Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


22 July 2008

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
4047d40cb1
NEW		 none[none] WinXP 33 of 34 04:48:39 04:48:39 1 none none:none
 none|none none none
79a515c871
[Firefox: 2 hits: 06-19 to 07-10]		 none[4] Win2K-f 31 of 33 01:22:41 01:22:41 1 none none:none
 PolyEnE| none trace
0f033f7f3a
[Firefox: 2 hits: 11-02 to 05-10]		 none[4] WinXP 18 of 29 22:39:24 22:39:24 1 none none:none
 PolyEnE| none trace
53bfe15e91
[Firefox:815 hits: 06-17 to 07-21]
73f1082158
[Firefox:403 hits: 06-18 to 07-21]		 none[4]
73f1082158[1]		 Win2K-f
WinXP		 0 of 32 01:03:36 22:49:44 14 none none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=81		 trace
trace
53bfe15e91
[Firefox:815 hits: 06-17 to 07-21]		 none[4] Win2K-f
WinXP		 33 of 33 01:03:36 22:49:44 35 none none:none
 tElock| none trace
0fd0b81a16
NEW		 none[none] WinXP 29 of 33 19:31:08 19:31:08 1 none none:none
 none|none none none
0bfa79dc19
NEW		 none[none] WinXP
Win2K-f		 31 of 33 00:25:35 10:05:40 2 none none:none
 none|none none none
82f7eab9f2
NEW
8fa1660e44
NEW		 none[none]
none [none]		 Win2K-f 31 of 34 04:24:11 04:24:11 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
fad259ec3c
NEW		 none[none] WinXP 19 of 29 14:58:04 14:58:04 1 none none:none
 none|none none none
53bfe15e91
[Firefox:815 hits: 06-17 to 07-21]
b7082104e4
[Firefox:54 hits: 06-18 to 07-20]		 none[4]
none [4]		 WinXP
Win2K-f		 8 of 33 05:45:16 21:03:11 3 none none:none
none:none
 tElock|
tElock|		 none
none		 trace
trace
8e4e9c46a1
[Firefox: 3 hits: 07-13 to 07-20]		 none[none] WinXP 33 of 33 17:15:57 17:15:57 1 none none:none
 none|none none none
818af0357a
NEW		 none[none] Win2K-f 30 of 34 15:48:02 15:48:02 1 none none:none
 none|none none none
2b8c0ae381
[Firefox: 2 hits: 07-13 to 07-17]		 none[none] WinXP 32 of 33 21:48:27 21:48:27 1 none none:none
 none|none none none
6eddc8716c
[Firefox: 3 hits: 06-17 to 07-02]
897d59617c
[Firefox:51 hits: 06-28 to 07-19]		 none[4]
none [none]		 Win2K-f 25 of 33 18:31:41 20:23:40 2 none none:none
none:none
 tElock|
none|none		 none
none		 trace
none
0965a28cb9
NEW		 none[none] Win2K-f 29 of 33 13:01:16 13:01:16 1 none none:none
 none|none none none
1509c8d024
[Firefox: 8 hits: 06-17 to 07-15]
bd3f6e4ea3
[Firefox: 2 hits: 07-07 to 07-15]		 none[4]
none [none]		 WinXP 31 of 33 23:46:43 23:46:43 1 none none:none
none:none
 tElock|
none|none		 none
none		 trace
none
e321efdb3f
[Firefox:10 hits: 05-07 to 07-14]		 none[none] WinXP 26 of 28 18:31:21 18:31:21 1 none none:none
 none|none none none
168aab35a3
[Firefox:61 hits: 06-17 to 07-21]		 none[4] WinXP
Win2K-f		 31 of 33 01:43:04 18:11:29 2 none none:none
 tElock| none trace
