{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5710,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:55:17.271332083Z | 250 | PC: 12b23 | UNKNOWN! |
| 2018-12-25T11:55:17.272711052Z | 42 | PC: 12b2b | Get date 0x12b2b: cmp dl, 0xd 0x12b2e: jne 0x12b37 0x12b30: mov byte ptr cs:[bp + 0x730], 1 0x12b36: nop 0x12b37: mov ax, es 0x12b39: dec ax 0x12b3a: mov ds, ax 0x12b3c: cmp byte ptr [0], 0x5a 0x12b41: jne 0x12b88 0x12b43: sub word ptr [3], 0x180 0x12b49: sub word ptr [0x12], 0x180 0x12b4f: mov es, word ptr [0x12] 0x12b53: push cs 0x12b54: pop ds 0x12b55: mov si, bp 0x12b57: mov cx, 0x43c 0x12b5a: xor di, di 0x12b5c: rep movsd dword ptr es:[di], dword ptr [si] 0x12b5e: xor ax, ax 0x12b60: mov ds, ax |
{"DateBased":true,"Day":13,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":5710,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:55:17.273741057Z | 250 | PC: 12b23 | UNKNOWN! |
| 2018-12-25T11:55:17.274538601Z | 42 | PC: 12b2b | Get date 0x12b2b: cmp dl, 0xd 0x12b2e: jne 0x12b37 0x12b30: mov byte ptr cs:[bp + 0x730], 1 0x12b36: nop 0x12b37: mov ax, es 0x12b39: dec ax 0x12b3a: mov ds, ax 0x12b3c: cmp byte ptr [0], 0x5a 0x12b41: jne 0x12b88 0x12b43: sub word ptr [3], 0x180 0x12b49: sub word ptr [0x12], 0x180 0x12b4f: mov es, word ptr [0x12] 0x12b53: push cs 0x12b54: pop ds 0x12b55: mov si, bp 0x12b57: mov cx, 0x43c 0x12b5a: xor di, di 0x12b5c: rep movsd dword ptr es:[di], dword ptr [si] 0x12b5e: xor ax, ax 0x12b60: mov ds, ax |