Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


07 July 2008

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
4ab411960c
NEW
e8fee31b4e
NEW		 none[none]
none [none]		 WinXP 31 of 33 12:38:08 12:38:08 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
53bfe15e91
[Firefox:450 hits: 06-17 to 07-06]
73f1082158
[Firefox:207 hits: 06-18 to 07-06]		 none[4]
73f1082158[1]		 WinXP
Win2K-f		 0 of 32 00:55:33 22:35:10 17 none none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=81		 trace
trace
53bfe15e91
[Firefox:450 hits: 06-17 to 07-06]		 none[4] Win2K-f
WinXP		 33 of 33 00:35:19 22:35:10 30 none none:none
 tElock| none trace
2dad702b45
NEW		 none[none] Win2K-f 32 of 33 10:27:58 10:27:58 1 none none:none
 none|none none none
d70e9267fe
NEW		 none[4] Win2K-f 31 of 33 23:45:30 23:45:30 1 none none:none
 PolyEnE| none trace
53bfe15e91
[Firefox:450 hits: 06-17 to 07-06]
b7082104e4
[Firefox:28 hits: 06-18 to 07-06]		 none[4]
none [4]		 Win2K-f 8 of 33 00:35:19 04:10:29 2 none none:none
none:none
 tElock|
tElock|		 none
none		 trace
trace
4c3df24b32
[Firefox:59 hits: 06-17 to 07-06]
8390780c27
[Firefox: 8 hits: 06-18 to 07-06]		 4c3df24b32 [1]
none [4]		 Win2K-f 30 of 32 08:25:14 08:25:14 1 none ASM:Graph
none:none
 Armadillo|
tElock|		 lines=81
none		 trace
trace
ea5389d425
[Firefox:14 hits: 07-06 to 07-06]		 none[none] Win2K-f
WinXP		 19 of 33 00:07:49 17:48:13 26 none none:none
 none|none none none
1509c8d024
[Firefox: 6 hits: 06-17 to 07-03]
bd3f6e4ea3
NEW		 none[4]
none [none]		 Win2K-f 31 of 33 04:05:10 04:05:10 1 none none:none
none:none
 tElock|
none|none		 none
none		 trace
none
168aab35a3
[Firefox:40 hits: 06-17 to 07-06]		 none[4] WinXP 31 of 33 03:51:10 23:57:22 2 none none:none
 tElock| none trace
b39dd9e090
NEW		 none[none] WinXP 27 of 33 12:23:14 12:23:14 1 none none:none
 none|none none none
4ab411960c
NEW		 none[none] WinXP 30 of 33 12:38:08 12:38:08 1 none none:none
 none|none none none
d42c1cc7c0
[Firefox:313 hits: 05-01 to 07-06]		 af9ca5bed1 [0] WinXP 29 of 29 08:52:03 08:52:03 1 none ASM:Graph
 PolyEnE| 100% lines=54 trace
954a98c971
[Firefox: 3 hits: 06-09 to 06-27]
bbe0c84096
NEW
c5622bb285
[Firefox: 6 hits: 06-23 to 07-02]
dde694c47a
NEW		 none[4]
none [none]
none [4]
none [none]		 WinXP 12 of 33 08:26:59 08:26:59 1 none none:none
none:none
none:none
none:none
 FSG|
none|none
none|none
none|none		 none
none
none
none		 trace
none
trace
none
533d15b5ce
[Firefox: 4 hits: 06-21 to 07-01]		 none[4] Win2K-f 30 of 33 07:41:18 07:41:18 1 none none:none
 tElock| none trace
a12cab51ef
[Firefox:1102 hits: 05-01 to 07-06]		 40f7f463c4 [0] WinXP 29 of 29 17:31:42 17:31:42 1 none ASM:Graph
 ASPack| 54% lines=281
embedded dns		 trace
f502585714
[Firefox:91 hits: 05-03 to 07-01]		 ae590430c5 [0] WinXP 29 of 29 21:58:25 21:58:25 1 none ASM:Graph
 PolyEnE| 100% lines=63 trace
fbdec59f1b
NEW		 none[none] WinXP 21 of 33 09:40:09 09:40:09 1 none none:none
 none|none none none
c78281a815
[Firefox: 2 hits: 06-20 to 07-01]		 none[4] WinXP 29 of 32 15:47:45 15:47:45 1 none none:none
 PolyEnE| none trace
06f27eb5cb
NEW		 none[none] WinXP 28 of 33 18:00:21 18:00:21 1 none none:none
 none|none none none
03f912899b
