Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


19 September 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
53bfe15e91
NEW
73f1082158
NEW		 1473091351 [0]
none [0]		 WinXP 0 of 32 02:35:08 18:08:00 2 ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
067917e07b
NEW
d764c1dcb2
NEW		 dae35b319c [0]
3d2bc60c5d[0]
3d2bc60c5d[0]		 WinXP 38 of 40 04:35:29 04:35:29 1 none:none
none:none
 Armadillo|
tElock|		 none
none		 trace
trace
53bfe15e91
NEW		 1473091351 [0] WinXP 33 of 33 02:35:08 21:18:34 6 ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
449e681a46
NEW		 a9ed9b3845 [0] WinXP 40 of 41 19:13:45 19:13:45 1 none:none
 PolyEnE| none trace
ab46ec2f16
NEW		 bc5a7926df [0] WinXP 39 of 41 09:59:25 09:59:25 1 none:none
 ASPack| none trace
9d17d94db1
NEW		 9534907764 [0] Win2K-f 41 of 41 17:55:03 17:55:03 1 none:none
 Armadillo| none trace
b26ed6eeac
NEW		 97c1157bf8 [0] WinXP 41 of 41 18:01:37 18:01:37 1 none:none
 PolyEnE| none trace
0cf68948b6
NEW		 none [3] Win2K-f 30 of 41 06:13:38 06:13:38 1 none:none
 none|none none trace
433f698638
NEW		 4d7d0d3836 [0] WinXP 40 of 41 04:48:06 04:48:06 1 none:none
 StarForce| none trace
5818023061
NEW		 none [0] WinXP 32 of 32 13:46:25 13:46:25 1 ASM:Graph
 PolyEnE| 99% lines=68 trace
1b7635d92c
NEW
38e8f258e7
NEW
99b248336f
NEW		 28cf6965a6 [0]
871a2e904e[0]
c64bd1a776[0]
c64bd1a776[0]		 WinXP 34 of 36 04:38:40 04:38:40 1 none:none
none:none
none:none
 MEW|
none|none
Armadillo|		 none
none
none		 trace
trace
trace
6dad68529b
NEW		 none [3] Win2K-f 11 of 41 07:30:29 07:30:29 1 none:none
 ASPack| none trace
067917e07b
NEW		 dae35b319c [0] WinXP 36 of 41 04:35:29 04:35:29 1 none:none
 Armadillo| none trace
a4dde6f9e4
NEW		 none [4] Win2K-f 35 of 41 13:50:19 13:50:19 1 none:none
 none|none none trace
1b7635d92c
NEW
38e8f258e7
NEW		 28cf6965a6 [0]
871a2e904e[0]
871a2e904e[0]		 WinXP 12 of 40 04:38:40 04:38:40 1 none:none
none:none
 MEW|
none|none		 none
none		 trace
trace
3842e66ff7
NEW
39336e51eb
NEW
524bc0f75c
NEW		 fc7c8aaf10 [0]
3f5ab71d39[0]
d3e9510bb3[0]
d3e9510bb3[0]		 WinXP 32 of 38 09:33:37 09:33:37 1 none:none
none:none
none:none
 EXECrypto|
Neolite|
PENinja S|		 none
none
none		 trace
trace
trace
126a1d4446
NEW
3ed16ae12d
NEW		 31867051da [0]
none [0]		 WinXP 3 of 33 20:51:34 20:51:34 1 none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=81		 trace
trace
7f60162c2c
NEW		 none [0] WinXP 25 of 25 08:24:53 12:52:16 2 none:none
 PolyEnE| 100% lines=93
embedded dns		 trace
126a1d4446
NEW		 31867051da [0] WinXP 35 of 36 20:51:34 20:51:34 1 none:none
 tElock| none trace
3c77533bf6
NEW		 389c06c67e [0] Win2K-f 23 of 41 18:33:56 18:33:56 1 none:none
 StarForce| none trace
3c77533bf6
NEW
4cb946b347
NEW		 389c06c67e [0]
1273f26e7a[0]
1273f26e7a[0]		 Win2K-f 40 of 41 18:33:56 18:33:56 1 none:none
none:none
 StarForce|
Armadillo|		 none
none		 trace
trace
3842e66ff7
NEW
39336e51eb
NEW		 fc7c8aaf10 [0]
3f5ab71d39[0]
3f5ab71d39[0]		 WinXP 29 of 41 09:33:37 09:33:37 1 none:none
none:none
 EXECrypto|
Neolite|		 none
none		 trace
trace
eda3b7766c
NEW		 7556343561 [0] WinXP 40 of 41 20:42:28 20:42:28 1 none:none
 PolyEnE| none trace
7d99b0e910
NEW		 none [0] WinXP 26 of 28 07:40:43 12:53:43 2 none:none
 PolyEnE| 99% lines=68 trace
416b35a2d1
NEW		 none [3] WinXP 16 of 41 00:19:55 00:19:55 1 none:none
 none|none none trace
3842e66ff7
NEW		 fc7c8aaf10 [0] WinXP 40 of 41 09:33:37 09:33:37 1 none:none
 EXECrypto| none trace
1a2c0e6130
NEW		 none [0] WinXP 29 of 29 01:43:44 01:43:44 1 none:none
 none|none 33% lines=60 trace
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 WinXP 0 of 33 03:33:37 21:18:34 4 ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
cd3b7b4393
NEW		 635000bb46 [0] Win2K-f 27 of 40 15:40:01 15:40:01 1 none:none
 StarForce| none trace
ed063b564d
NEW		 720b41bd8c [0] WinXP 40 of 41 08:49:07 08:49:07 1 none:none
 StarForce| none trace
ed96c03ca8
NEW		 c0028e9e98 [0] WinXP 39 of 41 12:46:12 12:46:12 1 none:none
 PolyEnE| none trace
e4612abb50
NEW		 a4a4192023 [0] Win2K-f 13 of 41 06:42:32 14:12:04 2 none:none
 FASM| none trace
1b7635d92c
NEW		 28cf6965a6 [0] WinXP 21 of 41 04:38:40 04:38:40 1 none:none
 MEW| none trace
f2a8dafb30
NEW		 1d0f660523 [0] WinXP 39 of 41 10:57:13 10:57:13 1 none:none
 PolyEnE| none trace
5285741560
NEW		 60590b8b67 [0] WinXP 37 of 40 04:20:50 04:20:50 1 ASM:Graph
 none|none 55% lines=59 trace
1b7635d92c
NEW
38e8f258e7
NEW
99b248336f
NEW
9d677c3f70
NEW		 28cf6965a6 [0]
871a2e904e[0]
c64bd1a776[0]
77e75ff10f[0]
77e75ff10f[0]		 WinXP 29 of 32 04:38:40 04:38:40 1 none:none
none:none
none:none
none:none
 MEW|
none|none
Armadillo|
tElock|		 none
none
none
none		 trace
trace
trace
trace
74ca348885
NEW		 8b0bf5ec45 [0] Win2K-f 39 of 41 18:55:36 18:55:36 1 none:none
 none|none none trace