{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":8914,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:22:11.227110605Z | 42 | PC: 12aee | Get date 0x12aee: cmp dl, 0xa 0x12af1: jne 0x12af6 0x12af3: call 0x12d0f 0x12af6: push cs 0x12af7: pop ds 0x12af8: pop es 0x12af9: mov bx, es 0x12afb: add word ptr cs:[0x113], bx 0x12b00: add word ptr cs:[0x10d], bx 0x12b05: mov ax, word ptr cs:[0x113] 0x12b09: mov bx, word ptr cs:[0x111] 0x12b0e: mov bp, 0x1ef 0x12b11: mov byte ptr ds:[bp], 0xea 0x12b16: mov word ptr ds:[bp + 1], bx 0x12b1a: mov word ptr ds:[bp + 3], ax 0x12b1e: popf 0x12b1f: pop es 0x12b20: pop ds 0x12b21: pop dx 0x12b22: pop cx |
| 2018-12-25T12:22:11.229876483Z | 255 | PC: 9fb9d | UNKNOWN! |
{"DateBased":true,"Day":10,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":8914,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:22:11.454551993Z | 42 | PC: 12aee | Get date 0x12aee: cmp dl, 0xa 0x12af1: jne 0x12af6 0x12af3: call 0x12d0f 0x12af6: push cs 0x12af7: pop ds 0x12af8: pop es 0x12af9: mov bx, es 0x12afb: add word ptr cs:[0x113], bx 0x12b00: add word ptr cs:[0x10d], bx 0x12b05: mov ax, word ptr cs:[0x113] 0x12b09: mov bx, word ptr cs:[0x111] 0x12b0e: mov bp, 0x1ef 0x12b11: mov byte ptr ds:[bp], 0xea 0x12b16: mov word ptr ds:[bp + 1], bx 0x12b1a: mov word ptr ds:[bp + 3], ax 0x12b1e: popf 0x12b1f: pop es 0x12b20: pop ds 0x12b21: pop dx 0x12b22: pop cx |
| 2018-12-25T12:22:11.496398398Z | 255 | PC: 9fb9d | UNKNOWN! |