533d15b5ce
[Firefox: 7 hits: 06-21 to 07-12]		 none[4] WinXP 30 of 33 06:31:24 06:31:24 1 none none:none
 tElock| none trace
53bfe15e91
[Firefox:815 hits: 06-17 to 07-21]
b6cf789b7d
NEW		 none[4]
none [none]		 Win2K-f 25 of 34 18:00:47 18:00:47 1 none none:none
none:none
 tElock|
none|none		 none
none		 trace
none
a12cab51ef
[Firefox:1129 hits: 05-01 to 07-21]		 40f7f463c4 [0] WinXP 29 of 29 15:47:53 19:41:19 2 none ASM:Graph
 ASPack| 54% lines=281
embedded dns		 trace
4fcb64de75
NEW		 none[none] WinXP 31 of 34 12:55:32 12:55:32 1 none none:none
 none|none none none
818af0357a
NEW
9ae3ac675f
NEW		 none[none]
none [none]		 Win2K-f 33 of 34 15:48:02 15:48:02 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
f502585714
[Firefox:98 hits: 05-03 to 07-20]		 ae590430c5 [0] WinXP 29 of 29 06:19:31 06:19:31 1 none ASM:Graph
 PolyEnE| 100% lines=63 trace
cce9566ceb
[Firefox:32 hits: 06-12 to 07-21]		 none[4] WinXP 31 of 32 06:51:29 06:51:29 1 none none:none
 PolyEnE| none trace
7dd1fe2970
[Firefox:20 hits: 09-07 to 06-03]		 dcc673c815 [0] WinXP 30 of 32 03:58:55 03:58:55 1 none ASM:Graph
 ASPack| 72% lines=374
embedded dns		 trace
6eddc8716c
[Firefox: 3 hits: 06-17 to 07-02]
897d59617c
[Firefox:51 hits: 06-28 to 07-19]
aa6a25b2d8
[Firefox: 2 hits: 06-25 to 07-02]
ab47e4577c
NEW		 none[4]
none [none]
none [none]
none [none]		 Win2K-f 30 of 33 18:31:41 20:23:40 2 none none:none
none:none
none:none
none:none
 tElock|
none|none
none|none
none|none		 none
none
none
none		 trace
none
none
none
168aab35a3
[Firefox:61 hits: 06-17 to 07-21]
4c3df24b32
[Firefox:105 hits: 06-17 to 07-21]		 none[4]
4c3df24b32[1]		 Win2K-f 0 of 33 18:11:29 18:11:29 1 none none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=81		 trace
trace
7fdfe363d5
[Firefox:3056 hits: 12-31 to 07-21]		 10862ea8b8 [0] Win2K-f
WinXP		 25 of 28 00:51:13 07:25:57 4 none ASM:Graph
 FSG| 95% lines=1933
embedded dns		 trace
6eddc8716c
[Firefox: 3 hits: 06-17 to 07-02]		 none[4] Win2K-f 31 of 33 20:23:40 20:23:40 1 none none:none
 tElock| none trace
6d86a1ff5a
[Firefox:17 hits: 06-25 to 07-21]		 none[none] WinXP 28 of 33 17:05:40 17:05:40 1 none none:none
 none|none none none
741e3b03b3
[Firefox:189 hits: 09-28 to 07-21]		 e0197e8a64 [0] WinXP 31 of 32 02:26:06 20:17:20 8 none ASM:Graph
 none|none 100% lines=62 trace
0bfa79dc19
NEW
8dfb3b619f
NEW		 none[none]
none [none]		 WinXP
Win2K-f		 29 of 34 00:25:35 10:05:40 2 none none:none
none:none
 none|none
none|none		 none
none		 none
none
6d86a1ff5a
[Firefox:17 hits: 06-25 to 07-21]
7f6e032fc0
[Firefox:17 hits: 06-25 to 07-21]		 none[none]
none [none]		 WinXP 31 of 33 17:05:40 17:05:40 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
