Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


21 July 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
7adb0e118d
NEW		 none[3] Win2K-f 12 of 40 11:53:09 11:53:09 1 none none:none
 StarForce| none trace
7f60162c2c
NEW		 none[0] WinXP 25 of 25 10:00:27 10:00:27 1 none none:none
 PolyEnE| 100% lines=93
embedded dns		 trace
53bfe15e91
NEW
73f1082158
NEW		 1473091351 [0]
none [0]		 Win2K-f 0 of 32 15:07:42 20:02:01 2 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
dc331fb791
NEW		 none[3] Win2K-f 3 of 37 17:14:32 17:14:32 1 none none:none
 UPX| none trace
741e3b03b3
NEW		 none[0] WinXP 31 of 32 15:35:24 21:04:49 2 none none:none
 none|none 32% lines=61 trace
298243013a
NEW
bea8cb1865
NEW
fac78fde16
NEW		 b8c969e769 [0]
154de51a66[0]
882896ab05[0]		 Win2K-f 35 of 36 04:53:35 04:53:35 1 none none:none
ASM:Graph
none:none
 PEQuake|
Armadillo|
tElock|		 none
lines=91
none		 trace
trace
trace
1fcc146d70
NEW		 none[0] WinXP 29 of 29 15:15:43 15:15:43 1 none none:none
 PolyEnE| 99% lines=68 trace
53bfe15e91
NEW		 1473091351 [0] WinXP
Win2K-f		 33 of 33 02:12:44 21:51:22 5 none ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
298243013a
NEW
bea8cb1865
NEW		 b8c969e769 [0]
154de51a66[0]		 Win2K-f 32 of 36 04:53:35 04:53:35 1 none none:none
ASM:Graph
 PEQuake|
Armadillo|		 0% none
lines=91		 trace
trace
298243013a
NEW
533d15b5ce
NEW
58c343a8d8
NEW		 b8c969e769 [0]
c67adf46e2[0]
none [0]		 WinXP 28 of 33 14:28:33 14:28:33 1 none none:none
ASM:Graph
none:none
 PEQuake|
tElock|
Armadillo|		 0% none
lines=126
embedded dns
lines=91		 trace
trace
trace
f2cfdc83a8
NEW		 none[3] Win2K-f 26 of 35 13:44:22 13:44:22 1 none none:none
 none|none none trace
298243013a
NEW		 b8c969e769 [0] Win2K-f
WinXP		 15 of 41 04:53:35 14:28:33 2 none none:none
 PEQuake| none trace
2294edfc36
NEW
3959e0ddf3
NEW		 1b0799e7b2 [0]
60ba459f82[0]		 Win2K-f 36 of 41 18:31:29 18:31:29 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
47d3548e36
NEW		 ab13346633 [0] WinXP 37 of 41 10:03:27 10:03:27 1 none none:none
 Armadillo| none trace
53bfe15e91
NEW
b7082104e4
NEW		 1473091351 [0]
c5b49e7b82[0]		 WinXP 8 of 33 02:12:44 02:12:44 1 none ASM:Graph
ASM:Graph
 tElock|
tElock|		 100% lines=75
embedded dns
lines=41		 trace
trace
17028f1eda
NEW		 none[3] WinXP 31 of 32 15:35:25 15:35:25 1 none none:none
 tElock| none trace
83f6cb959d
NEW		 445f56b6dd [0] Win2K-f 36 of 41 03:07:45 03:07:45 1 none none:none
 StarForce| none trace
2294edfc36
NEW		 1b0799e7b2 [0] Win2K-f 39 of 41 18:31:29 18:31:29 1 none none:none
 tElock| none trace
53bfe15e91
NEW
57ce4acac2
NEW		 1473091351 [0]
none [0]		 WinXP 0 of 33 21:51:22 21:51:22 1 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
a769511504
NEW		 7ecd054f18 [0] WinXP 41 of 41 01:37:22 01:37:22 1 none none:none
 PolyEnE| none trace
47d3548e36
NEW
d8722af110
NEW		 ab13346633 [0]
ab30a55931[0]		 WinXP 36 of 40 10:03:27 10:03:27 1 none none:none
none:none
 Armadillo|
tElock|		 none
none		 trace
trace
1a2c0e6130
NEW		 none[0] WinXP 29 of 29 01:57:12 02:20:24 2 none none:none
 none|none 33% lines=60 trace
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 WinXP 0 of 33 02:43:44 02:43:44 1 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
148b3ff351
NEW		 none[3] WinXP 5 of 41 17:28:37 17:28:37 1 none none:none
 StarForce| none trace
298243013a
NEW
533d15b5ce
NEW		 b8c969e769 [0]
c67adf46e2[0]		 WinXP 30 of 33 14:28:33 14:28:33 1 none none:none
ASM:Graph
 PEQuake|
tElock|		 96% none
lines=126
embedded dns		 trace
trace
c3940285fd
NEW
f69c164193
NEW		 de206a939d [0]
404635142d[0]		 Win2K-f 38 of 41 00:05:18 00:05:18 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
03f912899b
NEW		 none[0] WinXP 32 of 32 04:45:25 04:45:25 1 none none:none
 none|none 32% lines=64 trace
7f7647d18e
NEW		 a81fd64562 [0] WinXP 39 of 41 05:02:09 05:02:09 1 none none:none
 PolyEnE| none trace
f5dd9f1f9d
NEW		 none[3] Win2K-f 7 of 41 15:35:46 15:35:46 1 none none:none
 none|none none trace
d9cb288f31
NEW		 45603a001c [0] Win2K-f 3 of 37 02:43:58 10:36:15 4 none ASM:Graph
 UPX| 92% lines=174
embedded dns		 trace
c3940285fd
NEW		 de206a939d [0] Win2K-f 39 of 41 00:05:18 00:05:18 1 none none:none
 tElock| none trace