Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

17 June 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

15578adb63
NEW
be1d7d606f
NEW 088039e75d [0]
d5a8dd9459[0] Win2K-f 37 of 41 16:57:19 16:57:19 1 none none:none
none:none
StarForce|
Armadillo| none
none trace
trace

449f96770b
NEW none[3] Win2K-f 2 of 34 09:04:29 09:04:29 1 none none:none
FASM| none trace

20f346512b
NEW 90419de3ae [0] Win2K-f 2 of 41 23:02:13 23:02:13 1 none none:none
StarForce| none trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 32 04:23:17 22:31:36 9 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

53bfe15e91
NEW 1473091351 [0] Win2K-f
WinXP 33 of 33 02:43:19 22:56:24 19 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

2963503660
NEW
8a75955033
NEW
9276c8b36b
NEW none[4]
2bf3e548b9[0]
none [0] WinXP 28 of 32 01:33:52 01:33:52 1 none none:none
ASM:Graph
ASM:Graph
Xtreme-Pr|
tElock|
Armadillo| 47% none
lines=126
embedded dns
lines=81 trace
trace
trace

917c085aca
NEW none[3] Win2K-f 3 of 37 22:57:49 23:07:04 2 none none:none
Armadillo| none trace

168aab35a3
NEW
4c3df24b32
NEW
5363b6044c
NEW 60b730b97e [0]
none [0]
none [4] Win2K-f 7 of 41 22:48:37 22:48:37 1 none ASM:Graph
ASM:Graph
none:none
tElock|
Armadillo|
Mew| lines=120
embedded dns
lines=81
none trace
trace
trace

df17a625ee
NEW none[0] WinXP 29 of 29 08:29:21 08:29:21 1 none none:none
ASPack| 72% lines=298
embedded dns trace

d5966f5d2c
NEW 30f4c38c14 [0] WinXP 38 of 40 03:58:15 03:58:15 1 none none:none
none|none none trace

53bfe15e91
NEW
b7082104e4
NEW 1473091351 [0]
c5b49e7b82[0] Win2K-f 8 of 33 12:33:29 12:33:29 1 none ASM:Graph
ASM:Graph
tElock|
tElock| 100% lines=75
embedded dns
lines=41 trace
trace

367ce61cff
NEW 48128671a8 [0] WinXP 25 of 39 19:44:40 19:44:40 1 none ASM:Graph
StarForce| 62% lines=52 trace

00d7b05831
NEW
0ada72d805
NEW none[4]
none [0] WinXP 29 of 29 22:15:12 22:15:12 1 none none:none
ASM:Graph
none|none
ASPack| 54% none
lines=281
embedded dns trace
trace

4ffbfd2b4a
NEW none[3] Win2K-f 9 of 41 05:14:49 05:14:49 1 none none:none
StarForce| none trace

20f346512b
NEW
3c4b92fd6f
NEW 90419de3ae [0]
e3ddd64a85[0] Win2K-f 38 of 41 23:02:13 23:02:13 1 none none:none
none:none
StarForce|
none|none none
none trace
trace

168aab35a3
NEW 60b730b97e [0] Win2K-f 31 of 33 22:48:37 22:48:37 1 none ASM:Graph
tElock| 95% lines=120
embedded dns trace

0793a8751a
NEW 738f7fcc7c [0] WinXP 40 of 41 04:41:44 04:46:52 2 none none:none
PolyEnE| none trace

6b796d4152
NEW 4ceb4e4e5a [0] WinXP 38 of 41 04:35:08 04:35:08 1 none none:none
pex| none trace

2963503660
NEW
533d15b5ce
NEW none[4]
c67adf46e2[0] Win2K-f 30 of 33 00:09:37 00:09:37 1 none none:none
ASM:Graph
Xtreme-Pr|
tElock| 96% none
lines=126
embedded dns trace
trace

a12cab51ef
NEW none[0] WinXP 29 of 29 18:10:24 18:10:24 1 none none:none
ASPack| 54% lines=281
embedded dns trace

d60e538e72
NEW none[3] Win2K-f 2 of 37 09:33:52 09:42:44 2 none none:none
UPX| none trace

f502585714
NEW none[0] WinXP 29 of 29 03:42:25 22:09:00 2 none none:none
PolyEnE| 100% lines=63 trace

2963503660
NEW
8a75955033
NEW none[4]
2bf3e548b9[0] WinXP 29 of 32 01:33:52 01:33:52 1 none none:none
ASM:Graph
Xtreme-Pr|
tElock| 96% none
lines=126
embedded dns trace
trace

c392067a90
NEW d83160e550 [0] WinXP 35 of 36 12:26:38 12:26:38 1 none none:none
PolyEnE| none trace

850388089a
NEW none[3] Win2K-f 8 of 41 20:58:41 20:58:41 1 none none:none
none|none none trace

15578adb63
NEW 088039e75d [0] Win2K-f 38 of 41 16:57:19 16:57:19 1 none none:none
StarForce| none trace