831f4ee0a7
[Firefox:728 hits: 07-11 to 07-21]		 eb7546c600 [0] WinXP 29 of 29 07:43:57 22:15:04 3 none ASM:Graph
 none|none 100% lines=61 trace
79a515c871
[Firefox: 2 hits: 06-19 to 07-10]
b71c74380c
[Firefox: 2 hits: 06-19 to 07-10]		 none[4]
none [4]		 Win2K-f 27 of 32 01:22:41 01:22:41 1 none none:none
none:none
 PolyEnE|
PolyEnE|		 none
none		 trace
trace
533d15b5ce
[Firefox: 7 hits: 06-21 to 07-12]
58c343a8d8
[Firefox: 8 hits: 06-21 to 07-15]		 none[4]
58c343a8d8[1]		 WinXP 28 of 33 06:31:24 06:31:24 1 none none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=82		 trace
trace
168aab35a3
[Firefox:61 hits: 06-17 to 07-21]
4c3df24b32
[Firefox:105 hits: 06-17 to 07-21]
b5919931fe
[Firefox:142 hits: 06-20 to 07-21]		 none[4]
4c3df24b32[1]
b5919931fe[1]		 Win2K-f 0 of 32 15:46:02 18:11:29 2 none none:none
ASM:Graph
ASM:Graph
 tElock|
Armadillo|
ASProtect|		 48% none
lines=81
lines=90		 trace
trace
trace
93385541f3
[Firefox:12 hits: 06-22 to 07-19]		 none[4] WinXP 32 of 32 03:43:52 03:43:52 1 none none:none
 none|none none trace
98ab4791c1
NEW		 none[none] WinXP 0 of 34 15:47:53 15:47:53 1 none none:none
 none|none none none
dd98c3c108
[Firefox: 7 hits: 06-24 to 07-18]		 dd98c3c108 [1] WinXP 29 of 33 03:04:05 03:04:05 1 none ASM:Graph
 Armadillo| 47% lines=82 trace
57ce4acac2
[Firefox:68 hits: 06-17 to 07-21]		 57ce4acac2 [1] WinXP
Win2K-f		 0 of 33 02:30:31 22:51:20 5 none ASM:Graph
 Armadillo| 47% lines=81 trace
1a2c0e6130
[Firefox:494 hits: 12-31 to 07-21]		 048df78048 [0] WinXP 29 of 29 03:08:57 23:30:16 4 none ASM:Graph
 none|none 100% lines=61 trace
53bfe15e91
[Firefox:815 hits: 06-17 to 07-21]
a08f3b74a4
[Firefox:265 hits: 06-18 to 07-21]		 none[4]
a08f3b74a4[1]		 WinXP
Win2K-f		 0 of 33 04:08:12 17:27:13 13 none none:none
ASM:Graph
 tElock|
Armadillo|		 47% none
lines=81		 trace
trace
a483ba8aa1
[Firefox: 9 hits: 07-09 to 07-20]		 none[none] WinXP 33 of 33 21:29:44 21:29:44 1 none none:none
 none|none none none
2c9c851322
NEW		 none[none] Win2K-f 32 of 34 15:00:22 15:00:22 1 none none:none
 none|none none none
dd98c3c108
[Firefox: 7 hits: 06-24 to 07-18]
e98746deb1
[Firefox: 6 hits: 06-24 to 07-18]		 dd98c3c108 [1]
none [4]		 WinXP 31 of 33 03:04:05 03:04:05 1 none ASM:Graph
none:none
 Armadillo|
tElock|		 lines=82
none		 trace
trace
34f63d4b80
NEW		 none[none] WinXP 0 of 34 09:51:27 09:51:27 1 none none:none
 none|none none none
168aab35a3
[Firefox:61 hits: 06-17 to 07-21]
1a4889b67e
NEW		 none[4]
none [none]		 WinXP 31 of 34 01:43:04 01:43:04 1 none none:none
none:none
 tElock|
none|none		 none
none		 trace
none
2c9c851322
NEW
bd37db5990
NEW		 none[none]
none [none]		 Win2K-f 30 of 34 15:00:22 15:00:22 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
