{"DateBased":true,"Day":1,"Month":5,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5059,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:38.096814828Z | 26 | PC: 12bbc | Set disk transfer address |
| 2018-12-25T11:53:38.098686614Z | 78 | PC: 12bc8 | Find first file |
| 2018-12-25T11:53:38.105942254Z | 67 | PC: 12c33 | Get or set file attributes |
| 2018-12-25T11:53:38.123862567Z | 61 | PC: 12c3e | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:38.137688959Z | 87 | PC: 12c47 | Get or set file date and time |
| 2018-12-25T11:53:38.140531399Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-25T11:53:38.142077974Z | 63 | PC: 12c6c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-25T11:53:38.149259271Z | 66 | PC: 12c90 | Move file pointer |
| 2018-12-25T11:53:38.151640918Z | 63 | PC: 12c9c | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:53:38.154823816Z | 66 | PC: 12ca8 | Move file pointer |
| 2018-12-25T11:53:38.156782262Z | 64 | PC: 12cb4 | Write file or device (Write 569 bytes on handle 5) |
| 2018-12-25T11:53:38.167061551Z | 66 | PC: 12cc0 | Move file pointer |
| 2018-12-25T11:53:38.168936188Z | 64 | PC: 12cd7 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:38.176681442Z | 62 | PC: 12cdb | Close file |
| 2018-12-25T11:53:38.192031769Z | 61 | PC: 12ce6 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:38.200647911Z | 87 | PC: 12cf5 | Get or set file date and time |
| 2018-12-25T11:53:38.20271633Z | 62 | PC: 12cf9 | Close file |
| 2018-12-25T11:53:38.211270411Z | 78 | PC: 12d05 | Find first file |
| 2018-12-25T11:53:38.218530494Z | 78 | PC: 12bdf | Find first file |
| 2018-12-25T11:53:38.22479319Z | 67 | PC: 12c33 | Get or set file attributes (See above) |
| 2018-12-25T11:53:38.567968894Z | 61 | PC: 12c3e | Open file (See above) |
| 2018-12-25T11:53:38.576488491Z | 87 | PC: 12c47 | Get or set file date and time (See above) |
| 2018-12-25T11:53:38.578169035Z | 66 | PC: 12c60 | Move file pointer (See above) |
| 2018-12-25T11:53:38.57974437Z | 63 | PC: 12c6c | Read file or device (See above) |
| 2018-12-25T11:53:38.584395222Z | 66 | PC: 12c90 | Move file pointer (See above) |
| 2018-12-25T11:53:38.586943876Z | 63 | PC: 12c9c | Read file or device (See above) |
| 2018-12-25T11:53:38.590308345Z | 66 | PC: 12ca8 | Move file pointer (See above) |
| 2018-12-25T11:53:38.593112088Z | 64 | PC: 12cb4 | Write file or device (See above) |
| 2018-12-25T11:53:38.601101669Z | 66 | PC: 12cc0 | Move file pointer (See above) |
| 2018-12-25T11:53:38.603129725Z | 64 | PC: 12cd7 | Write file or device (See above) |
| 2018-12-25T11:53:38.607647863Z | 62 | PC: 12cdb | Close file (See above) |
| 2018-12-25T11:53:38.948640285Z | 61 | PC: 12ce6 | Open file (See above) |
| 2018-12-25T11:53:38.95621188Z | 87 | PC: 12cf5 | Get or set file date and time (See above) |
| 2018-12-25T11:53:38.958981868Z | 62 | PC: 12cf9 | Close file (See above) |
| 2018-12-25T11:53:38.966823172Z | 78 | PC: 12d05 | Find first file (See above) |
| 2018-12-25T11:53:38.973743242Z | 78 | PC: 12bdf | Find first file (See above) |
| 2018-12-25T11:53:38.980883898Z | 67 | PC: 12c33 | Get or set file attributes (See above) |
| 2018-12-25T11:53:38.99199437Z | 61 | PC: 12c3e | Open file (See above) |
| 2018-12-25T11:53:38.999531013Z | 87 | PC: 12c47 | Get or set file date and time (See above) |