168aab35a3
NEW
4c3df24b32
NEW 60b730b97e [0]
none [0] Win2K-f 0 of 33 22:48:37 22:48:37 1 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 47% lines=120
embedded dns
lines=81 trace
trace

409ef22885
NEW none[3] Win2K-f 2 of 37 04:36:14 04:36:14 1 none none:none
UPX| none trace

29546fd87c
NEW 2665d1ed69 [0] Win2K-f 39 of 41 11:23:30 11:23:30 1 none none:none
tElock| none trace

3ed16ae12d
NEW none[0] WinXP 3 of 33 06:28:09 06:28:09 1 none ASM:Graph
Armadillo| 47% lines=81 trace

29546fd87c
NEW
e17e2834ac
NEW 2665d1ed69 [0]
abf684db50[0] Win2K-f 3 of 41 11:23:30 11:23:30 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

00d7b05831
NEW none[4] WinXP 0 of 41 22:15:12 22:15:12 1 none none:none
none|none none trace

71afca1665
NEW none[3] Win2K-f 2 of 37 00:52:45 00:52:45 1 none none:none
StarForce| none trace

831f4ee0a7
NEW none[0] WinXP 29 of 29 02:08:10 23:25:09 2 none ASM:Graph
none|none 100% lines=61 trace

2963503660
NEW
533d15b5ce
NEW
58c343a8d8
NEW none[4]
c67adf46e2[0]
none [0] Win2K-f 28 of 33 00:09:37 00:09:37 1 none none:none
ASM:Graph
none:none
Xtreme-Pr|
tElock|
Armadillo| 0% none
lines=126
embedded dns
lines=91 trace
trace
trace

5fb8e1dc0b
NEW b27208c471 [0] WinXP 38 of 41 08:29:35 08:29:35 1 none none:none
PolyEnE| none trace

80e2a1fe95
NEW 5677476035 [0] WinXP 39 of 41 14:21:12 14:21:12 1 none none:none
tElock| none trace

3ed16ae12d
NEW
79c01ec060
NEW none[0]
1bfd34056c[0] WinXP 33 of 33 06:28:09 06:28:09 1 none ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=81
lines=64
embedded dns trace
trace

7d99b0e910
NEW none[0] WinXP 26 of 28 11:24:25 11:24:25 1 none none:none
PolyEnE| 99% lines=68 trace

50cfeab10d
NEW 47efaeaaf5 [0] Win2K-f 34 of 38 03:05:13 03:05:13 1 none none:none
StarForce| none trace

f37b5a8f0c
NEW dce19a471e [0] Win2K-f
WinXP 19 of 40 00:09:37 23:19:10 5 none none:none
none|none none trace

53bfe15e91
NEW
57ce4acac2
NEW 1473091351 [0]
none [0] WinXP 0 of 33 06:43:11 06:43:11 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

367ce61cff
NEW
3842e66ff7
NEW 48128671a8 [0]
fc7c8aaf10[0] WinXP 40 of 41 19:44:40 19:44:40 1 none ASM:Graph
none:none
StarForce|
EXECrypto| lines=52
none trace
trace

f74edcb909
NEW 8102d544a9 [0] WinXP 38 of 41 12:00:28 12:00:28 1 none none:none
PolyEnE| none trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 33 02:43:19 22:56:24 8 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

2963503660
NEW none[4] Win2K-f
WinXP 15 of 41 00:09:37 01:33:52 2 none none:none
Xtreme-Pr| none trace

b27d73bfcb
NEW 473c6454ce [0] WinXP 35 of 36 12:39:17 12:39:17 1 none ASM:Graph
PolyEnE| 100% lines=68 trace

7587773eea
NEW none[3] Win2K-f 7 of 37 02:22:13 02:22:13 1 none none:none
StarForce| none trace

304951d900
NEW 3168493a34 [0] WinXP 36 of 38 11:42:15 11:42:15 1 none ASM:Graph
PolyEnE| 100% lines=134 trace

a639a866cf
NEW c7bf122964 [0] WinXP 38 of 41 02:22:08 02:22:08 1 none none:none
PolyEnE| none trace

a1fba8d205
NEW 1fd5e5ad53 [0] WinXP 41 of 41 03:00:41 03:17:12 2 none none:none
PolyEnE| none trace

20f346512b
NEW
3c4b92fd6f
NEW
d3305754f6
NEW 90419de3ae [0]
e3ddd64a85[0]
c692d7d45e[0] Win2K-f 11 of 41 23:02:13 23:02:13 1 none none:none
none:none
none:none
StarForce|
none|none
Armadillo| none
none
none trace
trace
trace

9bb68450cd
NEW c2d5ac2315 [0] WinXP 34 of 36 12:08:31 12:08:31 1 none ASM:Graph
PolyEnE| 100% lines=73
embedded dns trace

d9cb288f31
NEW 45603a001c [0] Win2K-f 3 of 37 00:05:06 21:44:11 19 none ASM:Graph
UPX| 92% lines=174
embedded dns trace