Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


01 June 2008

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
529c9e114c
NEW		 none[4] Win2K-f 20 of 32 12:14:47 12:14:47 1 none none:none
 none|none none trace
1e5df7ba74
[Firefox:19 hits: 03-24 to 05-21]		 a5331b711f [0] WinXP 31 of 32 20:12:14 20:13:40 2 none ASM:Graph
 PolyEnE| 99% lines=68 trace
fce29e83cd
NEW		 none[4] WinXP 29 of 32 00:37:28 00:37:28 1 none none:none
 ASProtect| none trace
f515fcc0f7
[Firefox:14 hits: 12-28 to 05-14]		 dc7696e295 [0] Win2K-f 14 of 32 13:06:46 13:06:46 1 none ASM:Graph
 ASProtect| 57% lines=422
embedded dns		 trace
df17a625ee
[Firefox:450 hits: 05-04 to 05-31]		 none[3] WinXP 29 of 29 04:10:03 15:26:45 2 none none:none
 ASPack| none trace
05ec072edf
[Firefox: 3 hits: 05-30 to 05-31]		 05ec072edf [1] Win2K-f 3 of 32 03:25:46 03:25:46 1 none ASM:Graph
 StarForce| 46% lines=86 trace
4e2c082051
NEW		 none[4] Win2K-f 27 of 32 15:01:56 15:01:56 1 none none:none
 none|none none trace
43aaa8723f
NEW		 none[4] Win2K-f 25 of 28 13:38:52 13:38:52 1 none none:none
 none|none none trace
6c4c3242ba
[Firefox: 3 hits: 05-31 to 05-31]		 none[4] Win2K-f 15 of 31 04:20:29 04:20:29 1 none none:none
 none|none none trace
e94729b8b4
NEW		 none[4] Win2K-f 21 of 32 21:00:41 21:00:41 1 none none:none
 ASProtect| none trace
e8d4d8cde1
[Firefox:253 hits: 03-31 to 05-23]		 fda109a6fd [0] Win2K-f
WinXP		 13 of 31 00:37:39 02:29:20 18 none ASM:Graph
 ASProtect| 64% lines=583
embedded dns		 trace
a12cab51ef
[Firefox:1028 hits: 05-01 to 05-29]		 40f7f463c4 [0] WinXP 29 of 29 08:03:01 11:32:29 2 none ASM:Graph
 ASPack| 54% lines=281
embedded dns		 trace
382279b44f
[Firefox: 6 hits: 05-22 to 05-31]		 none[4] WinXP 19 of 32 09:40:04 09:40:04 1 none none:none
 Armadillo| none trace
161e73cdfc
NEW		 none[4] WinXP 29 of 32 23:05:17 23:05:17 1 none none:none
 none|none none trace
699d2b9731
[Firefox: 2 hits: 04-27 to 05-22]		 none[3] Win2K-f 23 of 31 21:27:50 21:27:50 1 none none:none
 ASProtect| none trace
fd57febe23
[Firefox: 3 hits: 05-19 to 05-30]		 none[4] WinXP 31 of 32 01:03:51 01:03:51 1 none none:none
 PolyEnE| none trace
a2a036466a
[Firefox:257 hits: 05-05 to 05-23]		 none[4] Win2K-f
WinXP		 14 of 32 11:06:17 23:31:27 6 none none:none
 none|none none trace
ed631f6395
NEW		 none[4] WinXP 32 of 32 04:35:15 04:35:15 1 none none:none
 PolyEnE| none trace
53123fadcc
[Firefox:52 hits: 01-26 to 05-22]		 none[4] WinXP 13 of 32 17:11:55 17:11:55 1 none none:none
 none|none none trace
7f60162c2c
[Firefox:1305 hits: 12-31 to 05-30]		 1aad8e4632 [0] WinXP 25 of 25 12:40:26 19:45:40 3 none ASM:Graph
 PolyEnE| 100% lines=93
embedded dns		 trace
be174a7807