| 2018-12-25T11:53:39.001681673Z | 66 | PC: 12c60 | Move file pointer (See above) |
| 2018-12-25T11:53:39.004849272Z | 63 | PC: 12c6c | Read file or device (See above) |
| 2018-12-25T11:53:39.008749731Z | 62 | PC: 12c83 | Close file |
| 2018-12-25T11:53:39.012159512Z | 78 | PC: 12d22 | Find first file |
| 2018-12-25T11:53:39.019620496Z | 42 | PC: 12bfc | Get date 0x12bfc: cmp dh, 5 0x12bff: jl 0x12c20 0x12c01: cmp al, 1 0x12c03: jne 0x12c20 0x12c05: mov ah, 0x2c 0x12c07: int 0x21 0x12c09: mov ah, 0x11 0x12c0b: mov al, 0 0x12c0d: mov cx, 1 0x12c10: mov bp, 0x2bc 0x12c13: add bp, si 0x12c15: mov dh, 0 0x12c17: add dl, 0x41 0x12c1a: mov bh, 0xe 0x12c1c: mov bl, 0 0x12c1e: int 0x10 0x12c20: mov ax, 0x100 0x12c23: jmp ax 0x12c25: mov dx, 0x314 0x12c28: add dx, si |
| 2018-12-25T11:53:39.02346471Z | 9 | PC: 12a82 | Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ') |
| 2018-12-25T11:53:39.030070727Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |
{"DateBased":true,"Day":5,"Month":5,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5059,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:38.164649171Z | 26 | PC: 12bbc | Set disk transfer address |
| 2018-12-25T11:53:38.166431513Z | 78 | PC: 12bc8 | Find first file |
| 2018-12-25T11:53:38.17469987Z | 67 | PC: 12c33 | Get or set file attributes |
| 2018-12-25T11:53:38.192528867Z | 61 | PC: 12c3e | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:38.201969972Z | 87 | PC: 12c47 | Get or set file date and time |
| 2018-12-25T11:53:38.205010338Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-25T11:53:38.20655639Z | 63 | PC: 12c6c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-25T11:53:38.215100808Z | 66 | PC: 12c90 | Move file pointer |
| 2018-12-25T11:53:38.217870744Z | 63 | PC: 12c9c | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:53:38.221104856Z | 66 | PC: 12ca8 | Move file pointer |
| 2018-12-25T11:53:38.223049449Z | 64 | PC: 12cb4 | Write file or device (Write 569 bytes on handle 5) |
| 2018-12-25T11:53:38.233000867Z | 66 | PC: 12cc0 | Move file pointer |
| 2018-12-25T11:53:38.234866355Z | 64 | PC: 12cd7 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:38.24268652Z | 62 | PC: 12cdb | Close file |
| 2018-12-25T11:53:38.566509978Z | 61 | PC: 12ce6 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:38.575392064Z | 87 | PC: 12cf5 | Get or set file date and time |
| 2018-12-25T11:53:38.577649399Z | 62 | PC: 12cf9 | Close file |
| 2018-12-25T11:53:38.585818989Z | 78 | PC: 12d05 | Find first file |
| 2018-12-25T11:53:38.593885605Z | 78 | PC: 12bdf | Find first file |
| 2018-12-25T11:53:38.601341693Z | 67 | PC: 12c33 | Get or set file attributes (See above) |
| 2018-12-25T11:53:38.949739083Z | 61 | PC: 12c3e | Open file (See above) |
| 2018-12-25T11:53:38.958666898Z | 87 | PC: 12c47 | Get or set file date and time (See above) |
| 2018-12-25T11:53:38.960333277Z | 66 | PC: 12c60 | Move file pointer (See above) |
| 2018-12-25T11:53:38.961955596Z | 63 | PC: 12c6c | Read file or device (See above) |
| 2018-12-25T11:53:38.966871156Z | 66 | PC: 12c90 | Move file pointer (See above) |
| 2018-12-25T11:53:38.968618637Z | 63 | PC: 12c9c | Read file or device (See above) |
| 2018-12-25T11:53:38.97180844Z | 66 | PC: 12ca8 | Move file pointer (See above) |
