Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


24 September 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
5b0cd2842d
NEW		 672c29612e [0] Win2K-f 39 of 41 22:53:58 22:53:58 1 none:none
 Armadillo| none trace
542da77cf8
NEW		 603982d8b5 [0] Win2K-f 39 of 41 21:42:26 23:07:06 2 none:none
 Armadillo| none trace
2cb7fb5674
NEW		 4bf8dcd347 [0] WinXP 40 of 41 16:15:32 16:15:32 1 none:none
 none|none none trace
53bfe15e91
NEW
73f1082158
NEW		 1473091351 [0]
none [0]		 Win2K-f 0 of 32 00:20:39 13:34:12 2 ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
dc331fb791
NEW		 none [3] Win2K-f 3 of 37 16:38:13 16:38:13 1 none:none
 UPX| none trace
c7830331fc
NEW
dab4da4e21
NEW
f97bcf8374
NEW		 7953649664 [0]
e63b813015[0]
e63b813015[0]
none [4]		 WinXP 15 of 41 15:14:40 15:14:40 1 none:none
ASM:Graph
none:none
 tElock|
PolyEnE|
pex|		 none
lines=134
none		 trace
trace
trace
53bfe15e91
NEW		 1473091351 [0] Win2K-f
WinXP		 33 of 33 00:20:39 18:14:36 4 ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
e7c51ffa22
NEW		 eec31d126a [0] WinXP 39 of 41 20:28:15 20:28:15 1 none:none
 Armadillo| none trace
d5966f5d2c
NEW		 30f4c38c14 [0] WinXP 38 of 40 04:40:09 04:40:09 1 none:none
 none|none none trace
53bfe15e91
NEW
b7082104e4
NEW		 1473091351 [0]
c5b49e7b82[0]
c5b49e7b82[0]		 Win2K-f 8 of 33 06:48:13 06:48:13 1 ASM:Graph
ASM:Graph
 tElock|
tElock|		 100% lines=75
embedded dns
lines=41		 trace
trace
b26ed6eeac
NEW		 97c1157bf8 [0] WinXP 41 of 41 11:49:26 11:49:26 1 none:none
 PolyEnE| none trace
7d572825b4
NEW		 a10677995e [0] Win2K-f 40 of 41 23:21:32 23:21:32 1 none:none
 StarForce| none trace
fe8a885155
NEW		 69395d4636 [0] Win2K-f 39 of 41 21:18:02 21:18:02 1 none:none
 Mew| none trace
41249030df
NEW		 67b606b0cc [0] Win2K-f 39 of 41 22:47:46 22:47:46 1 none:none
 Armadillo| none trace
616f21b486
NEW		 348063e1c2 [0] Win2K-f 39 of 41 00:54:25 00:54:25 1 none:none
 StarForce| none trace
b706f30385
NEW		 e7124c9b61 [0] WinXP 40 of 41 21:30:41 23:14:04 2 none:none
 Stranik| none trace
349442508a
NEW		 0f91fe7eee [0] Win2K-f 38 of 41 21:57:09 21:57:09 1 none:none
 Armadillo| none trace
c7830331fc
NEW
dab4da4e21
NEW		 7953649664 [0]
e63b813015[0]
e63b813015[0]		 WinXP 37 of 39 15:14:40 15:14:40 1 none:none
ASM:Graph
 tElock|
PolyEnE|		 100% none
lines=134		 trace
trace
5415d3efd3
NEW		 4414fb5b29 [0] WinXP 36 of 41 20:41:47 20:41:47 1 none:none
 StarForce| none trace
7f60162c2c
NEW		 none [0] WinXP 25 of 25 03:33:00 09:59:53 2 none:none
 PolyEnE| 100% lines=93
embedded dns		 trace
a9f42d6a01
NEW		 bc448cfb0e [0] WinXP 38 of 41 21:58:11 21:58:11 1 none:none
 Stranik| none trace
3e5008bdc8
NEW		 70b0a4edc9 [0] WinXP 39 of 41 10:08:32 10:08:32 1 none:none
 PolyEnE| none trace
c7830331fc
NEW		 7953649664 [0] WinXP 7 of 41 15:14:40 15:14:40 1 none:none
 tElock| none trace
741e3b03b3
NEW		 none [0] WinXP 31 of 32 13:04:36 20:17:17 2 none:none
 none|none 32% lines=61 trace
b2935311d9
NEW		 eb9fd83c1e [0] Win2K-f 39 of 41 23:47:37 23:47:37 1 none:none
 Armadillo| none trace
d2b1bb8036
NEW		 2567893896 [0] Win2K-f 39 of 41 20:48:55 20:48:55 1 none:none
 Armadillo| none trace
831f4ee0a7
NEW		 none [0] WinXP 29 of 29 07:55:02 07:55:02 1 ASM:Graph
 none|none 100% lines=61 trace
899cdfd678
NEW		 1e70b1a3b7 [0] WinXP 39 of 41 23:57:24 23:57:24 1 none:none
 Armadillo| none trace
e9fcd6f257
NEW		 2e05bc2272 [0] WinXP 33 of 35 20:17:54 20:17:54 1 ASM:Graph
 PolyEnE| 100% lines=68 trace
ec8151d5d8
NEW		 a8a8cf9a56 [0] WinXP 38 of 41 23:24:01 23:24:01 1 none:none
 Armadillo| none trace
3f136c55b3
NEW		 f4e18974f3 [0] Win2K-f 39 of 41 16:35:31 16:35:31 1 none:none
 tElock| none trace
b8d2b9da8b
NEW		 b8d2b9da8b [1] WinXP 24 of 41 22:55:37 22:55:37 1 ASM:Graph
 StarForce| 32% lines=3 trace
e564ed1ae7
NEW		 0b960ccef8 [0] WinXP 40 of 41 22:13:56 22:13:56 1 none:none
 Stranik| none trace
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 WinXP 0 of 33 18:14:36 18:14:36 1 ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
de37f2fc47
NEW		 bac4cc6eec [0] WinXP
Win2K-f		 33 of 41 23:43:27 23:45:34 2 none:none
 Armadillo| none trace
7587773eea
NEW		 none [3] Win2K-f 7 of 37 20:07:18 20:15:59 2 none:none
 StarForce| none trace
db4ee77c04
NEW		 bf861f894b [0] WinXP 39 of 41 22:22:49 22:22:49 1 none:none
 Armadillo| none trace
20ce1f9dac
NEW		 38a7e9dd10 [0] Win2K-f 40 of 41 22:27:05 22:27:05 1 none:none
 Stranik| none trace
b8d2b9da8b
NEW
c4c5a56ffe
NEW		 b8d2b9da8b [1]
8bef2f9170[0]
8bef2f9170[0]		 WinXP 11 of 36 22:55:37 22:55:37 1 ASM:Graph
none:none
 StarForce|
StarForce|		 lines=3
none		 trace
trace
340f8c11e3
NEW		 f57d7bb94a [0] Win2K-f 40 of 41 22:18:00 22:18:00 1 none:none
 Stranik| none trace
3f136c55b3
NEW
ac394d7d5f
NEW		 f4e18974f3 [0]
c9a79e75f5[0]
c9a79e75f5[0]		 Win2K-f 38 of 41 16:35:31 16:35:31 1 none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace