Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

02 October 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] WinXP
Win2K-f 0 of 32 02:51:19 23:05:37 3 ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

53bfe15e91
NEW 1473091351 [0] WinXP
Win2K-f 33 of 33 02:51:19 23:05:37 6 ASM:Graph
tElock| 96% lines=75
embedded dns trace

682a384fe9
NEW none [3] WinXP 31 of 41 21:10:31 21:10:31 1 none:none
none|none none trace

53bfe15e91
NEW
b7082104e4
NEW 1473091351 [0]
c5b49e7b82[0]
c5b49e7b82[0] Win2K-f 8 of 33 05:38:50 05:38:50 1 ASM:Graph
ASM:Graph
tElock|
tElock| 100% lines=75
embedded dns
lines=41 trace
trace

06a5e31b47
NEW 25e6e52787 [0] WinXP 35 of 36 03:51:51 03:51:51 1 ASM:Graph
PolyEnE| 100% lines=68 trace

5d445c59d8
NEW 892e12db7b [0] WinXP 39 of 41 14:55:34 14:55:34 1 none:none
tElock| none trace

38ed850a0e
NEW 46990f37cd [0] Win2K-f 34 of 38 03:13:53 03:13:53 1 ASM:Graph
Armadillo| 0% lines=91 trace

a12cab51ef
NEW none [0] WinXP 29 of 29 14:16:24 20:02:29 2 none:none
ASPack| 54% lines=281
embedded dns trace

3a59e85036
NEW 1f005cdcf4 [0] WinXP 25 of 41 00:49:03 00:49:03 1 none:none
StarForce| none trace

6e2eaa0359
NEW
740e3bffe0
NEW none[4]
421938c984[0]
421938c984[0] Win2K-f 24 of 33 23:21:06 23:21:06 1 none:none
none:none
PolyEnE|
Armadillo| none
none trace
trace

9b47736683
NEW 79ecd1a24c [0] WinXP 36 of 40 14:09:51 14:09:51 1 none:none
none|none none trace

2ef9098242
NEW
5d721a4dee
NEW de91d8b5d0 [0]
6afc8cafab[0]
6afc8cafab[0] WinXP 23 of 41 00:49:03 02:00:13 2 none:none
none:none
Armadillo|
UPX| none
none trace
trace

0ad3be7ff5
NEW 101339ea16 [0] WinXP 39 of 41 00:08:00 00:08:00 1 none:none
PENinja S| none trace

98d2778fd6
NEW
f676f3bf5b
NEW 9feea491cb [0]
0fba495fc4[0]
0fba495fc4[0] Win2K-f 37 of 41 18:36:33 18:36:33 1 none:none
none:none
tElock|
Armadillo| none
none trace
trace

6e2eaa0359
NEW none [4] Win2K-f 31 of 33 23:21:06 23:21:06 1 none:none
PolyEnE| none trace

6df9986fa7
NEW 1f5d1108f6 [0] Win2K-f 39 of 41 05:05:46 05:05:46 1 none:none
StarForce| none trace

57e25f48ad
NEW 66bab1e5b1 [0] WinXP 39 of 41 16:33:16 16:33:16 1 none:none
PolyEnE| none trace

c7830331fc
NEW 7953649664 [0] WinXP
Win2K-f 7 of 41 00:49:03 23:38:11 4 none:none
tElock| none trace

4640a4ccd3
NEW 9d9f2a02f5 [0] WinXP 40 of 41 21:04:37 21:04:37 1 none:none
tElock| none trace

741e3b03b3
NEW none [0] WinXP 31 of 32 06:03:51 16:01:58 2 none:none
none|none 32% lines=61 trace

a894e6640a
NEW 2a62540340 [0] WinXP 38 of 41 18:06:46 18:06:46 1 none:none
PolyEnE| none trace

3a59e85036
NEW
5d721a4dee
NEW
7bc8d57d8c
NEW 1f005cdcf4 [0]
6afc8cafab[0]
be025ab204[0]
be025ab204[0] WinXP 38 of 40 00:49:03 00:49:03 1 none:none
none:none
none:none
StarForce|
UPX|
none|none none
none
none trace
trace
trace

5d445c59d8
NEW
8a54950abb
NEW 892e12db7b [0]
f6b9e43917[0]
f6b9e43917[0] WinXP 37 of 40 14:55:34 14:55:34 1 none:none
none:none
tElock|
Armadillo| none
none trace
trace

eda3b7766c
NEW 7556343561 [0] WinXP 40 of 41 06:52:54 10:43:58 2 none:none
PolyEnE| none trace

25bc0db7e3
NEW d172b5e90c [0] WinXP 31 of 36 05:16:55 05:16:55 1 none:none
FASM| none trace

2ef9098242
NEW
5d721a4dee
NEW
6f3e0adc29
NEW
c7830331fc
NEW
d789c8d157
NEW de91d8b5d0 [0]
6afc8cafab[0]
1f005cdcf4[0]
7953649664[0]
5f6572479f[0]
5f6572479f[0] WinXP 31 of 33 02:00:13 02:00:13 1 none:none
none:none
none:none
none:none
none:none
Armadillo|
UPX|
StarForce|
tElock|
PolyEnE| none
none
none
none
none trace
trace
trace
trace
trace

98d2778fd6
NEW 9feea491cb [0] Win2K-f 38 of 41 18:36:33 18:36:33 1 none:none
tElock| none trace

a1f992a08e
NEW 75ca0b4a8f [0] WinXP 40 of 41 19:15:53 19:15:53 1 none:none
PolyEnE| none trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] WinXP 0 of 33 06:12:46 22:43:27 2 ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

4640a4ccd3
NEW
518025c884
NEW 9d9f2a02f5 [0]
e811756e2b[0]
e811756e2b[0] WinXP 39 of 41 21:04:37 21:04:37 1 none:none
none:none
tElock|
Armadillo| none
none trace
trace

38ed850a0e
NEW
b9297745a1
NEW 46990f37cd [0]
4294884d84[0]
4294884d84[0] Win2K-f 35 of 38 03:13:53 03:13:53 1 ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=91
lines=64
embedded dns trace
trace

aa795fd953
NEW e9b133047a [0] WinXP 38 of 41 07:01:35 07:01:35 1 none:none
PolyEnE| none trace

5285741560
NEW 60590b8b67 [0] WinXP 37 of 40 22:24:42 22:24:42 1 ASM:Graph
none|none 55% lines=59 trace

2ef9098242
NEW de91d8b5d0 [0] WinXP 30 of 33 02:00:13 02:00:13 1 none:none
Armadillo| none trace

2ef9098242
NEW
5d721a4dee
NEW
6f3e0adc29
NEW de91d8b5d0 [0]
6afc8cafab[0]
1f005cdcf4[0]
1f005cdcf4[0] WinXP 25 of 40 02:00:13 02:00:13 1 none:none
none:none
none:none
Armadillo|
UPX|
StarForce| none
none
none trace
trace
trace

330eaa2da2
NEW none [3] WinXP 28 of 29 03:20:30 03:20:30 1 none:none
ASPack| none trace

d9cb288f31
NEW 45603a001c [0] Win2K-f 3 of 37 19:13:15 19:21:58 2 ASM:Graph
UPX| 92% lines=174
embedded dns trace