[Firefox:31 hits: 12-14 to 07-06]		 83893bd25d [0] WinXP 32 of 32 12:51:54 23:39:21 4 none ASM:Graph
 none|none 100% lines=65 trace
3521657786
NEW		 none[none] Win2K-f
WinXP		 29 of 33 02:18:46 05:35:36 2 none none:none
 none|none none none
cce9566ceb
[Firefox:19 hits: 06-12 to 07-05]		 none[4] WinXP 31 of 32 10:15:42 10:15:42 1 none none:none
 PolyEnE| none trace
f2de649e61
NEW		 none[none] WinXP 32 of 33 15:31:43 15:31:43 1 none none:none
 none|none none none
b299c4b20b
NEW		 none[none] WinXP 32 of 33 20:49:18 20:49:18 1 none none:none
 none|none none none
4c3df24b32
[Firefox:59 hits: 06-17 to 07-06]		 4c3df24b32 [1] WinXP
Win2K-f		 0 of 33 03:51:10 22:15:38 3 none ASM:Graph
 Armadillo| 47% lines=81 trace
168aab35a3
[Firefox:40 hits: 06-17 to 07-06]
667f0c59f3
NEW		 none[4]
none [none]		 WinXP 31 of 33 23:57:22 23:57:22 1 none none:none
none:none
 tElock|
none|none		 none
none		 trace
none
6d86a1ff5a
[Firefox: 5 hits: 06-25 to 07-05]		 none[none] WinXP
Win2K-f		 28 of 33 00:37:38 21:49:18 3 none none:none
 none|none none none
4d244a981f
[Firefox: 2 hits: 03-30 to 07-06]		 b66b85d85f [0] WinXP 30 of 31 00:41:11 22:44:14 3 none ASM:Graph
 PolyEnE| 100% lines=129 trace
741e3b03b3
[Firefox:111 hits: 09-28 to 07-06]		 e0197e8a64 [0] WinXP 31 of 32 01:25:22 20:33:51 9 none ASM:Graph
 none|none 100% lines=62 trace
5f11b319ef
NEW
a3f631e410
NEW		 none[none]
none [none]		 Win2K-f 31 of 33 03:27:20 03:27:20 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
4b40c9c136
NEW		 none[none] WinXP 31 of 33 14:03:45 14:03:45 1 none none:none
 none|none none none
6d86a1ff5a
[Firefox: 5 hits: 06-25 to 07-05]
7f6e032fc0
[Firefox: 5 hits: 06-25 to 07-05]		 none[none]
none [none]		 WinXP
Win2K-f		 31 of 33 00:37:38 21:49:18 3 none none:none
none:none
 none|none
none|none		 none
none		 none
none
831f4ee0a7
[Firefox:680 hits: 07-11 to 07-06]		 eb7546c600 [0] WinXP 29 of 29 03:57:22 21:13:54 3 none ASM:Graph
 none|none 100% lines=61 trace
533d15b5ce
[Firefox: 4 hits: 06-21 to 07-01]
58c343a8d8
[Firefox: 4 hits: 06-21 to 07-01]		 none[4]
58c343a8d8[1]		 Win2K-f 28 of 33 07:41:18 07:41:18 1 none none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=82		 trace
trace
235eaa31f1
NEW		 none[none] WinXP 32 of 33 12:43:50 12:43:50 1 none none:none
 none|none none none
5f11b319ef
NEW		 none[none] Win2K-f 24 of 33 03:27:20 03:27:20 1 none none:none
 none|none none none
62cfe21240
NEW
b5919931fe
[Firefox:79 hits: 06-20 to 07-06]		 none[none]
b5919931fe[1]		 Win2K-f 0 of 32 00:57:50 23:12:14 10 none none:none
ASM:Graph
 none|none
ASProtect|		 48% none
lines=90		 none
trace
53bfe15e91
[Firefox:450 hits: 06-17 to 07-06]
57ce4acac2
[Firefox:39 hits: 06-17 to 07-06]		 none[4]
57ce4acac2[1]		 Win2K-f
WinXP		 0 of 33 03:48:32 20:01:08 2 none none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=81		 trace
trace
2c2a1a4b67
NEW		 none[none] WinXP 30 of 33 23:13:53 23:13:53 1 none none:none
 none|none none none
1a2c0e6130
[Firefox:454 hits: 12-31 to 07-05]		 048df78048 [0] WinXP 29 of 29 06:24:47 15:00:46 3 none ASM:Graph
 none|none 100% lines=61 trace
65275a1614
[Firefox: 4 hits: 06-21 to 07-06]
a014934a72
[Firefox:63 hits: 06-28 to 07-06]		 65275a1614 [1]
none [none]		 Win2K-f 27 of 33 14:23:35 15:43:55 2 none ASM:Graph
