Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


11 September 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
53bfe15e91
NEW
73f1082158
NEW		 1473091351 [0]
none [0]		 WinXP
Win2K-f		 0 of 32 06:04:15 20:58:55 2 ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
d2d9f86156
NEW		 5798ec1feb [0] Win2K-f 39 of 41 07:02:08 07:02:08 1 none:none
 StarForce| none trace
38e8f258e7
NEW
4b8142869c
NEW
95ca496b37
NEW		 871a2e904e [0]
3344334adf[0]
9c39a10179[0]
9c39a10179[0]		 Win2K-f 19 of 41 07:38:21 07:38:21 1 none:none
none:none
none:none
 none|none
none|none
none|none		 none
none
none		 trace
trace
trace
39336e51eb
NEW
524bc0f75c
NEW
820b27d4c6
NEW		 3f5ab71d39 [0]
d3e9510bb3[0]
1102de0215[0]
1102de0215[0]		 WinXP 38 of 41 05:10:29 05:10:29 1 none:none
none:none
none:none
 Neolite|
PENinja S|
Armadillo|		 none
none
none		 trace
trace
trace
38e8f258e7
NEW
4b8142869c
NEW
95ca496b37
NEW
bea8cb1865
NEW
fac78fde16
NEW		 871a2e904e [0]
3344334adf[0]
9c39a10179[0]
154de51a66[0]
882896ab05[0]
882896ab05[0]		 WinXP
Win2K-f		 35 of 36 00:32:11 07:38:21 2 none:none
none:none
none:none
ASM:Graph
none:none
 none|none
none|none
none|none
Armadillo|
tElock|		 none
none
none
lines=91
none		 trace
trace
trace
trace
trace
1e1bbf5a47
NEW		 0083c1ae3b [0] WinXP 36 of 41 06:20:55 06:20:55 1 none:none
 Armadillo| none trace
53bfe15e91
NEW		 1473091351 [0] WinXP
Win2K-f		 33 of 33 06:04:15 21:20:09 8 ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
07fabc79ef
NEW		 none [0] Win2K-f 0 of 32 20:00:36 20:00:36 1 ASM:Graph
 Armadillo| 47% lines=81 trace
86de6b3eee
NEW		 6519d24e63 [0] WinXP 39 of 41 03:27:49 03:27:49 1 none:none
 Armadillo| none trace
bb7681eca8
NEW		 none [3] WinXP 32 of 32 06:53:26 06:53:26 1 none:none
 tElock| none trace
0ada72d805
NEW		 none [0] WinXP 29 of 29 20:53:47 20:53:47 1 ASM:Graph
 ASPack| 54% lines=281
embedded dns		 trace
b502f83a7c
NEW		 28f5be93b0 [0] WinXP 32 of 32 18:54:45 18:54:45 1 none:none
 PolyEnE| none trace
99b248336f
NEW		 c64bd1a776 [0] Win2K-f 34 of 36 23:59:02 23:59:02 1 none:none
 Armadillo| none trace
5818023061
NEW		 none [0] WinXP 32 of 32 02:48:27 02:48:27 1 ASM:Graph
 PolyEnE| 99% lines=68 trace
03f912899b
NEW		 none [0] WinXP 32 of 32 08:06:17 14:34:10 2 none:none
 none|none 32% lines=64 trace
38e8f258e7
NEW		 871a2e904e [0] WinXP
Win2K-f		 12 of 40 00:32:11 20:38:21 4 none:none
 none|none none trace
38e8f258e7
NEW
9d571adc3c
NEW
a704164588
NEW		 871a2e904e [0]
72d7e4054f[0]
6d68e7488e[0]
6d68e7488e[0]		 WinXP 31 of 33 20:38:21 20:38:21 1 none:none
none:none
none:none
 none|none
Armadillo|
tElock|		 none
none
none		 trace
trace
trace
9716d7995a
NEW		 c3a5354b6f [0] WinXP 35 of 35 06:54:55 06:54:55 1 none:none
 PolyEnE| none trace
39336e51eb
NEW
524bc0f75c
NEW		 3f5ab71d39 [0]
d3e9510bb3[0]
d3e9510bb3[0]		 WinXP 32 of 38 05:10:29 05:10:29 1 none:none
none:none
 Neolite|
PENinja S|		 none
none		 trace
trace
2fa0f924fa
NEW		 f21b90a598 [0] WinXP 39 of 41 14:05:23 14:05:23 1 none:none
 StarForce| none trace
4c3df24b32
NEW		 none [0] WinXP 0 of 33 12:50:28 12:50:28 1 ASM:Graph
 Armadillo| 47% lines=81 trace
38e8f258e7
NEW
6e2eaa0359
NEW		 871a2e904e [0]