16874933ea
[Firefox:21 hits: 06-18 to 07-19]
76ee340669
[Firefox:21 hits: 06-18 to 07-19]		 16874933ea [1]
none [4]		 WinXP 33 of 33 06:06:42 06:06:42 1 none ASM:Graph
none:none
 Armadillo|
PolyEnE|		 lines=82
none		 trace
trace
34f63d4b80
NEW
df17a625ee
[Firefox:492 hits: 05-04 to 07-21]		 none[none]
9bbdd086c5[0]		 WinXP 29 of 29 09:51:27 09:51:27 1 none none:none
ASM:Graph
 none|none
ASPack|		 49% none
lines=186
embedded dns		 none
trace
93dabb5a19
NEW		 none[none] WinXP 20 of 32 16:29:59 16:29:59 1 none none:none
 none|none none none
52be1ae46f
NEW		 none[none] Win2K-f 31 of 34 23:18:35 23:18:35 1 none none:none
 none|none none none
7f66e51c85
[Firefox: 2 hits: 07-11 to 07-12]
9d12fe9d3b
[Firefox: 2 hits: 07-11 to 07-12]		 none[none]
none [none]		 Win2K-f 29 of 32 11:59:01 11:59:01 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
0fd0b81a16
NEW
62b232a611
NEW		 none[none]
none [none]		 WinXP 33 of 34 19:31:08 19:31:08 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
072e815c14
NEW		 none[none] WinXP 29 of 33 00:28:22 00:28:22 1 none none:none
 none|none none none
917f99560a
NEW		 none[none] WinXP 34 of 34 19:26:21 21:46:07 3 none none:none
 none|none none none
1f5e79b151
NEW		 none[none] Win2K-f 29 of 33 18:51:40 18:51:40 1 none none:none
 none|none none none
072e815c14
NEW
dc43e5460c
NEW
e86bf3a079
NEW		 none[none]
none [none]
none [none]		 WinXP 27 of 34 00:28:22 00:28:22 1 none none:none
none:none
none:none
 none|none
none|none
none|none		 none
none
none		 none
none
none
0ada72d805
[Firefox:33 hits: 05-17 to 07-21]		 239ec78f15 [0] WinXP 29 of 29 06:29:50 23:39:14 2 none ASM:Graph
 ASPack| 54% lines=281
embedded dns		 trace
9f5e2a4b42
NEW		 none[none] WinXP 32 of 34 15:00:54 22:41:43 2 none none:none
 none|none none none
16874933ea
[Firefox:21 hits: 06-18 to 07-19]		 16874933ea [1] WinXP 29 of 33 06:06:42 06:06:42 1 none ASM:Graph
 Armadillo| 48% lines=82 trace
82f7eab9f2
NEW		 none[none] Win2K-f 31 of 34 04:24:11 04:24:11 1 none none:none
 none|none none none
87bd0a062f
[Firefox: 2 hits: 06-29 to 07-04]		 none[none] Win2K-f 30 of 33 12:29:47 12:29:47 1 none none:none
 none|none none none
9015d9e9fc
NEW		 none[none] Win2K-f 31 of 33 00:31:02 00:31:02 1 none none:none
 none|none none none
a16ffae822
NEW		 none[none] Win2K-f 30 of 33 12:51:57 12:51:57 1 none none:none
 none|none none none
6eddc8716c
[Firefox: 3 hits: 06-17 to 07-02]
897d59617c
[Firefox:51 hits: 06-28 to 07-19]
aa6a25b2d8
[Firefox: 2 hits: 06-25 to 07-02]		 none[4]
none [none]
none [none]		 Win2K-f 30 of 33 20:23:40 20:23:40 1 none none:none
none:none
none:none
 tElock|
none|none
none|none		 none
none
none		 trace
none
none
