{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6580,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:51.771999307Z | 26 | PC: 12a83 | Set disk transfer address |
| 2018-12-25T11:59:51.773299156Z | 78 | PC: 12a8e | Find first file |
| 2018-12-25T11:59:51.776991911Z | 67 | PC: 12a9c | Get or set file attributes |
| 2018-12-25T11:59:51.780620639Z | 67 | PC: 12aac | Get or set file attributes |
| 2018-12-25T11:59:52.116642754Z | 61 | PC: 12abd | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:59:52.123083634Z | 63 | PC: 12ad7 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:59:52.127415965Z | 66 | PC: 12b1e | Move file pointer |
| 2018-12-25T11:59:52.12851222Z | 64 | PC: 12b29 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:59:52.131111862Z | 66 | PC: 12b32 | Move file pointer |
| 2018-12-25T11:59:52.132444261Z | 64 | PC: 12b3d | Write file or device (Write 721 bytes on handle 5) |
| 2018-12-25T11:59:52.138341479Z | 87 | PC: 12b4a | Get or set file date and time |
| 2018-12-25T11:59:52.14016738Z | 62 | PC: 12b4e | Close file |
| 2018-12-25T11:59:52.1450844Z | 67 | PC: 12b5d | Get or set file attributes |
| 2018-12-25T11:59:52.152528129Z | 42 | PC: 12b61 | Get date 0x12b61: cmp dl, 1 0x12b64: jne 0x12b8e 0x12b66: mov cx, 0x131 0x12b69: lea di, word ptr [bp + 0x2a9] 0x12b6d: xor ax, ax 0x12b6f: mov ah, byte ptr [bp + 0x3db] 0x12b73: inc di 0x12b74: mov al, byte ptr [di] 0x12b76: xor al, ah 0x12b78: mov byte ptr [di], al 0x12b7a: loop 0x12b73 0x12b7c: mov ah, 9 0x12b7e: lea dx, word ptr [bp + 0x2aa] 0x12b82: int 0x21 0x12b84: lea dx, word ptr [bp + 0x3bc] 0x12b88: int 0x21 0x12b8a: mov ah, 8 0x12b8c: int 0x21 0x12b8e: cmp word ptr [0x100], 0x1f0e 0x12b94: jne 0x12b9a |
| 2018-12-25T11:59:52.155284719Z | 9 | PC: 12b84 | Display string (Could not find end pointer) |
| 2018-12-25T11:59:52.163211546Z | 9 | PC: 12b8a | Display string (String= ' Punch a key to continue... ') |
| 2018-12-25T11:59:52.166927146Z | 8 | PC: 12b8e | Console input without echo |
{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6580,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T11:59:53.611227678Z | 26 | PC: 12a83 | Set disk transfer address |
| 2018-12-25T11:59:53.612929393Z | 78 | PC: 12a8e | Find first file |
| 2018-12-25T11:59:53.62078384Z | 67 | PC: 12a9c | Get or set file attributes |
| 2018-12-25T11:59:53.62708278Z | 67 | PC: 12aac | Get or set file attributes |
| 2018-12-25T11:59:54.875367559Z | 61 | PC: 12abd | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T11:59:54.88319373Z | 63 | PC: 12ad7 | Read file or device (Read 3 bytes on handle 5) |
| 2018-12-25T11:59:54.890286274Z | 66 | PC: 12b1e | Move file pointer |
| 2018-12-25T11:59:54.892659482Z | 64 | PC: 12b29 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T11:59:54.896548785Z | 66 | PC: 12b32 | Move file pointer |
| 2018-12-25T11:59:54.898258211Z | 64 | PC: 12b3d | Write file or device (Write 721 bytes on handle 5) |
| 2018-12-25T11:59:54.906880729Z | 87 | PC: 12b4a | Get or set file date and time |
| 2018-12-25T11:59:54.91262423Z | 62 | PC: 12b4e | Close file |
| 2018-12-25T11:59:54.919794918Z | 67 | PC: 12b5d | Get or set file attributes |
| 2018-12-25T11:59:54.929807251Z | 42 | PC: 12b61 | Get date 0x12b61: cmp dl, 1 0x12b64: jne 0x12b8e 0x12b66: mov cx, 0x131 0x12b69: lea di, word ptr [bp + 0x2a9] 0x12b6d: xor ax, ax 0x12b6f: mov ah, byte ptr [bp + 0x3db] 0x12b73: inc di 0x12b74: mov al, byte ptr [di] 0x12b76: xor al, ah 0x12b78: mov byte ptr [di], al 0x12b7a: loop 0x12b73 0x12b7c: mov ah, 9 0x12b7e: lea dx, word ptr [bp + 0x2aa] 0x12b82: int 0x21 0x12b84: lea dx, word ptr [bp + 0x3bc] 0x12b88: int 0x21 0x12b8a: mov ah, 8 0x12b8c: int 0x21 0x12b8e: cmp word ptr [0x100], 0x1f0e 0x12b94: jne 0x12b9a |
| 2018-12-25T11:59:54.932782452Z | 76 | PC: 12b9a | Terminate with return code (Return code = '3') |