none [4]		 Win2K-f 31 of 33 01:29:11 01:29:11 1 none:none
none:none
 none|none
PolyEnE|		 none
none		 trace
trace
741e3b03b3
NEW		 none [0] WinXP 31 of 32 07:00:03 12:28:10 2 none:none
 none|none 32% lines=61 trace
d1fe425794
NEW		 52e2f71396 [0] WinXP 39 of 41 03:23:55 03:23:55 1 none:none
 Armadillo| none trace
4cbbc9cdc3
NEW		 9b1bced683 [0] Win2K-f 34 of 39 10:31:27 10:31:27 1 none:none
 Armadillo| none trace
38e8f258e7
NEW
4b8142869c
NEW
95ca496b37
NEW
bea8cb1865
NEW		 871a2e904e [0]
3344334adf[0]
9c39a10179[0]
154de51a66[0]
154de51a66[0]		 WinXP
Win2K-f		 32 of 36 00:32:11 07:38:21 2 none:none
none:none
none:none
ASM:Graph
 none|none
none|none
none|none
Armadillo|		 0% none
none
none
lines=91		 trace
trace
trace
trace
2d5fe9850a
NEW		 2233a191b2 [0] WinXP 39 of 41 08:23:53 08:23:53 1 none:none
 tElock| none trace
39336e51eb
NEW		 3f5ab71d39 [0] WinXP 29 of 41 05:10:29 05:10:29 1 none:none
 Neolite| none trace
a0a15f5ebf
NEW		 c506c7cc86 [0] WinXP 37 of 40 19:58:06 19:58:06 1 none:none
 Mew| none trace
eda3b7766c
NEW		 7556343561 [0] WinXP 40 of 41 01:00:39 01:00:39 1 none:none
 PolyEnE| none trace
c1d878e663
NEW		 1db090628b [0] WinXP 37 of 41 00:11:28 00:11:28 1 none:none
 none|none none trace
4cbbc9cdc3
NEW
86d4950962
NEW		 9b1bced683 [0]
c78e30261c[0]
c78e30261c[0]		 Win2K-f 35 of 39 10:31:27 10:31:27 1 none:none
none:none
 Armadillo|
tElock|		 none
none		 trace
trace
38e8f258e7
NEW
9d571adc3c
NEW		 871a2e904e [0]
72d7e4054f[0]
72d7e4054f[0]		 WinXP 31 of 33 20:38:21 20:38:21 1 none:none
none:none
 none|none
Armadillo|		 none
none		 trace
trace
1a2c0e6130
NEW		 none [0] WinXP 29 of 29 09:40:24 09:40:24 1 none:none
 none|none 33% lines=60 trace
38e8f258e7
NEW
4b8142869c
NEW		 871a2e904e [0]
3344334adf[0]
3344334adf[0]		 Win2K-f 4 of 41 07:38:21 07:38:21 1 none:none
none:none
 none|none
none|none		 none
none		 trace
trace
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 Win2K-f
WinXP		 0 of 33 15:48:13 21:20:09 4 ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
de37f2fc47
NEW		 bac4cc6eec [0] WinXP 33 of 41 01:38:21 01:38:21 1 none:none
 Armadillo| none trace
82eabecbd2
NEW		 9e91a88d72 [0] Win2K-f 22 of 41 08:23:24 08:23:24 1 none:none
 FSG| none trace
ed96c03ca8
NEW		 c0028e9e98 [0] WinXP 39 of 41 12:25:12 12:25:12 1 none:none
 PolyEnE| none trace
f2a8dafb30
NEW		 1d0f660523 [0] WinXP 39 of 41 19:52:04 19:52:04 1 none:none
 PolyEnE| none trace
1b7635d92c
NEW		 28cf6965a6 [0] WinXP 21 of 41 00:32:11 00:32:11 1 none:none
 MEW| none trace
38e8f258e7
NEW
6e2eaa0359
NEW
71ece09646
NEW		 871a2e904e [0]
none [4]
5e74a7c1aa[0]
5e74a7c1aa[0]		 Win2K-f 39 of 41 01:29:11 01:29:11 1 none:none
none:none
none:none
 none|none
PolyEnE|
Armadillo|		 none
none
none		 trace
trace
trace
99b248336f
NEW
9d677c3f70
NEW		 c64bd1a776 [0]
77e75ff10f[0]
77e75ff10f[0]		 Win2K-f 29 of 32 23:59:02 23:59:02 1 none:none
none:none
 Armadillo|
tElock|		 none
none		 trace
trace
2d5fe9850a
NEW
63b64adf8b
NEW		 2233a191b2 [0]
b4e67ccf8a[0]
b4e67ccf8a[0]		 WinXP 38 of 41 08:23:53 08:23:53 1 none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
d9cb288f31
NEW		 45603a001c [0] Win2K-f 3 of 37 17:07:14 17:07:14 1 ASM:Graph
 UPX| 92% lines=174
embedded dns		 trace