{"DateBased":true,"Day":7,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6770,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:17.785674854Z | 253 | PC: 155eb | UNKNOWN! |
| 2018-12-25T12:00:17.787339227Z | 73 | PC: 14a9f | Release memory |
| 2018-12-25T12:00:17.788492982Z | 72 | PC: 14aab | Allocate memory |
| 2018-12-25T12:00:17.790004536Z | 74 | PC: 14abd | Reallocate memory |
| 2018-12-25T12:00:17.792336622Z | 74 | PC: 14acd | Reallocate memory |
| 2018-12-25T12:00:17.794312261Z | 42 | PC: 15628 | Get date 0x15628: cmp cx, 0x7ca 0x1562c: ja 0x15636 0x1562e: cmp dh, 8 0x15631: jae 0x15636 0x15633: jmp 0x15646 0x15635: nop 0x15636: cmp al, 1 0x15638: jne 0x15646 0x1563a: mov byte ptr [si + 0xc79], 1 0x1563f: nop 0x15640: mov word ptr [si + 0xc7a], 0x82c8 0x15646: ret 0x15647: iret 0x15648: mov al, 3 0x1564a: iret 0x1564b: push dx 0x1564c: inc dx 0x1564d: dec bx 0x1564e: add byte ptr [si - 0x3752], dh 0x15652: loop 0x15670 |
| 2018-12-25T12:00:17.796974974Z | 82 | PC: 14afb | Get DOS internal pointers (SYSVARS) |
| 2018-12-25T12:00:17.798680484Z | 48 | PC: 14b4d | Get DOS version |
{"DateBased":true,"Day":1,"Month":9,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6770,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:17.844320594Z | 253 | PC: 155eb | UNKNOWN! |
| 2018-12-25T12:00:17.845678053Z | 73 | PC: 14a9f | Release memory |
| 2018-12-25T12:00:17.846812776Z | 72 | PC: 14aab | Allocate memory |
| 2018-12-25T12:00:17.848292256Z | 74 | PC: 14abd | Reallocate memory |
| 2018-12-25T12:00:17.849824276Z | 74 | PC: 14acd | Reallocate memory |
| 2018-12-25T12:00:17.85103441Z | 42 | PC: 15628 | Get date 0x15628: cmp cx, 0x7ca 0x1562c: ja 0x15636 0x1562e: cmp dh, 8 0x15631: jae 0x15636 0x15633: jmp 0x15646 0x15635: nop 0x15636: cmp al, 1 0x15638: jne 0x15646 0x1563a: mov byte ptr [si + 0xc79], 1 0x1563f: nop 0x15640: mov word ptr [si + 0xc7a], 0x82c8 0x15646: ret 0x15647: iret 0x15648: mov al, 3 0x1564a: iret 0x1564b: push dx 0x1564c: inc dx 0x1564d: dec bx 0x1564e: add byte ptr [si - 0x3752], dh 0x15652: loop 0x15670 |
| 2018-12-25T12:00:17.853027892Z | 82 | PC: 14afb | Get DOS internal pointers (SYSVARS) |
| 2018-12-25T12:00:17.862647102Z | 48 | PC: 14b4d | Get DOS version |
{"DateBased":true,"Day":1,"Month":1,"Year":1995,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6770,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:18.014594852Z | 253 | PC: 155eb | UNKNOWN! |
| 2018-12-25T12:00:18.016035612Z | 73 | PC: 14a9f | Release memory |
| 2018-12-25T12:00:18.01735644Z | 72 | PC: 14aab | Allocate memory |
| 2018-12-25T12:00:18.018926042Z | 74 | PC: 14abd | Reallocate memory |
| 2018-12-25T12:00:18.020673266Z | 74 | PC: 14acd | Reallocate memory |
