{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4870,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:09.178879897Z | 42 | PC: 9f7b1 | Get date 0x9f7b1: cmp dh, 0xa 0x9f7b4: jb 0x9f7bc 0x9f7b6: mov al, 0x3f 0x9f7b8: out 0x70, al 0x9f7ba: out 0x71, al 0x9f7bc: ret 0x9f7bd: mov ah, 0x2a 0x9f7bf: int 0x21 0x9f7c1: cmp dh, 9 0x9f7c4: jb 0x9f7e2 0x9f7c6: mov bx, 0xa 0x9f7c9: push cs 0x9f7ca: pop es 0x9f7cb: mov word ptr es:[bx], 0x8c50 0x9f7d0: mov word ptr es:[bx + 6], 0xa126 0x9f7d6: mov word ptr es:[bx - 6], 0xc32b 0x9f7dc: mov word ptr es:[bx + 0xc], 0xa326 0x9f7e2: ret 0x9f7e3: mov ax, word ptr es:[2] 0x9f7e7: or ax, word ptr [bp + di] |
| 2018-12-25T11:53:09.180562102Z | 42 | PC: 9f7c1 | Get date 0x9f7c1: cmp dh, 9 0x9f7c4: jb 0x9f7e2 0x9f7c6: mov bx, 0xa 0x9f7c9: push cs 0x9f7ca: pop es 0x9f7cb: mov word ptr es:[bx], 0x8c50 0x9f7d0: mov word ptr es:[bx + 6], 0xa126 0x9f7d6: mov word ptr es:[bx - 6], 0xc32b 0x9f7dc: mov word ptr es:[bx + 0xc], 0xa326 0x9f7e2: ret 0x9f7e3: mov ax, word ptr es:[2] 0x9f7e7: or ax, word ptr [bp + di] 0x9f7e9: mov word ptr es:[2], ax 0x9f7ed: add byte ptr [si], cl 0x9f7ef: ror byte ptr [bx + si - 0x72], 0xc0 0x9f7f3: push es 0x9f7f4: add word ptr [bp + di], ax 0x9f7f6: mov dx, 0x92b4 0x9f7f9: scasw ax, word ptr es:[di] 0x9f7fa: wait |
| 2018-12-25T11:53:09.181904379Z | 53 | PC: 9f573 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:53:09.18287504Z | 37 | PC: 9f586 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:53:09.183974164Z | 9 | PC: 12a54 | Display string (Could not find end pointer) |
| 2018-12-25T11:53:09.185443519Z | 76 | PC: 12a59 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4870,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:10.509335033Z | 42 | PC: 9f7b1 | Get date 0x9f7b1: cmp dh, 0xa 0x9f7b4: jb 0x9f7bc 0x9f7b6: mov al, 0x3f 0x9f7b8: out 0x70, al 0x9f7ba: out 0x71, al 0x9f7bc: ret 0x9f7bd: mov ah, 0x2a 0x9f7bf: int 0x21 0x9f7c1: cmp dh, 9 0x9f7c4: jb 0x9f7e2 0x9f7c6: mov bx, 0xa 0x9f7c9: push cs 0x9f7ca: pop es 0x9f7cb: mov word ptr es:[bx], 0x8c50 0x9f7d0: mov word ptr es:[bx + 6], 0xa126 0x9f7d6: mov word ptr es:[bx - 6], 0xc32b 0x9f7dc: mov word ptr es:[bx + 0xc], 0xa326 0x9f7e2: ret 0x9f7e3: mov ax, word ptr es:[2] 0x9f7e7: or ax, word ptr [bp + di] |
| 2018-12-25T11:53:10.512510664Z | 42 | PC: 9f7c1 | Get date 0x9f7c1: cmp dh, 9 0x9f7c4: jb 0x9f7e2 0x9f7c6: mov bx, 0xa 0x9f7c9: push cs 0x9f7ca: pop es 0x9f7cb: mov word ptr es:[bx], 0x8c50 0x9f7d0: mov word ptr es:[bx + 6], 0xa126 0x9f7d6: mov word ptr es:[bx - 6], 0xc32b 0x9f7dc: mov word ptr es:[bx + 0xc], 0xa326 0x9f7e2: ret 0x9f7e3: mov ax, word ptr es:[2] 0x9f7e7: or ax, word ptr [bp + di] 0x9f7e9: mov word ptr es:[2], ax 0x9f7ed: add byte ptr [si], cl 0x9f7ef: ror byte ptr [bx + si - 0x72], 0xc0 0x9f7f3: push es 0x9f7f4: add word ptr [bp + di], ax 0x9f7f6: mov dx, 0x92b4 0x9f7f9: scasw ax, word ptr es:[di] 0x9f7fa: wait |
| 2018-12-25T11:53:10.514721177Z | 53 | PC: 9f573 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:53:10.515827846Z | 37 | PC: 9f586 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:53:10.517812666Z | 9 | PC: 12a54 | Display string (Could not find end pointer) |