none:none
 Armadillo|
none|none		 lines=82
none		 trace
none
954a98c971
[Firefox: 3 hits: 06-09 to 06-27]
bbe0c84096
NEW
c5622bb285
[Firefox: 6 hits: 06-23 to 07-02]		 none[4]
none [none]
none [4]		 WinXP 0 of 0 08:26:59 08:26:59 1 none none:none
none:none
none:none
 FSG|
none|none
none|none		 none
none
none		 trace
none
trace
53bfe15e91
[Firefox:450 hits: 06-17 to 07-06]
a08f3b74a4
[Firefox:153 hits: 06-18 to 07-06]		 none[4]
a08f3b74a4[1]		 Win2K-f
WinXP		 0 of 33 01:56:17 19:34:29 8 none none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=81		 trace
trace
bce12aa21f
[Firefox:21 hits: 05-12 to 07-04]		 none[4] WinXP 31 of 33 13:00:05 13:00:09 2 none none:none
 PolyEnE| none trace
2d52cb56a4
NEW		 none[none] Win2K-f 31 of 33 13:57:11 13:57:11 1 none none:none
 none|none none none
4fcfdb63e8
NEW		 none[none] WinXP 32 of 33 20:54:44 20:54:44 1 none none:none
 none|none none none
ce20f92227
NEW		 none[none] WinXP
Win2K-f		 32 of 33 12:35:35 12:57:45 2 none none:none
 none|none none none
74d8dbba27
NEW		 none[none] WinXP 31 of 33 20:09:50 20:16:38 2 none none:none
 none|none none none
404a3161e2
NEW		 none[none] Win2K-f
WinXP		 30 of 32 09:35:24 13:55:10 2 none none:none
 none|none none none
954a98c971
[Firefox: 3 hits: 06-09 to 06-27]
bbe0c84096
NEW		 none[4]
none [none]		 WinXP 17 of 33 08:26:59 08:26:59 1 none none:none
none:none
 FSG|
none|none		 none
none		 trace
none
954a98c971
[Firefox: 3 hits: 06-09 to 06-27]
bbe0c84096
NEW
c5622bb285
[Firefox: 6 hits: 06-23 to 07-02]
dde694c47a
NEW
fb07552892
NEW		 none[4]
none [none]
none [4]
none [none]
none [none]		 WinXP 18 of 33 08:26:59 08:26:59 1 none none:none
none:none
none:none
none:none
none:none
 FSG|
none|none
none|none
none|none
none|none		 none
none
none
none
none		 trace
none
trace
none
none
07fabc79ef
[Firefox: 3 hits: 06-19 to 06-30]		 07fabc79ef [1] Win2K-f 0 of 32 02:34:32 02:34:32 1 none ASM:Graph
 Armadillo| 47% lines=81 trace
3373948767
[Firefox: 4 hits: 07-03 to 07-06]
c73f738c30
[Firefox: 4 hits: 07-03 to 07-06]		 none[none]
none [none]		 WinXP 29 of 33 06:36:17 06:36:17 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
e30fb27bda
NEW		 none[none] Win2K-f 33 of 33 22:53:59 22:53:59 1 none none:none
 none|none none none
8a79fbda68
[Firefox: 4 hits: 06-26 to 07-06]		 none[none] WinXP 32 of 33 05:13:38 05:13:38 1 none none:none
 none|none none none
74d8dbba27
NEW
82d2b80e81
NEW		 none[none]
none [none]		 WinXP 31 of 33 20:09:50 20:16:38 2 none none:none
none:none
 none|none
none|none		 none
none		 none
none
48f8b1a711
[Firefox: 4 hits: 06-19 to 06-30]		 none[4] Win2K-f 31 of 33 06:59:58 06:59:58 1 none none:none
 PolyEnE| none trace
6d86a1ff5a
[Firefox: 5 hits: 06-25 to 07-05]
7f6e032fc0
[Firefox: 5 hits: 06-25 to 07-05]
e07c29c4ae
[Firefox:71 hits: 06-19 to 07-06]		 none[none]
none [none]
e07c29c4ae[1]		 WinXP 0 of 33 21:49:18 21:49:18 1 none none:none
none:none
ASM:Graph
 none|none
none|none
FSG|		 48% none
none
lines=92		 none
none
trace
48f8b1a711
[Firefox: 4 hits: 06-19 to 06-30]
ae4e62adc2
NEW		 none[4]
none [none]		 Win2K-f 22 of 32 06:59:58 06:59:58 1 none none:none
none:none
 PolyEnE|
none|none		 none
none		 trace
none
161e73cdfc
[Firefox: 4 hits: 05-13 to 07-03]		 none[4] WinXP 29 of 32 17:56:47 17:56:47 1 none none:none
