{"DateBased":true,"Day":1,"Month":1,"Year":1990,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7093,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:50.217721736Z | 48 | PC: 12a62 | Get DOS version |
| 2018-12-25T12:00:50.219453053Z | 47 | PC: 12a6e | Get disk transfer address |
| 2018-12-25T12:00:50.221764584Z | 26 | PC: 12a81 | Set disk transfer address |
| 2018-12-25T12:00:50.223356193Z | 42 | PC: 12a91 | Get date 0x12a91: cmp cx, 0x7c6 0x12a95: jge 0x12a9a 0x12a97: jmp 0x12ad2 0x12a99: nop 0x12a9a: mov ah, 0x2a 0x12a9c: int 0x21 0x12a9e: cmp dh, 8 0x12aa1: jge 0x12aa6 0x12aa3: jmp 0x12ad2 0x12aa5: nop 0x12aa6: mov ah, 0x2a 0x12aa8: int 0x21 0x12aaa: cmp dl, 0xf 0x12aad: jge 0x12ab2 0x12aaf: jmp 0x12ad2 0x12ab1: nop 0x12ab2: mov al, byte ptr [0x381] 0x12ab5: call 0x12ac5 0x12ab8: cmp byte ptr [0x381], 0x19 0x12abd: je 0x12ad2 |
| 2018-12-25T12:00:50.226109772Z | 42 | PC: 12a9e | Get date 0x12a9e: cmp dh, 8 0x12aa1: jge 0x12aa6 0x12aa3: jmp 0x12ad2 0x12aa5: nop 0x12aa6: mov ah, 0x2a 0x12aa8: int 0x21 0x12aaa: cmp dl, 0xf 0x12aad: jge 0x12ab2 0x12aaf: jmp 0x12ad2 0x12ab1: nop 0x12ab2: mov al, byte ptr [0x381] 0x12ab5: call 0x12ac5 0x12ab8: cmp byte ptr [0x381], 0x19 0x12abd: je 0x12ad2 0x12abf: inc byte ptr [0x381] 0x12ac3: loop 0x12ab2 0x12ac5: mov ah, 5 0x12ac7: mov ch, 0 0x12ac9: mov dh, 0 0x12acb: mov dl, byte ptr [0x381] |
| 2018-12-25T12:00:50.235082589Z | 78 | PC: 12b54 | Find first file |
| 2018-12-25T12:00:50.237102706Z | 78 | PC: 12b54 | Find first file (See above) |
| 2018-12-25T12:00:50.241830102Z | 26 | PC: 12c5f | Set disk transfer address |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7093,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:50.47268267Z | 48 | PC: 12a62 | Get DOS version |
| 2018-12-25T12:00:50.47405195Z | 47 | PC: 12a6e | Get disk transfer address |
| 2018-12-25T12:00:50.475401343Z | 26 | PC: 12a81 | Set disk transfer address |
| 2018-12-25T12:00:50.476491711Z | 42 | PC: 12a91 | Get date 0x12a91: cmp cx, 0x7c6 0x12a95: jge 0x12a9a 0x12a97: jmp 0x12ad2 0x12a99: nop 0x12a9a: mov ah, 0x2a 0x12a9c: int 0x21 0x12a9e: cmp dh, 8 0x12aa1: jge 0x12aa6 0x12aa3: jmp 0x12ad2 0x12aa5: nop 0x12aa6: mov ah, 0x2a 0x12aa8: int 0x21 0x12aaa: cmp dl, 0xf 0x12aad: jge 0x12ab2 0x12aaf: jmp 0x12ad2 0x12ab1: nop 0x12ab2: mov al, byte ptr [0x381] 0x12ab5: call 0x12ac5 0x12ab8: cmp byte ptr [0x381], 0x19 0x12abd: je 0x12ad2 |
| 2018-12-25T12:00:50.478280232Z | 78 | PC: 12b54 | Find first file |
| 2018-12-25T12:00:50.480489604Z | 78 | PC: 12b54 | Find first file (See above) |
| 2018-12-25T12:00:50.483521626Z | 26 | PC: 12c5f | Set disk transfer address |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7093,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:50.512437305Z | 48 | PC: 12a62 | Get DOS version |
| 2018-12-25T12:00:50.514276818Z | 47 | PC: 12a6e | Get disk transfer address |
| 2018-12-25T12:00:50.516358294Z | 26 | PC: 12a81 | Set disk transfer address |
| 2018-12-25T12:00:50.517361256Z | 42 | PC: 12a91 | Get date 0x12a91: cmp cx, 0x7c6 0x12a95: jge 0x12a9a 0x12a97: jmp 0x12ad2 0x12a99: nop 0x12a9a: mov ah, 0x2a 0x12a9c: int 0x21 0x12a9e: cmp dh, 8 0x12aa1: jge 0x12aa6 0x12aa3: jmp 0x12ad2 0x12aa5: nop 0x12aa6: mov ah, 0x2a 0x12aa8: int 0x21 0x12aaa: cmp dl, 0xf 0x12aad: jge 0x12ab2 0x12aaf: jmp 0x12ad2 0x12ab1: nop 0x12ab2: mov al, byte ptr [0x381] 0x12ab5: call 0x12ac5 0x12ab8: cmp byte ptr [0x381], 0x19 0x12abd: je 0x12ad2 |
