{"DateBased":true,"Day":20,"Month":12,"Year":1992,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9990,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:26:51.488555582Z | 42 | PC: 12a6c | Get date 0x12a6c: cmp cx, 0x7c8 0x12a70: jb 0x12a84 0x12a72: cmp dh, 0xc 0x12a75: jb 0x12a84 0x12a77: cmp dl, 0x14 0x12a7a: jb 0x12a84 0x12a7c: cmp dl, 0x19 0x12a7f: ja 0x12a84 0x12a81: jmp 0x12c34 0x12a84: mov byte ptr [si + 0x519], 0 0x12a89: mov ah, 0x47 0x12a8b: mov dl, 0 0x12a8d: push si 0x12a8e: mov bx, 0x43e 0x12a91: add si, bx 0x12a93: int 0x21 0x12a95: pop si 0x12a96: jae 0x12a9b 0x12a98: jmp 0x12bbe 0x12a9b: push si |
| 2018-12-25T12:26:51.491829935Z | 9 | PC: 12c40 | Display string (String= ' Happy Xmas from The ARCV.') |
{"DateBased":true,"Day":26,"Month":12,"Year":1992,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9990,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:26:51.523285752Z | 42 | PC: 12a6c | Get date 0x12a6c: cmp cx, 0x7c8 0x12a70: jb 0x12a84 0x12a72: cmp dh, 0xc 0x12a75: jb 0x12a84 0x12a77: cmp dl, 0x14 0x12a7a: jb 0x12a84 0x12a7c: cmp dl, 0x19 0x12a7f: ja 0x12a84 0x12a81: jmp 0x12c34 0x12a84: mov byte ptr [si + 0x519], 0 0x12a89: mov ah, 0x47 0x12a8b: mov dl, 0 0x12a8d: push si 0x12a8e: mov bx, 0x43e 0x12a91: add si, bx 0x12a93: int 0x21 0x12a95: pop si 0x12a96: jae 0x12a9b 0x12a98: jmp 0x12bbe 0x12a9b: push si |
| 2018-12-25T12:26:51.530780899Z | 71 | PC: 12a95 | Get current directory |
| 2018-12-25T12:26:51.534427779Z | 26 | PC: 12ab6 | Set disk transfer address |
| 2018-12-25T12:26:51.535362121Z | 78 | PC: 12ac4 | Find first file |
| 2018-12-25T12:26:51.54171588Z | 61 | PC: 12ad8 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T12:26:51.548066807Z | 66 | PC: 12aed | Move file pointer |
| 2018-12-25T12:26:51.549307149Z | 63 | PC: 12b02 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-25T12:26:51.565959415Z | 87 | PC: 12b29 | Get or set file date and time |
| 2018-12-25T12:26:51.567437355Z | 66 | PC: 12b40 | Move file pointer |
| 2018-12-25T12:26:51.568886707Z | 63 | PC: 12b67 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-25T12:26:51.574009865Z | 66 | PC: 12b74 | Move file pointer |
| 2018-12-25T12:26:51.575283027Z | 64 | PC: 12b84 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T12:26:51.57768809Z | 66 | PC: 12b91 | Move file pointer |
| 2018-12-25T12:26:51.592165589Z | 64 | PC: 12cdd | Write file or device (Write 670 bytes on handle 5) |
| 2018-12-25T12:26:51.61153859Z | 87 | PC: 12bb5 | Get or set file date and time |
| 2018-12-25T12:26:51.613075305Z | 62 | PC: 12bbd | Close file |
| 2018-12-25T12:26:51.620975863Z | 59 | PC: 12bcc | Change current directory |
| 2018-12-25T12:26:51.630994014Z | 76 | PC: 12a45 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9990,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:26:51.567568679Z | 42 | PC: 12a6c | Get date 0x12a6c: cmp cx, 0x7c8 0x12a70: jb 0x12a84 0x12a72: cmp dh, 0xc 0x12a75: jb 0x12a84 0x12a77: cmp dl, 0x14 0x12a7a: jb 0x12a84 0x12a7c: cmp dl, 0x19 0x12a7f: ja 0x12a84 0x12a81: jmp 0x12c34 0x12a84: mov byte ptr [si + 0x519], 0 0x12a89: mov ah, 0x47 0x12a8b: mov dl, 0 0x12a8d: push si 0x12a8e: mov bx, 0x43e 0x12a91: add si, bx 0x12a93: int 0x21 0x12a95: pop si 0x12a96: jae 0x12a9b 0x12a98: jmp 0x12bbe 0x12a9b: push si |
| 2018-12-25T12:26:51.571414516Z | 71 | PC: 12a95 | Get current directory |