072e815c14
NEW
dc43e5460c
NEW		 none[none]
none [none]		 WinXP 31 of 33 00:28:22 00:28:22 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
53bfe15e91
[Firefox:815 hits: 06-17 to 07-21]
8020eb2d22
[Firefox: 2 hits: 07-13 to 07-20]		 none[4]
none [none]		 Win2K-f 29 of 33 14:34:50 14:34:50 1 none none:none
none:none
 tElock|
none|none		 none
none		 trace
none
8178c88f5e
[Firefox:12 hits: 07-08 to 07-20]		 none[none] WinXP 33 of 33 06:12:49 06:12:52 2 none none:none
 none|none none none
85597d85c0
NEW		 f00f427b94 [0] WinXP 29 of 31 12:53:32 12:53:32 1 none ASM:Graph
 PolyEnE| 54% lines=265
embedded dns		 trace
57ce4acac2
[Firefox:68 hits: 06-17 to 07-21]
83f26f5044
[Firefox:11 hits: 06-20 to 07-21]		 57ce4acac2 [1]
none [4]		 Win2K-f
WinXP		 29 of 32 22:44:59 22:51:20 2 none ASM:Graph
none:none
 Armadillo|
tElock|		 lines=81
none		 trace
trace
7f60162c2c
[Firefox:1434 hits: 12-31 to 07-21]		 1aad8e4632 [0] WinXP 25 of 25 04:38:18 22:39:51 5 none ASM:Graph
 PolyEnE| 100% lines=93
embedded dns		 trace
73878506d4
NEW		 none[none] WinXP 34 of 34 09:11:38 09:11:38 1 none none:none
 none|none none none
52be1ae46f
NEW
d206332505
NEW		 none[none]
none [none]		 Win2K-f 1 of 33 23:18:35 23:18:35 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
ea096a2bdf
[Firefox: 8 hits: 07-12 to 07-20]		 none[none] WinXP 31 of 32 15:18:26 15:18:26 1 none none:none
 none|none none none
7f66e51c85
[Firefox: 2 hits: 07-11 to 07-12]		 none[none] Win2K-f 32 of 33 11:59:01 11:59:01 1 none none:none
 none|none none none
1a3a423319
[Firefox: 3 hits: 06-26 to 07-18]		 none[none] Win2K-f 32 of 33 21:53:17 21:53:17 1 none none:none
 none|none none none
7d99b0e910
[Firefox:3228 hits: 12-31 to 07-21]		 7a70e1b592 [0] WinXP 26 of 28 14:03:39 22:57:30 8 none ASM:Graph
 PolyEnE| 99% lines=68 trace
1a3a423319
[Firefox: 3 hits: 06-26 to 07-18]
d4c7af762e
[Firefox: 3 hits: 06-26 to 07-18]		 none[none]
none [none]		 Win2K-f 29 of 33 21:53:17 21:53:17 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
366148f7b7
[Firefox:10 hits: 07-06 to 07-21]		 none[none] WinXP 31 of 33 09:55:22 14:46:36 2 none none:none
 none|none none none
fd486d7c16
NEW		 none[none] WinXP 33 of 34 07:26:24 07:26:24 1 none none:none
 none|none none none
ab5e47bf8d
[Firefox:57 hits: 05-10 to 07-06]		 none[3] WinXP 29 of 29 22:23:53 22:23:53 1 none none:none
 ASPack| none trace
87bd0a062f
[Firefox: 2 hits: 06-29 to 07-04]
c7d6018f97
[Firefox: 2 hits: 06-29 to 07-04]		 none[none]
none [none]		 Win2K-f 31 of 33 12:29:47 12:29:47 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
1509c8d024
[Firefox: 8 hits: 06-17 to 07-15]		 none[4] WinXP 31 of 33 23:46:43 23:46:43 1 none none:none
 tElock| none trace