| 2018-12-25T12:00:50.519299273Z | 78 | PC: 12b54 | Find first file |
| 2018-12-25T12:00:50.5208851Z | 78 | PC: 12b54 | Find first file (See above) |
| 2018-12-25T12:00:50.523778139Z | 26 | PC: 12c5f | Set disk transfer address |
{"DateBased":true,"Day":1,"Month":8,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7093,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:50.531349859Z | 48 | PC: 12a62 | Get DOS version |
| 2018-12-25T12:00:50.53334258Z | 47 | PC: 12a6e | Get disk transfer address |
| 2018-12-25T12:00:50.534377791Z | 26 | PC: 12a81 | Set disk transfer address |
| 2018-12-25T12:00:50.535325132Z | 42 | PC: 12a91 | Get date 0x12a91: cmp cx, 0x7c6 0x12a95: jge 0x12a9a 0x12a97: jmp 0x12ad2 0x12a99: nop 0x12a9a: mov ah, 0x2a 0x12a9c: int 0x21 0x12a9e: cmp dh, 8 0x12aa1: jge 0x12aa6 0x12aa3: jmp 0x12ad2 0x12aa5: nop 0x12aa6: mov ah, 0x2a 0x12aa8: int 0x21 0x12aaa: cmp dl, 0xf 0x12aad: jge 0x12ab2 0x12aaf: jmp 0x12ad2 0x12ab1: nop 0x12ab2: mov al, byte ptr [0x381] 0x12ab5: call 0x12ac5 0x12ab8: cmp byte ptr [0x381], 0x19 0x12abd: je 0x12ad2 |
| 2018-12-25T12:00:50.538393786Z | 78 | PC: 12b54 | Find first file |
| 2018-12-25T12:00:50.540192902Z | 78 | PC: 12b54 | Find first file (See above) |
| 2018-12-25T12:00:50.544460283Z | 26 | PC: 12c5f | Set disk transfer address |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7093,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:50.543163232Z | 48 | PC: 12a62 | Get DOS version |
| 2018-12-25T12:00:50.544945639Z | 47 | PC: 12a6e | Get disk transfer address |
| 2018-12-25T12:00:50.546329682Z | 26 | PC: 12a81 | Set disk transfer address |
| 2018-12-25T12:00:50.547631057Z | 42 | PC: 12a91 | Get date 0x12a91: cmp cx, 0x7c6 0x12a95: jge 0x12a9a 0x12a97: jmp 0x12ad2 0x12a99: nop 0x12a9a: mov ah, 0x2a 0x12a9c: int 0x21 0x12a9e: cmp dh, 8 0x12aa1: jge 0x12aa6 0x12aa3: jmp 0x12ad2 0x12aa5: nop 0x12aa6: mov ah, 0x2a 0x12aa8: int 0x21 0x12aaa: cmp dl, 0xf 0x12aad: jge 0x12ab2 0x12aaf: jmp 0x12ad2 0x12ab1: nop 0x12ab2: mov al, byte ptr [0x381] 0x12ab5: call 0x12ac5 0x12ab8: cmp byte ptr [0x381], 0x19 0x12abd: je 0x12ad2 |
| 2018-12-25T12:00:50.550468687Z | 78 | PC: 12b54 | Find first file |
| 2018-12-25T12:00:50.552470698Z | 78 | PC: 12b54 | Find first file (See above) |
| 2018-12-25T12:00:50.556688702Z | 26 | PC: 12c5f | Set disk transfer address |
{"DateBased":true,"Day":15,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7093,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:00:50.864118478Z | 48 | PC: 12a62 | Get DOS version |
| 2018-12-25T12:00:50.866524519Z | 47 | PC: 12a6e | Get disk transfer address |
| 2018-12-25T12:00:50.867599577Z | 26 | PC: 12a81 | Set disk transfer address |
| 2018-12-25T12:00:50.868636983Z | 42 | PC: 12a91 | Get date 0x12a91: cmp cx, 0x7c6 0x12a95: jge 0x12a9a 0x12a97: jmp 0x12ad2 0x12a99: nop 0x12a9a: mov ah, 0x2a 0x12a9c: int 0x21 0x12a9e: cmp dh, 8 0x12aa1: jge 0x12aa6 0x12aa3: jmp 0x12ad2 0x12aa5: nop 0x12aa6: mov ah, 0x2a 0x12aa8: int 0x21 0x12aaa: cmp dl, 0xf 0x12aad: jge 0x12ab2 0x12aaf: jmp 0x12ad2 0x12ab1: nop 0x12ab2: mov al, byte ptr [0x381] 0x12ab5: call 0x12ac5 0x12ab8: cmp byte ptr [0x381], 0x19 0x12abd: je 0x12ad2 |
| 2018-12-25T12:00:50.871311297Z | 78 | PC: 12b54 | Find first file |
| 2018-12-25T12:00:50.873256769Z | 78 | PC: 12b54 | Find first file (See above) |
| 2018-12-25T12:00:50.877953341Z | 26 | PC: 12c5f | Set disk transfer address |