{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":5360,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:54:19.196483181Z | 53 | PC: 12e8d | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:54:19.199076205Z | 37 | PC: 12eb0 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:54:19.213045167Z | 9 | PC: 12b36 | Display string (String= ' YOU HAVE JUST RELEASED A VIRUS! Entry=3h, Size=1000, Stack=0, Overlay(0)=0 not loaded, Fill=FFFF* COM file, code at start, JMP at start, SS:SP != CS:IP ') |
| 2018-12-25T11:54:19.225850107Z | 76 | PC: 12b3a | Terminate with return code (Return code = '36') |
{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":58,"TimeBased":true,"OriginalID":5360,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:54:19.237587495Z | 53 | PC: 12e8d | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:54:19.239819974Z | 37 | PC: 12eb0 | Set interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:54:19.241161402Z | 9 | PC: 12b36 | Display string (String= ' YOU HAVE JUST RELEASED A VIRUS! Entry=3h, Size=1000, Stack=0, Overlay(0)=0 not loaded, Fill=FFFF* COM file, code at start, JMP at start, SS:SP != CS:IP ') |
| 2018-12-25T11:54:19.252144341Z | 76 | PC: 12b3a | Terminate with return code (Return code = '36') |