11:44:58.498350412Z | 78 | PC: 12cdb | Find first file (See above) |
| 2018-12-25T11:44:58.505073301Z | 61 | PC: 12d02 | Open file (Filename = '�') |
| 2018-12-25T11:44:58.512235928Z | 66 | PC: 12d17 | Move file pointer |
| 2018-12-25T11:44:58.513512261Z | 63 | PC: 12d21 | Read file or device (Read 8 bytes on handle 5) |
| 2018-12-25T11:44:58.52209333Z | 62 | PC: 12d3e | Close file |
| 2018-12-25T11:44:58.524357506Z | 78 | PC: 12cdb | Find first file (See above) |
| 2018-12-25T11:44:58.531511753Z | 79 | PC: 12ced | Find next file (See above) |
| 2018-12-25T11:44:58.536750587Z | 59 | PC: 12e31 | Change current directory |
| 2018-12-25T11:44:58.544462407Z | 59 | PC: 12e38 | Change current directory |
| 2018-12-25T11:44:58.546563778Z | 42 | PC: 12e3c | Get date 0x12e3c: cmp cx, 0x7c7 0x12e40: jg 0x12e52 0x12e42: cmp dh, 0xa 0x12e45: jge 0x12e4a 0x12e47: jmp 0x12e62 0x12e49: nop 0x12e4a: cmp dl, 0x11 0x12e4d: jge 0x12e52 0x12e4f: jmp 0x12e62 0x12e51: nop 0x12e52: mov ah, 0 0x12e54: mov al, 4 0x12e56: int 0x10 0x12e58: mov ah, 9 0x12e5a: mov dx, 0x3e2 0x12e5d: int 0x21 0x12e5f: jmp 0x12e8d 0x12e61: nop 0x12e62: pop si 0x12e63: pop bx |
| 2018-12-25T11:44:58.557343137Z | 9 | PC: 12e5f | Display string (Could not find end pointer) |
| 2018-12-25T11:44:58.563218434Z | 76 | PC: 12e91 | Terminate with return code (Return code = '36') |