ad21230d19a5b1acd4955bea7c61e14f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ad21230d19a5b1acd4955bea7c61e14f_JaffaCakes118
Size

15.0MB
MD5

ad21230d19a5b1acd4955bea7c61e14f
SHA1

e6ea2fc20bb8ff4540e4750edc5fc2fc84b06ad4
SHA256

d37d2651296dc192251d7cdd96fbd3f3c060b6193cdc7ca32674d0f6cea7c1aa
SHA512

4e32a49e2da7712dbc11d6669b721ce07ecf6458a6a9e41725da6345c7a45ac538e0e91c2ca08f9ac7fc54c67451558caaa50264cf6f0633b9756eb6e3713b4b
SSDEEP

393216:foPI+TQeJohHEga5hYohHAZoJ6395OQ61Q95Ow61TWq1JD5RxW41fMZ:foDGkgQhpHAuJK5OQ6s5Ow6511R5m41S

Score

3^/10

pdf link

Malware Config

Signatures

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Unsigned PE 7 IoCs

Checks for missing Authenticode signature.

resource
unpack003/demos/after/hello/out/production/hello/go-bins/helloworld.exe
unpack003/demos/before/hello/out/production/hello/go-bins/helloworld.exe
unpack005/demos/after/hello/out/production/hello/go-bins/helloworld.exe
unpack007/demos/after/hello/out/production/hello/go-bins/helloworld.exe
unpack007/demos/before/hello/out/production/hello/go-bins/helloworld.exe
unpack009/demos/after/hello/out/production/hello/go-bins/helloworld.exe
unpack009/demos/before/hello/out/production/hello/go-bins/helloworld.exe

Files

ad21230d19a5b1acd4955bea7c61e14f_JaffaCakes118
.zip
materials/1-go-m1-overview-slides.pdf
.pdf
- http://golang.org
- http://golang.org/
- http://simpleprogrammer.com
- https://github.com/nsf/gotris/blob/master/gotris.go
materials/10-go-m10-concurrency-exercise-files.zip
.zip
demos/after/hello/.idea/.name
demos/after/hello/.idea/ant.xml
.xml
demos/after/hello/.idea/compiler.xml
.xml
demos/after/hello/.idea/copyright/profiles_settings.xml
demos/after/hello/.idea/encodings.xml
.xml
demos/after/hello/.idea/misc.xml
.xml
demos/after/hello/.idea/modules.xml
.xml
demos/after/hello/.idea/scopes/scope_settings.xml
demos/after/hello/.idea/uiDesigner.xml
.xml
demos/after/hello/.idea/vcs.xml
.xml
demos/after/hello/.idea/workspace.xml
.xml
demos/after/hello/hello.iml
.xml
demos/after/hello/out/production/hello/go-bins/greeting.8
demos/after/hello/out/production/hello/go-bins/greeting.a
demos/after/hello/out/production/hello/go-bins/helloworld.8
demos/after/hello/out/production/hello/go-bins/helloworld.exe
.exe windows:4 windows x86 arch:x86

deb82cc024c128a3bc2e3f40abef1ce5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

winmm

timeBeginPeriod

kernel32

VirtualAlloc
VirtualFree
CloseHandle
CreateEventA
CreateThread
CreateWaitableTimerA
DuplicateHandle
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadContext
LoadLibraryW
ResumeThread
SetConsoleCtrlHandler
SetEvent
SetThreadPriority
SetWaitableTimer
Sleep
SuspendThread
WaitForSingleObject
WriteFile

Sections

.text
Size: 869KB - Virtual size: 868KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 204B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/87
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 512B - Virtual size: 91B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 660B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 512B - Virtual size: 193B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
demos/after/hello/src/greeting/greeting.go
demos/after/hello/src/helloworld.go
demos/before/hello/.idea/.name
demos/before/hello/.idea/ant.xml
.xml
demos/before/hello/.idea/compiler.xml
.xml
demos/before/hello/.idea/copyright/profiles_settings.xml
demos/before/hello/.idea/encodings.xml
.xml
demos/before/hello/.idea/misc.xml
.xml
demos/before/hello/.idea/modules.xml
.xml
demos/before/hello/.idea/scopes/scope_settings.xml
demos/before/hello/.idea/uiDesigner.xml
.xml
demos/before/hello/.idea/vcs.xml
.xml
demos/before/hello/.idea/workspace.xml
.xml
demos/before/hello/hello.iml
.xml
demos/before/hello/out/production/hello/go-bins/greeting.8
demos/before/hello/out/production/hello/go-bins/greeting.a
demos/before/hello/out/production/hello/go-bins/helloworld.8
demos/before/hello/out/production/hello/go-bins/helloworld.exe
.exe windows:4 windows x86 arch:x86

