{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3712,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:49:59.533720973Z | 243 | PC: 12b88 | UNKNOWN! |
| 2018-12-25T11:49:59.544768567Z | 42 | PC: 12bdc | Get date 0x12bdc: cmp cx, 0x7c9 0x12be0: jb 0x12bee 0x12be2: cmp dl, 3 0x12be5: jne 0x12bee 0x12be7: cmp al, 4 0x12be9: jne 0x12bee 0x12beb: jmp 0x12db7 0x12bee: xor ax, ax 0x12bf0: mov ds, ax 0x12bf2: mov ax, word ptr [0x84] 0x12bf5: mov bx, word ptr [0x86] 0x12bf9: mov word ptr es:[0x407], ax 0x12bfd: mov word ptr es:[0x409], bx 0x12c02: cli 0x12c03: mov word ptr [0x84], 0x24e 0x12c09: mov word ptr [0x86], es 0x12c0d: sti 0x12c0e: push cs 0x12c0f: pop es 0x12c10: jmp 0x12b90 |
| 2018-12-25T11:49:59.554794912Z | 76 | PC: 12a44 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":1,"Year":1993,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3712,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:49:59.891663741Z | 243 | PC: 12b88 | UNKNOWN! |
| 2018-12-25T11:49:59.892745743Z | 42 | PC: 12bdc | Get date 0x12bdc: cmp cx, 0x7c9 0x12be0: jb 0x12bee 0x12be2: cmp dl, 3 0x12be5: jne 0x12bee 0x12be7: cmp al, 4 0x12be9: jne 0x12bee 0x12beb: jmp 0x12db7 0x12bee: xor ax, ax 0x12bf0: mov ds, ax 0x12bf2: mov ax, word ptr [0x84] 0x12bf5: mov bx, word ptr [0x86] 0x12bf9: mov word ptr es:[0x407], ax 0x12bfd: mov word ptr es:[0x409], bx 0x12c02: cli 0x12c03: mov word ptr [0x84], 0x24e 0x12c09: mov word ptr [0x86], es 0x12c0d: sti 0x12c0e: push cs 0x12c0f: pop es 0x12c10: jmp 0x12b90 |
| 2018-12-25T11:49:59.898213391Z | 76 | PC: 12a44 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":3,"Month":1,"Year":1993,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3712,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:50:00.303292674Z | 243 | PC: 12b88 | UNKNOWN! |
| 2018-12-25T11:50:00.304260501Z | 42 | PC: 12bdc | Get date 0x12bdc: cmp cx, 0x7c9 0x12be0: jb 0x12bee 0x12be2: cmp dl, 3 0x12be5: jne 0x12bee 0x12be7: cmp al, 4 0x12be9: jne 0x12bee 0x12beb: jmp 0x12db7 0x12bee: xor ax, ax 0x12bf0: mov ds, ax 0x12bf2: mov ax, word ptr [0x84] 0x12bf5: mov bx, word ptr [0x86] 0x12bf9: mov word ptr es:[0x407], ax 0x12bfd: mov word ptr es:[0x409], bx 0x12c02: cli 0x12c03: mov word ptr [0x84], 0x24e 0x12c09: mov word ptr [0x86], es 0x12c0d: sti 0x12c0e: push cs 0x12c0f: pop es 0x12c10: jmp 0x12b90 |
| 2018-12-25T11:50:00.306057966Z | 76 | PC: 12a44 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":3,"Month":6,"Year":1993,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3712,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:50:00.499212565Z | 243 | PC: 12b88 | UNKNOWN! |
| 2018-12-25T11:50:00.514324874Z | 42 | PC: 12bdc | Get date 0x12bdc: cmp cx, 0x7c9 0x12be0: jb 0x12bee 0x12be2: cmp dl, 3 0x12be5: jne 0x12bee 0x12be7: cmp al, 4 0x12be9: jne 0x12bee 0x12beb: jmp 0x12db7 0x12bee: xor ax, ax 0x12bf0: mov ds, ax 0x12bf2: mov ax, word ptr [0x84] 0x12bf5: mov bx, word ptr [0x86] 0x12bf9: mov word ptr es:[0x407], ax 0x12bfd: mov word ptr es:[0x409], bx 0x12c02: cli 0x12c03: mov word ptr [0x84], 0x24e 0x12c09: mov word ptr [0x86], es 0x12c0d: sti 0x12c0e: push cs 0x12c0f: pop es 0x12c10: jmp 0x12b90 |
| 2018-12-25T11:50:00.517220941Z | 53 | PC: 12e04 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-25T11:50:00.518769728Z | 37 | PC: 12e15 | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-25T11:50:00.521289946Z | 76 | PC: 12a44 | Terminate with return code (Return code = '0') |