{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5035,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:31.415905842Z | 6 | PC: 19df4 | Direct console I/O |
| 2018-12-25T11:53:31.419372506Z | 53 | PC: 19e93 | Get interrupt vector (Interrupt = '19' AKA 'Delete file') |
| 2018-12-25T11:53:31.420310228Z | 53 | PC: 19ea1 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-25T11:53:31.421145031Z | 53 | PC: 19eaf | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-25T11:53:31.422658089Z | 53 | PC: 19ebd | Get interrupt vector (Interrupt = '9' AKA 'Display string') |
| 2018-12-25T11:53:31.424026957Z | 42 | PC: 19f31 | Get date 0x19f31: cmp al, 1 0x19f33: jne 0x19f52 0x19f35: mov dx, 0x12b 0x19f38: mov ax, 0x2513 0x19f3b: int 0x21 0x19f3d: mov dx, 0x1fa 0x19f40: mov al, 8 0x19f42: int 0x21 0x19f44: mov dx, 0x16e 0x19f47: mov al, 0x1c 0x19f49: int 0x21 0x19f4b: mov dx, 0x225 0x19f4e: mov al, 9 0x19f50: int 0x21 0x19f52: pop es 0x19f53: pop ds 0x19f54: mov al, 1 0x19f56: or al, 0 0x19f58: jne 0x19f6e 0x19f5a: lea si, word ptr [bp + 0xcff] |
| 2018-12-25T11:53:31.426031987Z | 9 | PC: 12a5c | Display string (Could not find end pointer) |
| 2018-12-25T11:53:31.432176279Z | 76 | PC: 12a61 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":7,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5035,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:31.417943379Z | 6 | PC: 19df4 | Direct console I/O |
| 2018-12-25T11:53:31.421400643Z | 53 | PC: 19e93 | Get interrupt vector (Interrupt = '19' AKA 'Delete file') |
| 2018-12-25T11:53:31.422587947Z | 53 | PC: 19ea1 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-25T11:53:31.423790945Z | 53 | PC: 19eaf | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-25T11:53:31.425857338Z | 53 | PC: 19ebd | Get interrupt vector (Interrupt = '9' AKA 'Display string') |
| 2018-12-25T11:53:31.427687484Z | 42 | PC: 19f31 | Get date 0x19f31: cmp al, 1 0x19f33: jne 0x19f52 0x19f35: mov dx, 0x12b 0x19f38: mov ax, 0x2513 0x19f3b: int 0x21 0x19f3d: mov dx, 0x1fa 0x19f40: mov al, 8 0x19f42: int 0x21 0x19f44: mov dx, 0x16e 0x19f47: mov al, 0x1c 0x19f49: int 0x21 0x19f4b: mov dx, 0x225 0x19f4e: mov al, 9 0x19f50: int 0x21 0x19f52: pop es 0x19f53: pop ds 0x19f54: mov al, 1 0x19f56: or al, 0 0x19f58: jne 0x19f6e 0x19f5a: lea si, word ptr [bp + 0xcff] |
| 2018-12-25T11:53:31.430275359Z | 37 | PC: 19f3d | Set interrupt vector (Interrupt = '19' AKA 'Delete file') |
| 2018-12-25T11:53:31.432318305Z | 37 | PC: 19f44 | Set interrupt vector (Interrupt = '8' AKA 'Console input without echo') |
| 2018-12-25T11:53:31.433514374Z | 37 | PC: 19f4b | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive') |
| 2018-12-25T11:53:31.434539758Z | 37 | PC: 19f52 | Set interrupt vector (Interrupt = '9' AKA 'Display string') |
| 2018-12-25T11:53:31.436054898Z | 9 | PC: 12a5c | Display string (Could not find end pointer) |
| 2018-12-25T11:53:31.441659234Z | 76 | PC: 12a61 | Terminate with return code (Return code = '0') |