{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:02:51.87801822Z | 42 | PC: 1505c | Get date 0x1505c: cmp dx, 0xb01 0x15060: jne 0x15065 0x15062: call 0x153a4 0x15065: pop ds 0x15066: push ds 0x15067: pop es 0x15068: mov ax, ds 0x1506a: add ax, 0x10 0x1506d: add ax, word ptr cs:[0x6b1] 0x15072: cli 0x15073: mov ss, ax 0x15075: mov sp, word ptr cs:[0x6b3] 0x1507a: sti 0x1507b: mov ax, ds 0x1507d: add ax, 0x10 0x15080: add ax, word ptr cs:[0x6b9] 0x15085: push ax 0x15086: mov bx, word ptr cs:[0x6b7] 0x1508b: push bx 0x1508c: retf |
| 2018-12-25T12:02:51.881476343Z | 9 | PC: 14f4a | Display string (Could not find end pointer) |
| 2018-12-25T12:02:51.888173063Z | 76 | PC: 14f50 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":11,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7863,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T13:07:11.365740798Z | 42 | PC: 1505c | Get date 0x1505c: cmp dx, 0xb01 0x15060: jne 0x15065 0x15062: call 0x153a4 0x15065: pop ds 0x15066: push ds 0x15067: pop es 0x15068: mov ax, ds 0x1506a: add ax, 0x10 0x1506d: add ax, word ptr cs:[0x6b1] 0x15072: cli 0x15073: mov ss, ax 0x15075: mov sp, word ptr cs:[0x6b3] 0x1507a: sti 0x1507b: mov ax, ds 0x1507d: add ax, 0x10 0x15080: add ax, word ptr cs:[0x6b9] 0x15085: push ax 0x15086: mov bx, word ptr cs:[0x6b7] 0x1508b: push bx 0x1508c: retf |