{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6363,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:12.092184374Z | 53 | PC: 12a5f | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:59:12.106896853Z | 53 | PC: 12a8e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:59:12.109148206Z | 42 | PC: 12ad8 | Get date 0x12ad8: cmp dh, 3 0x12adb: je 0x12ae0 0x12add: jmp 0x12af1 0x12ae0: cmp dl, 7 0x12ae3: jne 0x12af1 0x12ae5: lea dx, word ptr [bp + 0x112] 0x12ae9: mov ah, 9 0x12aeb: push cs 0x12aec: pop ds 0x12aed: int 0x21 0x12aef: jmp 0x12aef 0x12af1: cmp byte ptr [bp + 0x5aa], 0 0x12af6: jne 0x12afb 0x12af8: jmp 0x12a67 0x12afb: pop es 0x12afc: push es 0x12afd: pop ds 0x12afe: mov ax, es 0x12b00: add ax, 0x10 0x12b03: add word ptr cs:[bp + 0xd9], ax |
{"DateBased":true,"Day":1,"Month":3,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6363,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:12.555686675Z | 53 | PC: 12a5f | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:59:12.55800841Z | 53 | PC: 12a8e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:59:12.559396322Z | 42 | PC: 12ad8 | Get date 0x12ad8: cmp dh, 3 0x12adb: je 0x12ae0 0x12add: jmp 0x12af1 0x12ae0: cmp dl, 7 0x12ae3: jne 0x12af1 0x12ae5: lea dx, word ptr [bp + 0x112] 0x12ae9: mov ah, 9 0x12aeb: push cs 0x12aec: pop ds 0x12aed: int 0x21 0x12aef: jmp 0x12aef 0x12af1: cmp byte ptr [bp + 0x5aa], 0 0x12af6: jne 0x12afb 0x12af8: jmp 0x12a67 0x12afb: pop es 0x12afc: push es 0x12afd: pop ds 0x12afe: mov ax, es 0x12b00: add ax, 0x10 0x12b03: add word ptr cs:[bp + 0xd9], ax |
{"DateBased":true,"Day":7,"Month":3,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6363,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:12.667512661Z | 53 | PC: 12a5f | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:59:12.669885311Z | 53 | PC: 12a8e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:59:12.672111563Z | 42 | PC: 12ad8 | Get date 0x12ad8: cmp dh, 3 0x12adb: je 0x12ae0 0x12add: jmp 0x12af1 0x12ae0: cmp dl, 7 0x12ae3: jne 0x12af1 0x12ae5: lea dx, word ptr [bp + 0x112] 0x12ae9: mov ah, 9 0x12aeb: push cs 0x12aec: pop ds 0x12aed: int 0x21 0x12aef: jmp 0x12aef 0x12af1: cmp byte ptr [bp + 0x5aa], 0 0x12af6: jne 0x12afb 0x12af8: jmp 0x12a67 0x12afb: pop es 0x12afc: push es 0x12afd: pop ds 0x12afe: mov ax, es 0x12b00: add ax, 0x10 0x12b03: add word ptr cs:[bp + 0xd9], ax |
| 2018-12-25T11:59:12.675241944Z | 9 | PC: 12aef | Display string (Could not find end pointer) |
{"DateBased":true,"Day":1,"Month":3,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6363,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:12.769884802Z | 53 | PC: 12a5f | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:59:12.771949126Z | 53 | PC: 12a8e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:59:12.773991765Z | 42 | PC: 12ad8 | Get date 0x12ad8: cmp dh, 3 0x12adb: je 0x12ae0 0x12add: jmp 0x12af1 0x12ae0: cmp dl, 7 0x12ae3: jne 0x12af1 0x12ae5: lea dx, word ptr [bp + 0x112] 0x12ae9: mov ah, 9 0x12aeb: push cs 0x12aec: pop ds 0x12aed: int 0x21 0x12aef: jmp 0x12aef 0x12af1: cmp byte ptr [bp + 0x5aa], 0 0x12af6: jne 0x12afb 0x12af8: jmp 0x12a67 0x12afb: pop es 0x12afc: push es 0x12afd: pop ds 0x12afe: mov ax, es 0x12b00: add ax, 0x10 0x12b03: add word ptr cs:[bp + 0xd9], ax |
{"DateBased":true,"Day":7,"Month":3,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6363,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:12.8510384Z | 53 | PC: 12a5f | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:59:12.852450744Z | 53 | PC: 12a8e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:59:12.861838519Z | 42 | PC: 12ad8 | Get date 0x12ad8: cmp dh, 3 0x12adb: je 0x12ae0 0x12add: jmp 0x12af1 0x12ae0: cmp dl, 7 0x12ae3: jne 0x12af1 0x12ae5: lea dx, word ptr [bp + 0x112] 0x12ae9: mov ah, 9 0x12aeb: push cs 0x12aec: pop ds 0x12aed: int 0x21 0x12aef: jmp 0x12aef 0x12af1: cmp byte ptr [bp + 0x5aa], 0 0x12af6: jne 0x12afb 0x12af8: jmp 0x12a67 0x12afb: pop es 0x12afc: push es 0x12afd: pop ds 0x12afe: mov ax, es 0x12b00: add ax, 0x10 0x12b03: add word ptr cs:[bp + 0xd9], ax |
| 2018-12-25T11:59:12.864355629Z | 9 | PC: 12aef | Display string (Could not find end pointer) |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6363,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:12.997807856Z | 53 | PC: 12a5f | Get interrupt vector (Interrupt = '33' AKA 'Random read') |
| 2018-12-25T11:59:12.999487045Z | 53 | PC: 12a8e | Get interrupt vector (Interrupt = '36' AKA 'Set random record number') |
| 2018-12-25T11:59:13.00330552Z | 42 | PC: 12ad8 | Get date 0x12ad8: cmp dh, 3 0x12adb: je 0x12ae0 0x12add: jmp 0x12af1 0x12ae0: cmp dl, 7 0x12ae3: jne 0x12af1 0x12ae5: lea dx, word ptr [bp + 0x112] 0x12ae9: mov ah, 9 0x12aeb: push cs 0x12aec: pop ds 0x12aed: int 0x21 0x12aef: jmp 0x12aef 0x12af1: cmp byte ptr [bp + 0x5aa], 0 0x12af6: jne 0x12afb 0x12af8: jmp 0x12a67 0x12afb: pop es 0x12afc: push es 0x12afd: pop ds 0x12afe: mov ax, es 0x12b00: add ax, 0x10 0x12b03: add word ptr cs:[bp + 0xd9], ax |