| 2018-12-25T12:26:51.573781527Z | 26 | PC: 12ab6 | Set disk transfer address |
| 2018-12-25T12:26:51.574835153Z | 78 | PC: 12ac4 | Find first file |
| 2018-12-25T12:26:51.58249422Z | 61 | PC: 12ad8 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T12:26:51.594426433Z | 66 | PC: 12aed | Move file pointer |
| 2018-12-25T12:26:51.595818772Z | 63 | PC: 12b02 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-25T12:26:51.602259343Z | 87 | PC: 12b29 | Get or set file date and time |
| 2018-12-25T12:26:51.603647659Z | 66 | PC: 12b40 | Move file pointer |
| 2018-12-25T12:26:51.605019093Z | 63 | PC: 12b67 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-25T12:26:51.607920825Z | 66 | PC: 12b74 | Move file pointer |
| 2018-12-25T12:26:51.61015105Z | 64 | PC: 12b84 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T12:26:51.613286359Z | 66 | PC: 12b91 | Move file pointer |
| 2018-12-25T12:26:51.61589178Z | 64 | PC: 12cdd | Write file or device (Write 670 bytes on handle 5) |
| 2018-12-25T12:26:51.630285532Z | 87 | PC: 12bb5 | Get or set file date and time |
| 2018-12-25T12:26:51.631883219Z | 62 | PC: 12bbd | Close file |
| 2018-12-25T12:26:51.639471166Z | 59 | PC: 12bcc | Change current directory |
| 2018-12-25T12:26:51.644289596Z | 76 | PC: 12a45 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":1,"Year":1992,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9990,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:26:51.660071989Z | 42 | PC: 12a6c | Get date 0x12a6c: cmp cx, 0x7c8 0x12a70: jb 0x12a84 0x12a72: cmp dh, 0xc 0x12a75: jb 0x12a84 0x12a77: cmp dl, 0x14 0x12a7a: jb 0x12a84 0x12a7c: cmp dl, 0x19 0x12a7f: ja 0x12a84 0x12a81: jmp 0x12c34 0x12a84: mov byte ptr [si + 0x519], 0 0x12a89: mov ah, 0x47 0x12a8b: mov dl, 0 0x12a8d: push si 0x12a8e: mov bx, 0x43e 0x12a91: add si, bx 0x12a93: int 0x21 0x12a95: pop si 0x12a96: jae 0x12a9b 0x12a98: jmp 0x12bbe 0x12a9b: push si |
| 2018-12-25T12:26:51.662652046Z | 71 | PC: 12a95 | Get current directory |
| 2018-12-25T12:26:51.665489481Z | 26 | PC: 12ab6 | Set disk transfer address |
| 2018-12-25T12:26:51.66650091Z | 78 | PC: 12ac4 | Find first file |
| 2018-12-25T12:26:51.67376865Z | 61 | PC: 12ad8 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T12:26:51.680228308Z | 66 | PC: 12aed | Move file pointer |
| 2018-12-25T12:26:51.681583049Z | 63 | PC: 12b02 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-25T12:26:51.688108184Z | 87 | PC: 12b29 | Get or set file date and time |
| 2018-12-25T12:26:51.692113546Z | 66 | PC: 12b40 | Move file pointer |
| 2018-12-25T12:26:51.693085594Z | 63 | PC: 12b67 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-25T12:26:51.695178585Z | 66 | PC: 12b74 | Move file pointer |
| 2018-12-25T12:26:51.696590168Z | 64 | PC: 12b84 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T12:26:51.699332211Z | 66 | PC: 12b91 | Move file pointer |
| 2018-12-25T12:26:51.701246099Z | 64 | PC: 12cdd | Write file or device (Write 670 bytes on handle 5) |
| 2018-12-25T12:26:51.716006347Z | 87 | PC: 12bb5 | Get or set file date and time |
| 2018-12-25T12:26:51.717393556Z | 62 | PC: 12bbd | Close file |
| 2018-12-25T12:26:51.72482517Z | 59 | PC: 12bcc | Change current directory |
| 2018-12-25T12:26:51.729187209Z | 76 | PC: 12a45 | Terminate with return code (Return code = '0') |
{"DateBased":true,"Day":1,"Month":12,"Year":1992,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9990,"SideJobID":0}
.
