{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6299,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:01.100294864Z | 42 | PC: 14c7b | Get date 0x14c7b: cmp dx, 0xb19 0x14c7f: jne 0x14ca2 0x14c81: mov dx, 0x180 0x14c84: mov cx, 2 0x14c87: mov ax, 0x30a 0x14c8a: xor bx, bx 0x14c8c: push cx 0x14c8d: push dx 0x14c8e: int 0x13 0x14c90: pop dx 0x14c91: pop cx 0x14c92: inc ch 0x14c94: cmp ch, 0xc8 0x14c97: jb 0x14c87 0x14c99: xor ch, ch 0x14c9b: inc dh 0x14c9d: cmp dh, 0x3c 0x14ca0: jb 0x14c87 0x14ca2: mov ah, 0x2b 0x14ca4: popf |
| 2018-12-25T11:59:01.103795609Z | 43 | PC: 14cb7 | Set date |
| 2018-12-25T11:59:01.385366934Z | 77 | PC: 1398e | Get program return code |
{"DateBased":true,"Day":25,"Month":11,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6299,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:01.444910794Z | 42 | PC: 14c7b | Get date 0x14c7b: cmp dx, 0xb19 0x14c7f: jne 0x14ca2 0x14c81: mov dx, 0x180 0x14c84: mov cx, 2 0x14c87: mov ax, 0x30a 0x14c8a: xor bx, bx 0x14c8c: push cx 0x14c8d: push dx 0x14c8e: int 0x13 0x14c90: pop dx 0x14c91: pop cx 0x14c92: inc ch 0x14c94: cmp ch, 0xc8 0x14c97: jb 0x14c87 0x14c99: xor ch, ch 0x14c9b: inc dh 0x14c9d: cmp dh, 0x3c 0x14ca0: jb 0x14c87 0x14ca2: mov ah, 0x2b 0x14ca4: popf |
| 2018-12-25T11:59:03.20979648Z | 43 | PC: 14cb7 | Set date |
| 2018-12-25T11:59:03.46137654Z | 77 | PC: 1398e | Get program return code |