| 2018-12-25T12:00:18.022120605Z | 42 | PC: 15628 | Get date 0x15628: cmp cx, 0x7ca 0x1562c: ja 0x15636 0x1562e: cmp dh, 8 0x15631: jae 0x15636 0x15633: jmp 0x15646 0x15635: nop 0x15636: cmp al, 1 0x15638: jne 0x15646 0x1563a: mov byte ptr [si + 0xc79], 1 0x1563f: nop 0x15640: mov word ptr [si + 0xc7a], 0x82c8 0x15646: ret 0x15647: iret 0x15648: mov al, 3 0x1564a: iret 0x1564b: push dx 0x1564c: inc dx 0x1564d: dec bx 0x1564e: add byte ptr [si - 0x3752], dh 0x15652: loop 0x15670 |
| 2018-12-25T12:00:18.024342727Z | 82 | PC: 14afb | Get DOS internal pointers (SYSVARS) |
| 2018-12-25T12:00:18.026118766Z | 48 | PC: 14b4d | Get DOS version |
{"DateBased":true,"Day":2,"Month":1,"Year":1995,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6770,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:18.158100034Z | 253 | PC: 155eb | UNKNOWN! |
| 2018-12-25T12:00:18.159733268Z | 73 | PC: 14a9f | Release memory |
| 2018-12-25T12:00:18.160642577Z | 72 | PC: 14aab | Allocate memory |
| 2018-12-25T12:00:18.161718512Z | 74 | PC: 14abd | Reallocate memory |
| 2018-12-25T12:00:18.16327653Z | 74 | PC: 14acd | Reallocate memory |
| 2018-12-25T12:00:18.164316335Z | 42 | PC: 15628 | Get date 0x15628: cmp cx, 0x7ca 0x1562c: ja 0x15636 0x1562e: cmp dh, 8 0x15631: jae 0x15636 0x15633: jmp 0x15646 0x15635: nop 0x15636: cmp al, 1 0x15638: jne 0x15646 0x1563a: mov byte ptr [si + 0xc79], 1 0x1563f: nop 0x15640: mov word ptr [si + 0xc7a], 0x82c8 0x15646: ret 0x15647: iret 0x15648: mov al, 3 0x1564a: iret 0x1564b: push dx 0x1564c: inc dx 0x1564d: dec bx 0x1564e: add byte ptr [si - 0x3752], dh 0x15652: loop 0x15670 |
| 2018-12-25T12:00:18.165810509Z | 82 | PC: 14afb | Get DOS internal pointers (SYSVARS) |
| 2018-12-25T12:00:18.167292251Z | 48 | PC: 14b4d | Get DOS version |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":6770,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:18.310537439Z | 253 | PC: 155eb | UNKNOWN! |
| 2018-12-25T12:00:18.311731864Z | 73 | PC: 14a9f | Release memory |
| 2018-12-25T12:00:18.313001171Z | 72 | PC: 14aab | Allocate memory |
| 2018-12-25T12:00:18.31464278Z | 74 | PC: 14abd | Reallocate memory |
| 2018-12-25T12:00:18.316342679Z | 74 | PC: 14acd | Reallocate memory |
| 2018-12-25T12:00:18.317615806Z | 42 | PC: 15628 | Get date 0x15628: cmp cx, 0x7ca 0x1562c: ja 0x15636 0x1562e: cmp dh, 8 0x15631: jae 0x15636 0x15633: jmp 0x15646 0x15635: nop 0x15636: cmp al, 1 0x15638: jne 0x15646 0x1563a: mov byte ptr [si + 0xc79], 1 0x1563f: nop 0x15640: mov word ptr [si + 0xc7a], 0x82c8 0x15646: ret 0x15647: iret 0x15648: mov al, 3 0x1564a: iret 0x1564b: push dx 0x1564c: inc dx 0x1564d: dec bx 0x1564e: add byte ptr [si - 0x3752], dh 0x15652: loop 0x15670 |
| 2018-12-25T12:00:18.320531832Z | 82 | PC: 14afb | Get DOS internal pointers (SYSVARS) |
| 2018-12-25T12:00:18.322030808Z | 48 | PC: 14b4d | Get DOS version |