GIF
Syscalls:
| Time | Syscall Op | Syscall Name |
|---|---|---|
| 2018-12-25T12:26:51.764382059Z | 42 | PC: 12a6c | Get date 0x12a6c: cmp cx, 0x7c8 0x12a70: jb 0x12a84 0x12a72: cmp dh, 0xc 0x12a75: jb 0x12a84 0x12a77: cmp dl, 0x14 0x12a7a: jb 0x12a84 0x12a7c: cmp dl, 0x19 0x12a7f: ja 0x12a84 0x12a81: jmp 0x12c34 0x12a84: mov byte ptr [si + 0x519], 0 0x12a89: mov ah, 0x47 0x12a8b: mov dl, 0 0x12a8d: push si 0x12a8e: mov bx, 0x43e 0x12a91: add si, bx 0x12a93: int 0x21 0x12a95: pop si 0x12a96: jae 0x12a9b 0x12a98: jmp 0x12bbe 0x12a9b: push si |
| 2018-12-25T12:26:51.76732522Z | 71 | PC: 12a95 | Get current directory |
| 2018-12-25T12:26:51.770647503Z | 26 | PC: 12ab6 | Set disk transfer address |
| 2018-12-25T12:26:51.771813813Z | 78 | PC: 12ac4 | Find first file |
| 2018-12-25T12:26:51.783441286Z | 61 | PC: 12ad8 | Open file (Filename = 'SLEEP.COM') |
| 2018-12-25T12:26:51.790960694Z | 66 | PC: 12aed | Move file pointer |
| 2018-12-25T12:26:51.792970846Z | 63 | PC: 12b02 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-25T12:26:51.799683949Z | 87 | PC: 12b29 | Get or set file date and time |
| 2018-12-25T12:26:51.801848927Z | 66 | PC: 12b40 | Move file pointer |
| 2018-12-25T12:26:51.803309446Z | 63 | PC: 12b67 | Read file or device (Read 5 bytes on handle 5) |
| 2018-12-25T12:26:51.8056847Z | 66 | PC: 12b74 | Move file pointer |
| 2018-12-25T12:26:51.808003397Z | 64 | PC: 12b84 | Write file or device (Write 3 bytes on handle 5) |
| 2018-12-25T12:26:51.810625626Z | 66 | PC: 12b91 | Move file pointer |
| 2018-12-25T12:26:51.812517808Z | 64 | PC: 12cdd | Write file or device (Write 670 bytes on handle 5) |
| 2018-12-25T12:26:51.827457838Z | 87 | PC: 12bb5 | Get or set file date and time |
| 2018-12-25T12:26:51.828879049Z | 62 | PC: 12bbd | Close file |
| 2018-12-25T12:26:51.836582857Z | 59 | PC: 12bcc | Change current directory |
| 2018-12-25T12:26:51.841086178Z | 76 | PC: 12a45 | Terminate with return code (Return code = '0') |