deb82cc024c128a3bc2e3f40abef1ce5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

winmm

timeBeginPeriod

kernel32

VirtualAlloc
VirtualFree
CloseHandle
CreateEventA
CreateThread
CreateWaitableTimerA
DuplicateHandle
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadContext
LoadLibraryW
ResumeThread
SetConsoleCtrlHandler
SetEvent
SetThreadPriority
SetWaitableTimer
Sleep
SuspendThread
WaitForSingleObject
WriteFile

Sections

.text
Size: 866KB - Virtual size: 866KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 204B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/87
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 512B - Virtual size: 91B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 660B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 512B - Virtual size: 193B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
demos/before/hello/src/greeting/greeting.go
demos/before/hello/src/helloworld.go
materials/10-go-m10-concurrency-slides.pdf
.pdf
- http://golang.org/doc/effective_go.html
- http://simpleprogrammer.com
materials/2-go-m2-development-exercise-files.zip
.zip
demos/after/hello/.idea/.name
demos/after/hello/.idea/ant.xml
.xml
demos/after/hello/.idea/compiler.xml
.xml
demos/after/hello/.idea/copyright/profiles_settings.xml
demos/after/hello/.idea/encodings.xml
.xml
demos/after/hello/.idea/misc.xml
.xml
demos/after/hello/.idea/modules.xml
.xml
demos/after/hello/.idea/scopes/scope_settings.xml
demos/after/hello/.idea/uiDesigner.xml
.xml
demos/after/hello/.idea/vcs.xml
.xml
demos/after/hello/.idea/workspace.xml
.xml
demos/after/hello/hello.iml
.xml
demos/after/hello/out/production/hello/go-bins/helloworld.exe
.exe windows:4 windows x86 arch:x86

85760d13c1404cc5f528eed98a0ea114

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualAlloc
VirtualFree
CloseHandle
CreateEventA
CreateThread
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
LoadLibraryExA
QueryPerformanceCounter
QueryPerformanceFrequency
SetConsoleCtrlHandler
SetEvent
WaitForSingleObject
WriteFile

Sections

.text
Size: 693KB - Virtual size: 692KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 204B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/87
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 512B - Virtual size: 38B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 918B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 512B - Virtual size: 121B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
demos/after/hello/src/helloworld.go
demos/after/src/hello.go
demos/after/src/simpleprogrammer.com/hello/hello.go
materials/2-go-m2-development-slides.pdf
.pdf
- http://code.google.com/p/goclipse/
- http://go-ide.com
- http://go-lang.cat-v.org/text-editors/
- http://golang.org/doc/install
- http://simpleprogrammer.com
materials/3-go-m3-variables-exercise-files.zip
.zip
demos/after/hello/.idea/.name
demos/after/hello/.idea/ant.xml
.xml
demos/after/hello/.idea/compiler.xml
.xml
demos/after/hello/.idea/copyright/profiles_settings.xml
demos/after/hello/.idea/encodings.xml
.xml
demos/after/hello/.idea/misc.xml
.xml
demos/after/hello/.idea/modules.xml
.xml
demos/after/hello/.idea/scopes/scope_settings.xml
demos/after/hello/.idea/uiDesigner.xml
.xml
demos/after/hello/.idea/vcs.xml
.xml
demos/after/hello/.idea/workspace.xml
.xml
demos/after/hello/hello.iml
.xml
demos/after/hello/out/production/hello/go-bins/helloworld.8
demos/after/hello/out/production/hello/go-bins/helloworld.exe
.exe windows:4 windows x86 arch:x86

85760d13c1404cc5f528eed98a0ea114

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualAlloc
VirtualFree
CloseHandle
CreateEventA
CreateThread
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
LoadLibraryExA
QueryPerformanceCounter
QueryPerformanceFrequency
SetConsoleCtrlHandler
SetEvent
WaitForSingleObject
WriteFile