| 2018-12-25T11:53:38.973370463Z | 64 | PC: 12cb4 | Write file or device (See above) |
| 2018-12-25T11:53:38.985307687Z | 66 | PC: 12cc0 | Move file pointer (See above) |
| 2018-12-25T11:53:38.987876146Z | 64 | PC: 12cd7 | Write file or device (See above) |
| 2018-12-25T11:53:38.992031707Z | 62 | PC: 12cdb | Close file (See above) |
| 2018-12-25T11:53:39.000932251Z | 61 | PC: 12ce6 | Open file (See above) |
| 2018-12-25T11:53:39.008881075Z | 87 | PC: 12cf5 | Get or set file date and time (See above) |
| 2018-12-25T11:53:39.010660286Z | 62 | PC: 12cf9 | Close file (See above) |
| 2018-12-25T11:53:39.018563681Z | 78 | PC: 12d05 | Find first file (See above) |
| 2018-12-25T11:53:39.025613865Z | 78 | PC: 12bdf | Find first file (See above) |
| 2018-12-25T11:53:39.032878398Z | 67 | PC: 12c33 | Get or set file attributes (See above) |
| 2018-12-25T11:53:39.044154315Z | 61 | PC: 12c3e | Open file (See above) |
| 2018-12-25T11:53:39.051730666Z | 87 | PC: 12c47 | Get or set file date and time (See above) |
| 2018-12-25T11:53:39.053735728Z | 66 | PC: 12c60 | Move file pointer (See above) |
| 2018-12-25T11:53:39.055685618Z | 63 | PC: 12c6c | Read file or device (See above) |
| 2018-12-25T11:53:39.060313747Z | 62 | PC: 12c83 | Close file |
| 2018-12-25T11:53:39.062704931Z | 78 | PC: 12d22 | Find first file |
| 2018-12-25T11:53:39.069217676Z | 42 | PC: 12bfc | Get date 0x12bfc: cmp dh, 5 0x12bff: jl 0x12c20 0x12c01: cmp al, 1 0x12c03: jne 0x12c20 0x12c05: mov ah, 0x2c 0x12c07: int 0x21 0x12c09: mov ah, 0x11 0x12c0b: mov al, 0 0x12c0d: mov cx, 1 0x12c10: mov bp, 0x2bc 0x12c13: add bp, si 0x12c15: mov dh, 0 0x12c17: add dl, 0x41 0x12c1a: mov bh, 0xe 0x12c1c: mov bl, 0 0x12c1e: int 0x10 0x12c20: mov ax, 0x100 0x12c23: jmp ax 0x12c25: mov dx, 0x314 0x12c28: add dx, si |
| 2018-12-25T11:53:39.07265755Z | 44 | PC: 12c09 | Get time 0x12c09: mov ah, 0x11 0x12c0b: mov al, 0 0x12c0d: mov cx, 1 0x12c10: mov bp, 0x2bc 0x12c13: add bp, si 0x12c15: mov dh, 0 0x12c17: add dl, 0x41 0x12c1a: mov bh, 0xe 0x12c1c: mov bl, 0 0x12c1e: int 0x10 0x12c20: mov ax, 0x100 0x12c23: jmp ax 0x12c25: mov dx, 0x314 0x12c28: add dx, si 0x12c2a: mov ah, 0x43 0x12c2c: mov al, 1 0x12c2e: mov cx, 0 0x12c31: int 0x21 0x12c33: mov dx, 0x314 0x12c36: add dx, si |
| 2018-12-25T11:53:39.076796793Z | 9 | PC: 12a82 | Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ') |
| 2018-12-25T11:53:39.083182298Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5059,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:53:38.405580739Z | 26 | PC: 12bbc | Set disk transfer address |
| 2018-12-25T11:53:38.40789056Z | 78 | PC: 12bc8 | Find first file |
| 2018-12-25T11:53:38.422076072Z | 67 | PC: 12c33 | Get or set file attributes |
| 2018-12-25T11:53:38.438665944Z | 61 | PC: 12c3e | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:38.456895359Z | 87 | PC: 12c47 | Get or set file date and time |
| 2018-12-25T11:53:38.458345942Z | 66 | PC: 12c60 | Move file pointer |
| 2018-12-25T11:53:38.459680255Z | 63 | PC: 12c6c | Read file or device (Read 4 bytes on handle 5) |
| 2018-12-25T11:53:38.465975293Z | 66 | PC: 12c90 | Move file pointer |
| 2018-12-25T11:53:38.467873069Z | 63 | PC: 12c9c | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:53:38.470567738Z | 66 | PC: 12ca8 | Move file pointer |
| 2018-12-25T11:53:38.472216962Z | 64 | PC: 12cb4 | Write file or device (Write 569 bytes on handle 5) |