 none|none none trace
fbacdd87c0
[Firefox: 2 hits: 06-06 to 07-06]		 none[4] WinXP 24 of 32 12:23:46 12:23:46 1 none none:none
 none|none none trace
57ce4acac2
[Firefox:39 hits: 06-17 to 07-06]
83f26f5044
[Firefox: 5 hits: 06-20 to 07-06]		 57ce4acac2 [1]
none [4]		 Win2K-f 29 of 32 03:48:32 03:48:32 1 none ASM:Graph
none:none
 Armadillo|
tElock|		 lines=81
none		 trace
trace
7f60162c2c
[Firefox:1390 hits: 12-31 to 07-06]		 1aad8e4632 [0] WinXP 25 of 25 03:37:58 21:26:48 8 none ASM:Graph
 PolyEnE| 100% lines=93
embedded dns		 trace
954a98c971
[Firefox: 3 hits: 06-09 to 06-27]		 none[4] WinXP 31 of 33 08:26:59 08:26:59 1 none none:none
 FSG| none trace
b421c2e5fd
NEW		 none[none] WinXP 31 of 33 12:24:55 12:24:55 1 none none:none
 none|none none none
3373948767
[Firefox: 4 hits: 07-03 to 07-06]		 none[none] WinXP 30 of 33 06:36:17 06:36:17 1 none none:none
 none|none none none
0ca7255da4
NEW		 none[none] WinXP 32 of 33 10:57:03 10:57:03 1 none none:none
 none|none none none
3ae357d17b
[Firefox:732 hits: 05-01 to 07-06]		 462a7be171 [0] WinXP 29 of 29 14:31:25 14:31:25 1 none ASM:Graph
 PolyEnE| 99% lines=73 trace
1898e66cd2
[Firefox: 5 hits: 05-20 to 07-05]		 none[4] WinXP 31 of 32 14:50:15 14:50:15 1 none none:none
 PolyEnE| none trace
54f5031c41
NEW
8acd7e1937
[Firefox: 4 hits: 06-22 to 06-30]		 18557d626e [0]
8acd7e1937[1]		 Win2K-f 29 of 32 16:37:09 16:37:09 1 none ASM:Graph
ASM:Graph
 ASPack|
none|none		 44% lines=34
lines=0		 trace
trace
7d99b0e910
[Firefox:3153 hits: 12-31 to 07-06]		 7a70e1b592 [0] WinXP 26 of 28 11:57:11 11:57:11 1 none ASM:Graph
 PolyEnE| 99% lines=68 trace
62cfe21240
NEW
b5919931fe
[Firefox:79 hits: 06-20 to 07-06]
b99badda6e
NEW		 none[none]
b5919931fe[1]
none [none]		 Win2K-f 32 of 33 23:12:14 23:12:14 1 none none:none
ASM:Graph
none:none
 none|none
ASProtect|
none|none		 none
lines=90
none		 none
trace
none
06f27eb5cb
NEW
d27dfd506b
NEW		 none[none]
none [none]		 WinXP 31 of 33 18:00:21 18:00:21 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
bf14e246e6
[Firefox: 4 hits: 07-06 to 07-06]		 none[none] Win2K-f 19 of 33 10:02:57 11:45:23 2 none none:none
 none|none none none
2e45ae247e
[Firefox: 3 hits: 06-25 to 07-02]		 none[none] Win2K-f 0 of 33 05:03:50 05:03:50 1 none none:none
 none|none none none
54f5031c41
NEW		 18557d626e [0] Win2K-f 30 of 32 16:37:09 16:37:09 1 none ASM:Graph
 ASPack| 94% lines=34 trace
65275a1614
[Firefox: 4 hits: 06-21 to 07-06]		 65275a1614 [1] Win2K-f
WinXP		 29 of 33 15:43:55 19:24:45 2 none ASM:Graph
 Armadillo| 47% lines=82 trace
1509c8d024
[Firefox: 6 hits: 06-17 to 07-03]		 none[4] Win2K-f 31 of 33 04:05:10 04:05:10 1 none none:none
 tElock| none trace
3521657786
NEW
70803e1611
NEW		 none[none]
none [none]		 Win2K-f
WinXP		 32 of 33 02:18:46 05:35:36 2 none none:none
none:none
 none|none
none|none		 none
none		 none
none
65275a1614
[Firefox: 4 hits: 06-21 to 07-06]
ec0d7783de
[Firefox: 4 hits: 06-21 to 07-06]		 65275a1614 [1]
none [4]		 Win2K-f
WinXP		 30 of 32 15:43:55 19:24:45 2 none ASM:Graph
none:none
 Armadillo|
tElock|		 lines=82
none		 trace
trace
62cfe21240
NEW		 none[none] Win2K-f 29 of 33 23:12:14 23:12:14 1 none none:none
 none|none none none