Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


19 January 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
156dd59d9a
NEW		 none[3] Win2K-f 9 of 37 16:25:11 16:25:11 1 none none:none
 UPX| none trace
409ef22885
[Firefox:844 hits: 11-22 to 01-18]		 none[3] Win2K-f 2 of 37 00:37:39 18:41:52 10 none none:none
 UPX| none trace
168aab35a3
[Firefox:196 hits: 06-17 to 11-29]
667f0c59f3
[Firefox:36 hits: 07-04 to 11-29]		 60b730b97e [0]
8fe2be2095[0]		 Win2K-f 31 of 33 20:46:05 20:46:05 1 none ASM:Graph
ASM:Graph
 tElock|
Armadillo|		 0% lines=120
embedded dns
lines=91		 trace
trace
fcb4920986
[Firefox:67 hits: 11-21 to 01-18]		 none[3] Win2K-f 2 of 37 13:41:11 13:41:11 1 none none:none
 UPX| none trace
dc331fb791
[Firefox:1659 hits: 11-24 to 01-18]		 none[3] Win2K-f 3 of 37 00:35:18 22:30:27 14 none none:none
 UPX| none trace
533d15b5ce
[Firefox:49 hits: 06-21 to 11-20]
58c343a8d8
[Firefox:53 hits: 06-21 to 11-20]
8d7215e290
NEW
97b885b707
NEW
a1700e41f5
NEW
b4c2d5dbed
NEW		 c67adf46e2 [0]
none [0]
3fa17e2277[0]
0bbfbee00e[0]
4387346ead[0]
3a08b6bb67[0]		 Win2K-f 20 of 37 00:51:56 00:51:56 1 none ASM:Graph
none:none
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
 tElock|
Armadillo|
none|none
StarForce|
none|none
UPX|		 87% lines=126
embedded dns
lines=91
lines=68
lines=27
lines=2
lines=193		 trace
trace
trace
trace
trace
trace
533d15b5ce
[Firefox:49 hits: 06-21 to 11-20]
58c343a8d8
[Firefox:53 hits: 06-21 to 11-20]
8d7215e290
NEW		 c67adf46e2 [0]
none [0]
3fa17e2277[0]		 Win2K-f 13 of 39 00:51:56 00:51:56 1 none ASM:Graph
none:none
ASM:Graph
 tElock|
Armadillo|
none|none		 97% lines=126
embedded dns
lines=91
lines=68		 trace
trace
trace
bd35d4d98f
[Firefox:61 hits: 11-27 to 01-17]		 none[3] Win2K-f 7 of 37 18:30:34 18:30:34 1 none none:none
 Armadillo| none trace
917c085aca
[Firefox:441 hits: 11-25 to 01-18]		 none[3] Win2K-f 3 of 37 02:13:29 14:20:45 6 none none:none
 Armadillo| none trace
9a9f93c4d2
[Firefox:31 hits: 12-23 to 01-11]		 none[3] Win2K-f 16 of 39 01:50:33 01:50:33 1 none none:none
 UPX| none trace
4f6b51ea3b
[Firefox:210 hits: 12-19 to 01-18]		 none[3] Win2K-f 8 of 38 10:00:03 10:10:46 2 none none:none
 MEW| none trace
e30fb27bda
[Firefox:11 hits: 07-07 to 10-28]		 90ee26f451 [0] WinXP 33 of 33 05:26:30 05:26:30 1 none ASM:Graph
 MEW| 21% lines=185
embedded dns		 trace
533d15b5ce
[Firefox:49 hits: 06-21 to 11-20]
58c343a8d8
[Firefox:53 hits: 06-21 to 11-20]		 c67adf46e2 [0]
none [0]		 Win2K-f 28 of 33 00:51:56 00:51:56 1 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=126
embedded dns
lines=91		 trace
trace
533d15b5ce
[Firefox:49 hits: 06-21 to 11-20]
58c343a8d8
[Firefox:53 hits: 06-21 to 11-20]
8d7215e290
NEW
97b885b707
NEW
a1700e41f5
NEW
b4c2d5dbed
NEW
bbd7b54d1b
NEW		 c67adf46e2 [0]
none [0]
3fa17e2277[0]
0bbfbee00e[0]
4387346ead[0]
3a08b6bb67[0]
80e3ae8aee[0]		 Win2K-f 14 of 38 00:51:56 00:51:56 1 none ASM:Graph
none:none
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
 tElock|
Armadillo|
none|none
StarForce|
none|none
UPX|
FASM|		 46% lines=126
embedded dns
lines=91
lines=68
lines=27
lines=2
lines=193
lines=108		 trace
trace
trace
trace
trace
trace
trace
8ce32ded17