Sections

.text
Size: 693KB - Virtual size: 692KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 204B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/87
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 512B - Virtual size: 38B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 918B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 512B - Virtual size: 121B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
demos/after/hello/src/helloworld.go
.js
demos/before/hello/.idea/.name
demos/before/hello/.idea/ant.xml
.xml
demos/before/hello/.idea/compiler.xml
.xml
demos/before/hello/.idea/copyright/profiles_settings.xml
demos/before/hello/.idea/encodings.xml
.xml
demos/before/hello/.idea/misc.xml
.xml
demos/before/hello/.idea/modules.xml
.xml
demos/before/hello/.idea/scopes/scope_settings.xml
demos/before/hello/.idea/uiDesigner.xml
.xml
demos/before/hello/.idea/vcs.xml
.xml
demos/before/hello/.idea/workspace.xml
.xml
demos/before/hello/hello.iml
.xml
demos/before/hello/out/production/hello/go-bins/helloworld.exe
.exe windows:4 windows x86 arch:x86

85760d13c1404cc5f528eed98a0ea114

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualAlloc
VirtualFree
CloseHandle
CreateEventA
CreateThread
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
LoadLibraryExA
QueryPerformanceCounter
QueryPerformanceFrequency
SetConsoleCtrlHandler
SetEvent
WaitForSingleObject
WriteFile

Sections

.text
Size: 693KB - Virtual size: 692KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 204B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/87
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 512B - Virtual size: 38B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 918B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 512B - Virtual size: 121B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
demos/before/hello/src/helloworld.go
materials/3-go-m3-variables-slides.pdf
.pdf
- http://golang.org/ref/spec
- http://simpleprogrammer.com
materials/4-go-m4-functions-exercise-files.zip
.zip
demos/after/hello/.idea/.name
demos/after/hello/.idea/ant.xml
.xml
demos/after/hello/.idea/compiler.xml
.xml
demos/after/hello/.idea/copyright/profiles_settings.xml
demos/after/hello/.idea/encodings.xml
.xml
demos/after/hello/.idea/misc.xml
.xml
demos/after/hello/.idea/modules.xml
.xml
demos/after/hello/.idea/scopes/scope_settings.xml
demos/after/hello/.idea/uiDesigner.xml
.xml
demos/after/hello/.idea/vcs.xml
.xml
demos/after/hello/.idea/workspace.xml
.xml
demos/after/hello/hello.iml
.xml
demos/after/hello/out/production/hello/go-bins/helloworld.8
demos/after/hello/out/production/hello/go-bins/helloworld.exe
.exe windows:4 windows x86 arch:x86

85760d13c1404cc5f528eed98a0ea114

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualAlloc
VirtualFree
CloseHandle
CreateEventA
CreateThread
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
LoadLibraryExA
QueryPerformanceCounter
QueryPerformanceFrequency
SetConsoleCtrlHandler
SetEvent
WaitForSingleObject
WriteFile

Sections

.text
Size: 701KB - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 204B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/87
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 512B - Virtual size: 38B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 918B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 512B - Virtual size: 121B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
demos/after/hello/src/helloworld.go
.js
demos/before/hello/.idea/.name
demos/before/hello/.idea/ant.xml
.xml
demos/before/hello/.idea/compiler.xml
.xml
demos/before/hello/.idea/copyright/profiles_settings.xml
demos/before/hello/.idea/encodings.xml
.xml
demos/before/hello/.idea/misc.xml
.xml
demos/before/hello/.idea/modules.xml
.xml
demos/before/hello/.idea/scopes/scope_settings.xml
demos/before/hello/.idea/uiDesigner.xml
.xml
demos/before/hello/.idea/vcs.xml
.xml
demos/before/hello/.idea/workspace.xml
.xml
demos/before/hello/hello.iml
.xml
demos/before/hello/out/production/hello/go-bins/helloworld.8
demos/before/hello/out/production/hello/go-bins/helloworld.exe
.exe windows:4 windows x86 arch:x86

85760d13c1404cc5f528eed98a0ea114

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualAlloc
VirtualFree
CloseHandle
CreateEventA
CreateThread
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetStdHandle
LoadLibraryExA
QueryPerformanceCounter
QueryPerformanceFrequency
SetConsoleCtrlHandler
SetEvent
WaitForSingleObject
WriteFile

