{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":4999,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:23.110930891Z | 42 | PC: 13e09 | Get date 0x13e09: cmp cx, 0x7ca 0x13e0d: jb 0x13e1f 0x13e0f: mov ah, 0x2c 0x13e11: int 0x21 0x13e13: or cl, cl 0x13e15: jne 0x13e1f 0x13e17: cmp dh, 5 0x13e1a: ja 0x13e1f 0x13e1c: jmp 0x1449f 0x13e1f: pop dx 0x13e20: lea bx, word ptr [bp + 0xbc3] 0x13e24: mov cl, 4 0x13e26: shr bx, cl 0x13e28: inc bx 0x13e29: mov cx, cs 0x13e2b: add bx, cx 0x13e2d: mov cx, es 0x13e2f: sub bx, cx 0x13e31: mov ah, 0x4a 0x13e33: int 0x21 |
| 2018-12-25T11:53:23.113880142Z | 74 | PC: 13e35 | Reallocate memory |
| 2018-12-25T11:53:23.115284331Z | 88 | PC: 13e3a | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:23.116361024Z | 88 | PC: 13e43 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:23.118421581Z | 72 | PC: 13e4a | Allocate memory |
| 2018-12-25T11:53:23.119863711Z | 88 | PC: 13e53 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:23.121661711Z | 74 | PC: 13ecc | Reallocate memory |
| 2018-12-25T11:53:23.123208065Z | 74 | PC: 13ed0 | Reallocate memory |
| 2018-12-25T11:53:23.12551833Z | 9 | PC: 13dc6 | Display string (String= 'CDEFG-This is a 5000 byte COM test, 1994 ') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":4999,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:23.15239549Z | 42 | PC: 13e09 | Get date 0x13e09: cmp cx, 0x7ca 0x13e0d: jb 0x13e1f 0x13e0f: mov ah, 0x2c 0x13e11: int 0x21 0x13e13: or cl, cl 0x13e15: jne 0x13e1f 0x13e17: cmp dh, 5 0x13e1a: ja 0x13e1f 0x13e1c: jmp 0x1449f 0x13e1f: pop dx 0x13e20: lea bx, word ptr [bp + 0xbc3] 0x13e24: mov cl, 4 0x13e26: shr bx, cl 0x13e28: inc bx 0x13e29: mov cx, cs 0x13e2b: add bx, cx 0x13e2d: mov cx, es 0x13e2f: sub bx, cx 0x13e31: mov ah, 0x4a 0x13e33: int 0x21 |
| 2018-12-25T11:53:23.155345311Z | 74 | PC: 13e35 | Reallocate memory |
| 2018-12-25T11:53:23.156804302Z | 88 | PC: 13e3a | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:23.157887687Z | 88 | PC: 13e43 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:23.16015479Z | 72 | PC: 13e4a | Allocate memory |
| 2018-12-25T11:53:23.161689036Z | 88 | PC: 13e53 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:23.163020733Z | 74 | PC: 13ecc | Reallocate memory |
| 2018-12-25T11:53:23.164623695Z | 74 | PC: 13ed0 | Reallocate memory |
| 2018-12-25T11:53:23.167054233Z | 9 | PC: 13dc6 | Display string (String= 'CDEFG-This is a 5000 byte COM test, 1994 ') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":6,"TimeBased":true,"OriginalID":4999,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:24.035699738Z | 42 | PC: 13e09 | Get date 0x13e09: cmp cx, 0x7ca 0x13e0d: jb 0x13e1f 0x13e0f: mov ah, 0x2c 0x13e11: int 0x21 0x13e13: or cl, cl 0x13e15: jne 0x13e1f 0x13e17: cmp dh, 5 0x13e1a: ja 0x13e1f 0x13e1c: jmp 0x1449f 0x13e1f: pop dx 0x13e20: lea bx, word ptr [bp + 0xbc3] 0x13e24: mov cl, 4 0x13e26: shr bx, cl 0x13e28: inc bx 0x13e29: mov cx, cs 0x13e2b: add bx, cx 0x13e2d: mov cx, es 0x13e2f: sub bx, cx 0x13e31: mov ah, 0x4a 0x13e33: int 0x21 |
| 2018-12-25T11:53:24.050819759Z | 74 | PC: 13e35 | Reallocate memory |
| 2018-12-25T11:53:24.052080767Z | 88 | PC: 13e3a | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:24.053089472Z | 88 | PC: 13e43 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:24.05540223Z | 72 | PC: 13e4a | Allocate memory |
| 2018-12-25T11:53:24.056732158Z | 88 | PC: 13e53 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:24.057985318Z | 74 | PC: 13ecc | Reallocate memory |
| 2018-12-25T11:53:24.06040937Z | 74 | PC: 13ed0 | Reallocate memory |
| 2018-12-25T11:53:24.061974668Z | 9 | PC: 13dc6 | Display string (String= 'CDEFG-This is a 5000 byte COM test, 1994 ') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":6,"TimeBased":true,"OriginalID":4999,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:24.355119482Z | 42 | PC: 13e09 | Get date 0x13e09: cmp cx, 0x7ca 0x13e0d: jb 0x13e1f 0x13e0f: mov ah, 0x2c 0x13e11: int 0x21 0x13e13: or cl, cl 0x13e15: jne 0x13e1f 0x13e17: cmp dh, 5 0x13e1a: ja 0x13e1f 0x13e1c: jmp 0x1449f 0x13e1f: pop dx 0x13e20: lea bx, word ptr [bp + 0xbc3] 0x13e24: mov cl, 4 0x13e26: shr bx, cl 0x13e28: inc bx 0x13e29: mov cx, cs 0x13e2b: add bx, cx 0x13e2d: mov cx, es 0x13e2f: sub bx, cx 0x13e31: mov ah, 0x4a 0x13e33: int 0x21 |
| 2018-12-25T11:53:24.357186335Z | 74 | PC: 13e35 | Reallocate memory |
| 2018-12-25T11:53:24.358592129Z | 88 | PC: 13e3a | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:24.35976679Z | 88 | PC: 13e43 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:24.361363857Z | 72 | PC: 13e4a | Allocate memory |
| 2018-12-25T11:53:24.362709798Z | 88 | PC: 13e53 | case 0xGet or set allocation strateg: |
| 2018-12-25T11:53:24.363891043Z | 74 | PC: 13ecc | Reallocate memory |
| 2018-12-25T11:53:24.366002939Z | 74 | PC: 13ed0 | Reallocate memory |
| 2018-12-25T11:53:24.367282063Z | 9 | PC: 13dc6 | Display string (String= 'CDEFG-This is a 5000 byte COM test, 1994 ') |