| 2018-12-25T11:53:38.481921012Z | 66 | PC: 12cc0 | Move file pointer |
| 2018-12-25T11:53:38.483616976Z | 64 | PC: 12cd7 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:53:38.490860425Z | 62 | PC: 12cdb | Close file |
| 2018-12-25T11:53:38.499991851Z | 61 | PC: 12ce6 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:53:38.508052464Z | 87 | PC: 12cf5 | Get or set file date and time |
| 2018-12-25T11:53:38.510028366Z | 62 | PC: 12cf9 | Close file |
| 2018-12-25T11:53:38.517822701Z | 78 | PC: 12d05 | Find first file |
| 2018-12-25T11:53:38.523955234Z | 78 | PC: 12bdf | Find first file |
| 2018-12-25T11:53:38.529329413Z | 67 | PC: 12c33 | Get or set file attributes (See above) |
| 2018-12-25T11:53:38.860167057Z | 61 | PC: 12c3e | Open file (See above) |
| 2018-12-25T11:53:38.866765496Z | 87 | PC: 12c47 | Get or set file date and time (See above) |
| 2018-12-25T11:53:38.86856334Z | 66 | PC: 12c60 | Move file pointer (See above) |
| 2018-12-25T11:53:38.870369415Z | 63 | PC: 12c6c | Read file or device (See above) |
| 2018-12-25T11:53:38.874366909Z | 66 | PC: 12c90 | Move file pointer (See above) |
| 2018-12-25T11:53:38.876002529Z | 63 | PC: 12c9c | Read file or device (See above) |
| 2018-12-25T11:53:38.878799597Z | 66 | PC: 12ca8 | Move file pointer (See above) |
| 2018-12-25T11:53:38.881306931Z | 64 | PC: 12cb4 | Write file or device (See above) |
| 2018-12-25T11:53:38.888216074Z | 66 | PC: 12cc0 | Move file pointer (See above) |
| 2018-12-25T11:53:38.889553063Z | 64 | PC: 12cd7 | Write file or device (See above) |
| 2018-12-25T11:53:38.893260216Z | 62 | PC: 12cdb | Close file (See above) |
| 2018-12-25T11:53:38.900851281Z | 61 | PC: 12ce6 | Open file (See above) |
| 2018-12-25T11:53:38.906806493Z | 87 | PC: 12cf5 | Get or set file date and time (See above) |
| 2018-12-25T11:53:38.910724589Z | 62 | PC: 12cf9 | Close file (See above) |
| 2018-12-25T11:53:38.916347653Z | 78 | PC: 12d05 | Find first file (See above) |
| 2018-12-25T11:53:38.921906397Z | 78 | PC: 12bdf | Find first file (See above) |
| 2018-12-25T11:53:38.934608248Z | 67 | PC: 12c33 | Get or set file attributes (See above) |
| 2018-12-25T11:53:38.943215605Z | 61 | PC: 12c3e | Open file (See above) |
| 2018-12-25T11:53:38.949258897Z | 87 | PC: 12c47 | Get or set file date and time (See above) |
| 2018-12-25T11:53:38.951331688Z | 66 | PC: 12c60 | Move file pointer (See above) |
| 2018-12-25T11:53:38.95263815Z | 63 | PC: 12c6c | Read file or device (See above) |
| 2018-12-25T11:53:38.955556794Z | 62 | PC: 12c83 | Close file |
| 2018-12-25T11:53:38.958184923Z | 78 | PC: 12d22 | Find first file |
| 2018-12-25T11:53:38.963397682Z | 42 | PC: 12bfc | Get date 0x12bfc: cmp dh, 5 0x12bff: jl 0x12c20 0x12c01: cmp al, 1 0x12c03: jne 0x12c20 0x12c05: mov ah, 0x2c 0x12c07: int 0x21 0x12c09: mov ah, 0x11 0x12c0b: mov al, 0 0x12c0d: mov cx, 1 0x12c10: mov bp, 0x2bc 0x12c13: add bp, si 0x12c15: mov dh, 0 0x12c17: add dl, 0x41 0x12c1a: mov bh, 0xe 0x12c1c: mov bl, 0 0x12c1e: int 0x10 0x12c20: mov ax, 0x100 0x12c23: jmp ax 0x12c25: mov dx, 0x314 0x12c28: add dx, si |
| 2018-12-25T11:53:38.965463041Z | 9 | PC: 12a82 | Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ') |
| 2018-12-25T11:53:38.971819176Z | 76 | PC: 12a86 | Terminate with return code (Return code = '36') |