NEW		 none[4] Win2K-f 30 of 32 18:05:43 18:05:43 1 none none:none
 Obsidium| none trace
831f4ee0a7
[Firefox:614 hits: 07-11 to 05-31]		 eb7546c600 [0] WinXP 29 of 29 03:57:48 22:21:14 2 none ASM:Graph
 none|none 100% lines=61 trace
539af97473
NEW		 none[4] Win2K-f 19 of 33 14:02:14 14:02:14 1 none none:none
 none|none none trace
4620861e2d
[Firefox:15 hits: 04-27 to 05-17]		 none[4] WinXP 11 of 31 21:40:31 21:40:31 1 none none:none
 StarForce| none trace
82239d2adc
NEW		 none[4] WinXP 32 of 32 03:43:39 03:43:39 1 none none:none
 none|none none trace
5f78ff609d
[Firefox:1487 hits: 04-27 to 05-30]		 d4a06bdc3a [0] WinXP
Win2K-f		 21 of 32 14:29:43 20:42:52 8 none ASM:Graph
 none|none 46% lines=4 trace
7d99b0e910
[Firefox:3009 hits: 12-31 to 05-31]		 7a70e1b592 [0] WinXP 26 of 28 02:58:22 19:07:34 9 none ASM:Graph
 PolyEnE| 99% lines=68 trace
05094b9626
NEW		 none[4] WinXP 30 of 32 02:17:11 02:17:11 1 none none:none
 PolyEnE| none trace
5ee4121e1e
[Firefox:36 hits: 05-29 to 05-31]		 none[4] Win2K-f
WinXP		 14 of 32 02:35:30 15:55:42 7 none none:none
 Obsidium| none trace
890fb4fa10
[Firefox:45 hits: 12-27 to 05-23]		 b9c7f08a57 [0] Win2K-f 19 of 32 12:30:43 23:15:24 2 none ASM:Graph
 ASProtect| 3% lines=393
embedded dns		 trace
4053a87494
NEW		 c1d7cc8d6d [0] Win2K-f 23 of 31 17:07:49 19:22:07 2 none ASM:Graph
 TXT2COM| 59% lines=405
embedded dns		 trace
131351dd21
NEW		 none[4] Win2K-f 20 of 32 00:43:40 09:00:27 2 none none:none
 none|none none trace
1a2c0e6130
[Firefox:396 hits: 12-31 to 05-30]		 048df78048 [0] WinXP 29 of 29 10:12:47 19:26:55 3 none ASM:Graph
 none|none 100% lines=61 trace
44ded303fe
NEW		 none[4] WinXP 29 of 32 13:59:08 13:59:08 1 none none:none
 none|none none trace
0b6af9e88a
NEW		 none[4] WinXP
Win2K-f		 5 of 31 07:56:50 07:59:12 2 none none:none
 StarForce| none trace
bce12aa21f
[Firefox:10 hits: 05-12 to 05-31]		 none[4] WinXP 31 of 33 17:54:31 18:09:16 2 none none:none
 PolyEnE| none trace
ab5e47bf8d
[Firefox:45 hits: 05-10 to 05-07]		 none[3] WinXP 29 of 29 13:59:07 13:59:07 1 none none:none
 ASPack| none trace
32a0d7d0e0
[Firefox:41 hits: 05-04 to 05-21]		 d791762796 [0] WinXP 29 of 29 13:26:45 13:26:45 1 none ASM:Graph
 tElock| 100% lines=81
embedded dns		 trace
a0139d7ad8
[Firefox:436 hits: 05-02 to 05-31]		 d9e9662db1 [0] WinXP 29 of 29 15:03:55 15:05:52 2 none ASM:Graph
 PolyEnE| 99% lines=68 trace
5dfc3e36cd
NEW		 none[4] Win2K-f 26 of 31 19:46:26 19:46:26 1 none none:none
 none|none none trace
fd835d9616
NEW		 none[4] Win2K-f 30 of 32 21:53:32 21:53:32 1 none none:none
 TXT2COM| none trace
9acd0bdf6f
NEW		 none[4] Win2K-f 28 of 32 13:58:13 13:58:13 1 none none:none
 none|none none trace