{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2314,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:45:29.791040295Z | 114 | PC: 13bcd | UNKNOWN! |
| 2018-12-25T11:45:29.792967738Z | 42 | PC: 13be8 | Get date 0x13be8: cmp cx, 0x7c8 0x13bec: jge 0x13bf1 0x13bee: jmp 0x13c0b 0x13bf0: nop 0x13bf1: cmp dh, 0xa 0x13bf4: jge 0x13bf9 0x13bf6: jmp 0x13c0b 0x13bf8: nop 0x13bf9: xor ax, ax 0x13bfb: mov ds, ax 0x13bfd: mov si, 0x408 0x13c00: mov word ptr [si], ax 0x13c02: mov word ptr [si + 2], ax 0x13c05: mov word ptr [si + 4], ax 0x13c08: mov word ptr [si + 6], ax 0x13c0b: mov ax, 0x9400 0x13c0e: mov es, ax 0x13c10: mov ah, 0x4a 0x13c12: mov bx, 0x21 0x13c15: int 0x21 |
| 2018-12-25T11:45:29.795231232Z | 74 | PC: 13c17 | Reallocate memory |
| 2018-12-25T11:45:29.797328532Z | 53 | PC: 13c2b | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:45:29.799113697Z | 37 | PC: 13c3b | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:45:29.800385063Z | 76 | PC: 12a48 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":1,"Year":1992,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2314,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:45:29.878082646Z | 114 | PC: 13bcd | UNKNOWN! |
| 2018-12-25T11:45:29.878938091Z | 42 | PC: 13be8 | Get date 0x13be8: cmp cx, 0x7c8 0x13bec: jge 0x13bf1 0x13bee: jmp 0x13c0b 0x13bf0: nop 0x13bf1: cmp dh, 0xa 0x13bf4: jge 0x13bf9 0x13bf6: jmp 0x13c0b 0x13bf8: nop 0x13bf9: xor ax, ax 0x13bfb: mov ds, ax 0x13bfd: mov si, 0x408 0x13c00: mov word ptr [si], ax 0x13c02: mov word ptr [si + 2], ax 0x13c05: mov word ptr [si + 4], ax 0x13c08: mov word ptr [si + 6], ax 0x13c0b: mov ax, 0x9400 0x13c0e: mov es, ax 0x13c10: mov ah, 0x4a 0x13c12: mov bx, 0x21 0x13c15: int 0x21 |
| 2018-12-25T11:45:29.881592242Z | 74 | PC: 13c17 | Reallocate memory |
| 2018-12-25T11:45:29.883143088Z | 53 | PC: 13c2b | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:45:29.884258363Z | 37 | PC: 13c3b | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:45:29.885492842Z | 76 | PC: 12a48 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":10,"Year":1992,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2314,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:45:30.1378917Z | 114 | PC: 13bcd | UNKNOWN! |
| 2018-12-25T11:45:30.138894271Z | 42 | PC: 13be8 | Get date 0x13be8: cmp cx, 0x7c8 0x13bec: jge 0x13bf1 0x13bee: jmp 0x13c0b 0x13bf0: nop 0x13bf1: cmp dh, 0xa 0x13bf4: jge 0x13bf9 0x13bf6: jmp 0x13c0b 0x13bf8: nop 0x13bf9: xor ax, ax 0x13bfb: mov ds, ax 0x13bfd: mov si, 0x408 0x13c00: mov word ptr [si], ax 0x13c02: mov word ptr [si + 2], ax 0x13c05: mov word ptr [si + 4], ax 0x13c08: mov word ptr [si + 6], ax 0x13c0b: mov ax, 0x9400 0x13c0e: mov es, ax 0x13c10: mov ah, 0x4a 0x13c12: mov bx, 0x21 0x13c15: int 0x21 |
| 2018-12-25T11:45:30.141776969Z | 74 | PC: 13c17 | Reallocate memory |
| 2018-12-25T11:45:30.143520559Z | 53 | PC: 13c2b | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:45:30.144716706Z | 37 | PC: 13c3b | Set interrupt vector (Interrupt = '33' AKA 'Random read') |