Sections

.text
Size: 693KB - Virtual size: 692KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/4
Size: 512B - Virtual size: 204B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/18
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/30
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/43
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/71
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/87
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 512B - Virtual size: 38B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 918B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.symtab
Size: 512B - Virtual size: 121B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
demos/before/hello/src/helloworld.go
.js
materials/4-go-m4-functions-slides.pdf
.pdf
materials/5-go-m5-branching-exercise-files.zip
.zip
materials/5-go-m5-branching-slides.pdf
.pdf
materials/6-go-m6-loops-exercise-files.zip
.zip
materials/6-go-m6-loops-slides.pdf
.pdf
materials/7-go-m7-maps-exercise-files.zip
.zip
materials/7-go-m7-maps-slides.pdf
.pdf
materials/8-go-m8-slices-exercise-files.zip
.zip
materials/8-go-m8-slices-slides.pdf
.pdf
materials/9-go-m9-methods-exercise-files.zip
.zip
materials/9-go-m9-methods-slides.pdf
.pdf

Sharing

General

Malware Config

Signatures

Files

deb82cc024c128a3bc2e3f40abef1ce5

Headers

File Characteristics

Imports

winmm

kernel32

Sections

.text Size: 869KB - Virtual size: 868KB

.data Size: 15KB - Virtual size: 4.1MB

/4 Size: 512B - Virtual size: 204B

/18 Size: 60KB - Virtual size: 59KB

/30 Size: 37KB - Virtual size: 36KB

/43 Size: 142KB - Virtual size: 141KB

/55 Size: 47KB - Virtual size: 47KB

/71 Size: 9KB - Virtual size: 9KB

/87 Size: 2KB - Virtual size: 1KB

/102 Size: 512B - Virtual size: 91B

.idata Size: 1024B - Virtual size: 660B

.symtab Size: 512B - Virtual size: 193B

deb82cc024c128a3bc2e3f40abef1ce5

Headers

File Characteristics

Imports

winmm

kernel32

Sections

.text Size: 866KB - Virtual size: 866KB

.data Size: 15KB - Virtual size: 4.1MB

/4 Size: 512B - Virtual size: 204B

/18 Size: 60KB - Virtual size: 59KB

/30 Size: 37KB - Virtual size: 36KB

/43 Size: 141KB - Virtual size: 140KB

/55 Size: 47KB - Virtual size: 47KB

/71 Size: 9KB - Virtual size: 9KB

/87 Size: 2KB - Virtual size: 1KB

/102 Size: 512B - Virtual size: 91B

.idata Size: 1024B - Virtual size: 660B

.symtab Size: 512B - Virtual size: 193B

85760d13c1404cc5f528eed98a0ea114

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 693KB - Virtual size: 692KB

.data Size: 7KB - Virtual size: 4.1MB

/4 Size: 512B - Virtual size: 204B

/18 Size: 40KB - Virtual size: 40KB

/30 Size: 27KB - Virtual size: 26KB

/43 Size: 120KB - Virtual size: 119KB

/55 Size: 45KB - Virtual size: 45KB

/71 Size: 7KB - Virtual size: 7KB

/87 Size: 1KB - Virtual size: 1KB

/102 Size: 512B - Virtual size: 38B

.idata Size: 1024B - Virtual size: 918B

.symtab Size: 512B - Virtual size: 121B

85760d13c1404cc5f528eed98a0ea114

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 693KB - Virtual size: 692KB