[Firefox:528 hits: 11-26 to 01-18]		 none[3] Win2K-f 4 of 37 03:11:17 19:50:32 7 none none:none
 Armadillo| none trace
4f88618d4f
[Firefox:106 hits: 11-29 to 01-17]		 none[3] Win2K-f 8 of 37 03:42:50 04:41:40 2 none none:none
 UPX| none trace
168aab35a3
[Firefox:196 hits: 06-17 to 11-29]		 60b730b97e [0] Win2K-f 31 of 33 20:46:05 20:46:05 1 none ASM:Graph
 tElock| 95% lines=120
embedded dns		 trace
97b885b707
NEW		 0bbfbee00e [0] Win2K-f 5 of 38 00:51:56 01:35:17 2 none ASM:Graph
 StarForce| 83% lines=27 trace
fd943eed63
[Firefox: 3 hits: 12-02 to 01-07]		 none[3] Win2K-f 9 of 37 12:05:20 12:05:20 1 none none:none
 UPX| none trace
7587773eea
[Firefox:984 hits: 11-30 to 01-18]		 none[3] Win2K-f 7 of 37 06:29:45 22:58:35 8 none none:none
 StarForce| none trace
533d15b5ce
[Firefox:49 hits: 06-21 to 11-20]		 c67adf46e2 [0] Win2K-f 30 of 33 00:51:56 00:51:56 1 none ASM:Graph
 tElock| 96% lines=126
embedded dns		 trace
216ec67841
[Firefox:223 hits: 11-20 to 01-18]		 none[3] Win2K-f 2 of 37 20:35:42 20:35:42 1 none none:none
 StarForce| none trace
223d8089f8
[Firefox:750 hits: 11-21 to 01-18]		 none[3] Win2K-f 2 of 37 00:52:46 19:49:38 8 none none:none
 StarForce| none trace
d60e538e72
[Firefox:1862 hits: 11-22 to 01-18]		 none[3] Win2K-f 2 of 37 06:48:57 23:30:20 16 none none:none
 UPX| none trace
533d15b5ce
[Firefox:49 hits: 06-21 to 11-20]
58c343a8d8
[Firefox:53 hits: 06-21 to 11-20]
8d7215e290
NEW
97b885b707
NEW
a1700e41f5
NEW
b4c2d5dbed
NEW
bbd7b54d1b
NEW
d6bb91c5d0
NEW		 c67adf46e2 [0]
none [0]
3fa17e2277[0]
0bbfbee00e[0]
4387346ead[0]
3a08b6bb67[0]
80e3ae8aee[0]
ab63641704[0]		 Win2K-f 10 of 39 00:51:56 00:51:56 1 none ASM:Graph
none:none
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
 tElock|
Armadillo|
none|none
StarForce|
none|none
UPX|
FASM|
none|none		 65% lines=126
embedded dns
lines=91
lines=68
lines=27
lines=2
lines=193
lines=108
lines=56		 trace
trace
trace
trace
trace
trace
trace
trace
533d15b5ce
[Firefox:49 hits: 06-21 to 11-20]
58c343a8d8
[Firefox:53 hits: 06-21 to 11-20]
8d7215e290
NEW
97b885b707
NEW
a1700e41f5
NEW		 c67adf46e2 [0]
none [0]
3fa17e2277[0]
0bbfbee00e[0]
4387346ead[0]		 Win2K-f 11 of 39 00:51:56 00:51:56 1 none ASM:Graph
none:none
ASM:Graph
ASM:Graph
ASM:Graph
 tElock|
Armadillo|
none|none
StarForce|
none|none		 0% lines=126
embedded dns
lines=91
lines=68
lines=27
lines=2		 trace
trace
trace
trace
trace
533d15b5ce
[Firefox:49 hits: 06-21 to 11-20]
58c343a8d8
[Firefox:53 hits: 06-21 to 11-20]
8d7215e290
NEW
97b885b707
NEW
a1700e41f5
NEW
b4c2d5dbed
NEW
bbd7b54d1b
NEW
d6bb91c5d0
NEW
db97fcb2d2
[Firefox: 3 hits: 12-31 to 01-13]		 c67adf46e2 [0]
none [0]
3fa17e2277[0]
0bbfbee00e[0]
4387346ead[0]
3a08b6bb67[0]
80e3ae8aee[0]
ab63641704[0]
9e826e24a7[0]		 Win2K-f 9 of 38 00:51:56 00:51:56 1 none ASM:Graph
none:none
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
ASM:Graph
 tElock|
Armadillo|
none|none
StarForce|
none|none
UPX|
FASM|
none|none
Stranik|		 2% lines=126
embedded dns
lines=91
lines=68
lines=27
lines=2
lines=193
lines=108
lines=56
lines=7		 trace
trace
trace
trace
trace
trace
trace
trace
trace
d9cb288f31
[Firefox:18168 hits: 11-20 to 01-18]		 45603a001c [0] Win2K-f 3 of 37 00:11:38 23:48:39 188 none ASM:Graph
 UPX| 92% lines=174
embedded dns		 trace