| 2018-12-25T11:53:10.520497988Z | 76 | PC: 12a59 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4870,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:10.538077173Z | 42 | PC: 9f7b1 | Get date 0x9f7b1: cmp dh, 0xa 0x9f7b4: jb 0x9f7bc 0x9f7b6: mov al, 0x3f 0x9f7b8: out 0x70, al 0x9f7ba: out 0x71, al 0x9f7bc: ret 0x9f7bd: mov ah, 0x2a 0x9f7bf: int 0x21 0x9f7c1: cmp dh, 9 0x9f7c4: jb 0x9f7e2 0x9f7c6: mov bx, 0xa 0x9f7c9: push cs 0x9f7ca: pop es 0x9f7cb: mov word ptr es:[bx], 0x8c50 0x9f7d0: mov word ptr es:[bx + 6], 0xa126 0x9f7d6: mov word ptr es:[bx - 6], 0xc32b 0x9f7dc: mov word ptr es:[bx + 0xc], 0xa326 0x9f7e2: ret 0x9f7e3: mov ax, word ptr es:[2] 0x9f7e7: or ax, word ptr [bp + di] |
| 2018-12-25T11:53:10.540661375Z | 42 | PC: 9f7c1 | Get date 0x9f7c1: cmp dh, 9 0x9f7c4: jb 0x9f7e2 0x9f7c6: mov bx, 0xa 0x9f7c9: push cs 0x9f7ca: pop es 0x9f7cb: mov word ptr es:[bx], 0x8c50 0x9f7d0: mov word ptr es:[bx + 6], 0xa126 0x9f7d6: mov word ptr es:[bx - 6], 0xc32b 0x9f7dc: mov word ptr es:[bx + 0xc], 0xa326 0x9f7e2: ret 0x9f7e3: mov ax, word ptr es:[2] 0x9f7e7: or ax, word ptr [bp + di] 0x9f7e9: mov word ptr es:[2], ax 0x9f7ed: add byte ptr [si], cl 0x9f7ef: ror byte ptr [bx + si - 0x72], 0xc0 0x9f7f3: push es 0x9f7f4: add word ptr [bp + di], ax 0x9f7f6: mov dx, 0x92b4 0x9f7f9: scasw ax, word ptr es:[di] 0x9f7fa: wait |
| 2018-12-25T11:53:10.542767865Z | 53 | PC: 9f573 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:53:10.543783533Z | 37 | PC: 9f586 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:53:10.545566798Z | 9 | PC: 12a54 | Display string (Could not find end pointer) |
| 2018-12-25T11:53:10.548126791Z | 76 | PC: 12a59 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":9,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":4870,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:11.035010993Z | 42 | PC: 9f7b1 | Get date 0x9f7b1: cmp dh, 0xa 0x9f7b4: jb 0x9f7bc 0x9f7b6: mov al, 0x3f 0x9f7b8: out 0x70, al 0x9f7ba: out 0x71, al 0x9f7bc: ret 0x9f7bd: mov ah, 0x2a 0x9f7bf: int 0x21 0x9f7c1: cmp dh, 9 0x9f7c4: jb 0x9f7e2 0x9f7c6: mov bx, 0xa 0x9f7c9: push cs 0x9f7ca: pop es 0x9f7cb: mov word ptr es:[bx], 0x8c50 0x9f7d0: mov word ptr es:[bx + 6], 0xa126 0x9f7d6: mov word ptr es:[bx - 6], 0xc32b 0x9f7dc: mov word ptr es:[bx + 0xc], 0xa326 0x9f7e2: ret 0x9f7e3: mov ax, word ptr es:[2] 0x9f7e7: or ax, word ptr [bp + di] |
| 2018-12-25T11:53:11.03764824Z | 42 | PC: 9f7c1 | Get date 0x9f7c1: cmp dh, 9 0x9f7c4: jb 0x9f7e2 0x9f7c6: mov bx, 0xa 0x9f7c9: push cs 0x9f7ca: pop es 0x9f7cb: mov word ptr es:[bx], 0x8c50 0x9f7d0: mov word ptr es:[bx + 6], 0xa126 0x9f7d6: mov word ptr es:[bx - 6], 0xc32b 0x9f7dc: mov word ptr es:[bx + 0xc], 0xa326 0x9f7e2: ret 0x9f7e3: mov ax, word ptr es:[2] 0x9f7e7: or ax, word ptr [bp + di] 0x9f7e9: mov word ptr es:[2], ax 0x9f7ed: add byte ptr [si], cl 0x9f7ef: ror byte ptr [bx + si - 0x72], 0xc0 0x9f7f3: push es 0x9f7f4: add word ptr [bp + di], ax 0x9f7f6: mov dx, 0x92b4 0x9f7f9: scasw ax, word ptr es:[di] 0x9f7fa: wait |
| 2018-12-25T11:53:11.040132358Z | 53 | PC: 9f573 | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:53:11.041576994Z | 37 | PC: 9f586 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:53:11.043644397Z | 9 | PC: 12a54 | Display string (Could not find end pointer) |
| 2018-12-25T11:53:11.046309378Z | 76 | PC: 12a59 | Terminate with return code (Return code = '0') |