.data Size: 7KB - Virtual size: 4.1MB

/4 Size: 512B - Virtual size: 204B

/18 Size: 40KB - Virtual size: 40KB

/30 Size: 27KB - Virtual size: 26KB

/43 Size: 120KB - Virtual size: 119KB

/55 Size: 45KB - Virtual size: 45KB

/71 Size: 7KB - Virtual size: 7KB

/87 Size: 1KB - Virtual size: 1KB

/102 Size: 512B - Virtual size: 38B

.idata Size: 1024B - Virtual size: 918B

.symtab Size: 512B - Virtual size: 121B

85760d13c1404cc5f528eed98a0ea114

.text
Size: 869KB - Virtual size: 868KB

.data
Size: 15KB - Virtual size: 4.1MB

/4
Size: 512B - Virtual size: 204B

/18
Size: 60KB - Virtual size: 59KB

/30
Size: 37KB - Virtual size: 36KB

/43
Size: 142KB - Virtual size: 141KB

/55
Size: 47KB - Virtual size: 47KB

/71
Size: 9KB - Virtual size: 9KB

/87
Size: 2KB - Virtual size: 1KB

/102
Size: 512B - Virtual size: 91B

.idata
Size: 1024B - Virtual size: 660B

.symtab
Size: 512B - Virtual size: 193B

.text
Size: 866KB - Virtual size: 866KB

.data
Size: 15KB - Virtual size: 4.1MB

/4
Size: 512B - Virtual size: 204B

/18
Size: 60KB - Virtual size: 59KB

/30
Size: 37KB - Virtual size: 36KB

/43
Size: 141KB - Virtual size: 140KB

/55
Size: 47KB - Virtual size: 47KB

/71
Size: 9KB - Virtual size: 9KB

/87
Size: 2KB - Virtual size: 1KB

/102
Size: 512B - Virtual size: 91B

.idata
Size: 1024B - Virtual size: 660B

.symtab
Size: 512B - Virtual size: 193B

.text
Size: 693KB - Virtual size: 692KB

.data
Size: 7KB - Virtual size: 4.1MB

/4
Size: 512B - Virtual size: 204B

/18
Size: 40KB - Virtual size: 40KB

/30
Size: 27KB - Virtual size: 26KB

/43
Size: 120KB - Virtual size: 119KB

/55
Size: 45KB - Virtual size: 45KB

/71
Size: 7KB - Virtual size: 7KB

/87
Size: 1KB - Virtual size: 1KB

/102
Size: 512B - Virtual size: 38B

.idata
Size: 1024B - Virtual size: 918B

.symtab
Size: 512B - Virtual size: 121B

.text
Size: 693KB - Virtual size: 692KB

.data
Size: 7KB - Virtual size: 4.1MB

/4
Size: 512B - Virtual size: 204B

/18
Size: 40KB - Virtual size: 40KB

/30
Size: 27KB - Virtual size: 26KB

/43
Size: 120KB - Virtual size: 119KB

/55
Size: 45KB - Virtual size: 45KB

/71
Size: 7KB - Virtual size: 7KB

/87
Size: 1KB - Virtual size: 1KB

/102
Size: 512B - Virtual size: 38B

.idata
Size: 1024B - Virtual size: 918B

.symtab
Size: 512B - Virtual size: 121B

.text
Size: 693KB - Virtual size: 692KB

.data
Size: 7KB - Virtual size: 4.1MB

/4
Size: 512B - Virtual size: 204B

/18
Size: 40KB - Virtual size: 40KB

/30
Size: 27KB - Virtual size: 26KB

/43
Size: 120KB - Virtual size: 119KB

/55
Size: 45KB - Virtual size: 45KB

/71
Size: 7KB - Virtual size: 7KB

/87
Size: 1KB - Virtual size: 1KB

/102
Size: 512B - Virtual size: 38B

.idata
Size: 1024B - Virtual size: 918B

.symtab
Size: 512B - Virtual size: 121B

.text
Size: 701KB - Virtual size: 700KB

.data
Size: 7KB - Virtual size: 4.1MB

/4
Size: 512B - Virtual size: 204B

/18
Size: 40KB - Virtual size: 40KB

/30
Size: 27KB - Virtual size: 26KB

/43
Size: 120KB - Virtual size: 120KB

/55
Size: 45KB - Virtual size: 45KB

/71
Size: 7KB - Virtual size: 7KB

/87
Size: 1KB - Virtual size: 1KB

/102
Size: 512B - Virtual size: 38B

.idata
Size: 1024B - Virtual size: 918B

.symtab
Size: 512B - Virtual size: 121B

.text
Size: 693KB - Virtual size: 692KB

.data
Size: 7KB - Virtual size: 4.1MB

/4
Size: 512B - Virtual size: 204B

/18
Size: 40KB - Virtual size: 40KB

/30
Size: 27KB - Virtual size: 26KB

/43
Size: 120KB - Virtual size: 119KB

/55
Size: 45KB - Virtual size: 45KB

/71
Size: 7KB - Virtual size: 7KB