{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:33.195564918Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:33.197553427Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:33.199048109Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:33.200060289Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:33.474524054Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:33.476841648Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:33.478994137Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:33.480350909Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:33.721994984Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:33.724944094Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:33.726574687Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:33.727652371Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:33.977200567Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:33.980445293Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:33.983249826Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:33.985152716Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:34.072272648Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:34.075276715Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:34.079060145Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:34.081556852Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:34.199743444Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:34.201711635Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:34.204513396Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:34.205838654Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:34.307861554Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:34.310451885Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:34.313053765Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:34.315360514Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:34.319244278Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:34.321041391Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:34.892027416Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:34.895297449Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:34.897930804Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:34.900739783Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:34.905227501Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:34.906920625Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:35.237060201Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:35.239636037Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:35.241784293Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:35.244044399Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:35.247789658Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:35.24939674Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:35.341867151Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:35.34499013Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:35.347170583Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:35.34984842Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:35.354623508Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:35.355981477Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:36.230399687Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:36.233021234Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:36.235137454Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:36.237136608Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:36.241360571Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:36.243817354Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:36.524379227Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:36.534902246Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:36.537717598Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:36.540708133Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:36.545694249Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:36.547956261Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:36.574159411Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:36.577628212Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:36.580604124Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:36.582410789Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:36.845405755Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:36.848884185Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:36.851562578Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:36.853470122Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T13:06:51.658573044Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T13:06:51.662836317Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T13:06:51.665527426Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T13:06:51.667144583Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:38.589344724Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:38.590932935Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:38.594825482Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:38.596413689Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:38.635844061Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:38.640215662Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:38.643214067Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:38.645335456Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:38.729670197Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:38.732402542Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:38.73553116Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:38.737277086Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:38.754134702Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:38.75702807Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:38.759329641Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:38.76061067Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:38.971182521Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:38.97397326Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:38.976163618Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:38.977482444Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:39.026730344Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:39.02979951Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:39.032276601Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:39.033982867Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:39.6861029Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:39.689465544Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:39.69253066Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:39.693938769Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:39.711001163Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:39.713759Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:39.716243768Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:39.717956163Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:39.728524314Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:39.73191647Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:39.735567549Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:39.737451464Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:39.833350927Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:39.835713508Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:39.838942944Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:39.841536481Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:39.84656529Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:39.849470934Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:39.859977538Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:39.871312626Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:39.873973931Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:39.876671835Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:39.882065819Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:39.883675568Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:40.067703129Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:40.070754288Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:40.073111781Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:40.075574997Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:40.080138724Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:40.081608084Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:40.195858579Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:40.198378334Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:40.200378589Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:40.202369201Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:40.206813585Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:40.208721227Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:40.307971086Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:40.310775603Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:40.314528Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:40.317416269Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:40.322212303Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:40.325009569Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:40.667006528Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:40.670090851Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:40.672178324Z | 9 | PC: 12be7 | Display string (String= 'MS-DOS Version ') |
| 2018-12-25T11:47:40.674308971Z | 48 | PC: 12c06 | Get DOS version |
| 2018-12-25T11:47:40.678375609Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:40.679779973Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:40.671386341Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:40.678071057Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:40.681099973Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:40.682803954Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:41.025490862Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:41.02859011Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:41.03109149Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:41.032700968Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:41.320794053Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:41.324156814Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:41.326557312Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:41.327991166Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:41.363984894Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:41.367375159Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:41.369802852Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:41.371487561Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:41.691506672Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:41.69341194Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:41.695154555Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:41.696353914Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":13,"Min":30,"Second":0,"TimeBased":true,"OriginalID":2883,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:47:42.018850917Z | 42 | PC: 12bbc | Get date 0x12bbc: cmp dh, 2 0x12bbf: je 0x12bc3 0x12bc1: jmp 0x12bca 0x12bc3: cmp dl, 0xc 0x12bc6: jne 0x12bca 0x12bc8: jmp 0x12c33 0x12bca: mov ah, 0x2c 0x12bcc: int 0x21 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 |
| 2018-12-25T11:47:42.021638678Z | 44 | PC: 12bce | Get time 0x12bce: cmp ch, 0xc 0x12bd1: ja 0x12bd4 0x12bd3: ret 0x12bd4: cmp cl, 0x1e 0x12bd7: jb 0x12bda 0x12bd9: ret 0x12bda: mov ax, cs 0x12bdc: mov ds, ax 0x12bde: mov es, ax 0x12be0: call 0x12bec 0x12be3: mov ah, 9 0x12be5: int 0x21 0x12be7: call 0x12bec 0x12bea: jmp 0x12c02 0x12bec: mov si, 0x1f6 0x12bef: add si, word ptr cs:[0x101] 0x12bf4: mov di, si 0x12bf6: mov dx, si 0x12bf8: mov cx, 0xf 0x12bfb: lodsb al, byte ptr [si] |
| 2018-12-25T11:47:42.032896185Z | 53 | PC: 12c86 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:47:42.034370599Z | 37 | PC: 9fbc1 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |