Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

22 July 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

0658d04f28
NEW
298243013a
NEW
6648e7022b
NEW
6f8772fb4c
NEW 07f788a60e [0]
b8c969e769[0]
0ad0f97bcc[0]
72c4861af2[0] WinXP 27 of 41 22:40:34 22:40:34 1 none none:none
none:none
none:none
none:none
PolyEnE|
PEQuake|
UPX|
UPX| none
none
none
none trace
trace
trace
trace

a50c054e50
NEW
f28964bd2f
NEW d5f51c70ad [0]
a85e4a26c3[0] Win2K-f 39 of 40 05:17:50 05:17:50 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 32 03:47:20 18:03:48 8 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

0658d04f28
NEW 07f788a60e [0] WinXP 38 of 40 22:40:34 22:40:34 1 none none:none
PolyEnE| none trace

53bfe15e91
NEW 1473091351 [0] Win2K-f
WinXP 33 of 33 03:47:20 21:09:01 11 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

87e1117f2a
NEW 3ff643aae6 [0] WinXP 32 of 33 08:08:04 08:08:04 1 none none:none
tElock| none trace

6648e7022b
NEW
87bd0a062f
NEW
9857a367e2
NEW 0ad0f97bcc [0]
dc70d9623a[0]
8d4e5ce4de[0] WinXP 13 of 41 10:27:43 10:27:43 1 none none:none
none:none
none:none
UPX|
Armadillo|
ASProtect| none
none
none trace
trace
trace

0505ea7e51
NEW 6fde8a0b6c [0] WinXP 39 of 41 22:18:54 22:18:54 1 none none:none
PolyEnE| none trace

b502f83a7c
NEW 28f5be93b0 [0] WinXP 32 of 32 18:17:22 18:37:06 2 none none:none
PolyEnE| none trace

6648e7022b
NEW
87bd0a062f
NEW 0ad0f97bcc [0]
dc70d9623a[0] WinXP 30 of 33 10:27:43 10:27:43 1 none none:none
none:none
UPX|
Armadillo| none
none trace
trace

298243013a
NEW
533d15b5ce
NEW b8c969e769 [0]
c67adf46e2[0] WinXP 30 of 33 03:37:27 03:37:27 1 none none:none
ASM:Graph
PEQuake|
tElock| 96% none
lines=126
embedded dns trace
trace

a12cab51ef
NEW none[0] WinXP 29 of 29 05:26:26 22:41:55 2 none none:none
ASPack| 54% lines=281
embedded dns trace

36d16c0a7b
NEW 5438f81d23 [0] Win2K-f 38 of 41 11:42:08 11:42:08 1 none none:none
Armadillo| none trace

0b0f371be8
NEW 330a08d34f [0] WinXP 40 of 41 19:02:52 19:02:52 1 none none:none
PolyEnE| none trace

03f912899b
NEW none[0] WinXP 32 of 32 23:39:25 23:39:25 1 none none:none
none|none 32% lines=64 trace

0658d04f28
NEW
298243013a
NEW
6648e7022b
NEW
6f8772fb4c
NEW
9fa31ab3b7
NEW
b6d8c740ba
NEW 07f788a60e [0]
b8c969e769[0]
0ad0f97bcc[0]
72c4861af2[0]
9216033ec0[0]
2f4bf683ce[0] WinXP 26 of 40 22:40:34 22:40:34 1 none none:none
none:none
none:none
none:none
none:none
none:none
PolyEnE|
PEQuake|
UPX|
UPX|
StarForce|
Crypto-Lo| none
none
none
none
none
none trace
trace
trace
trace
trace
trace

d5360662f2
NEW 058308c0f7 [0] Win2K-f 16 of 38 12:02:40 20:56:13 2 none none:none
none|none none trace

51a03793ab
NEW 429f7618d3 [0] Win2K-f 37 of 41 23:38:00 23:38:00 1 none none:none
none|none none trace

a50c054e50
NEW d5f51c70ad [0] Win2K-f 40 of 41 05:17:50 05:17:50 1 none none:none
tElock| none trace

741e3b03b3
NEW none[0] WinXP 31 of 32 16:23:49 16:23:49 1 none none:none
none|none 32% lines=61 trace

831f4ee0a7
NEW none[0] WinXP 29 of 29 01:33:10 01:33:10 1 none ASM:Graph
none|none 100% lines=61 trace

0658d04f28
NEW
298243013a
NEW
6648e7022b
NEW
6f8772fb4c
NEW
9fa31ab3b7
NEW 07f788a60e [0]
b8c969e769[0]
0ad0f97bcc[0]
72c4861af2[0]
9216033ec0[0] WinXP 35 of 41 22:40:34 22:40:34 1 none none:none
none:none
none:none
none:none
none:none
PolyEnE|
PEQuake|
UPX|
UPX|
StarForce| none
none
none
none
none trace
trace
trace
trace
trace

298243013a
NEW
533d15b5ce
NEW
58c343a8d8
NEW b8c969e769 [0]
c67adf46e2[0]
none [0] WinXP 28 of 33 03:37:27 03:37:27 1 none none:none
ASM:Graph
none:none
PEQuake|
tElock|
Armadillo| 0% none
lines=126
embedded dns
lines=91 trace
trace
trace

0658d04f28
NEW
298243013a
NEW 07f788a60e [0]
b8c969e769[0] WinXP 15 of 41 03:37:27 22:40:34 2 none none:none
none:none
PolyEnE|
PEQuake| none
none trace
trace

0658d04f28
NEW
298243013a
NEW
6648e7022b
NEW 07f788a60e [0]
b8c969e769[0]
0ad0f97bcc[0] WinXP 28 of 41 10:27:43 22:40:34 2 none none:none
none:none
none:none
PolyEnE|
PEQuake|
UPX| none
none
none trace
trace
trace

3ae357d17b
NEW none[0] WinXP 29 of 29 17:32:20 17:32:20 1 none ASM:Graph
PolyEnE| 99% lines=73 trace

3b569cd1c6
NEW a81c9e968a [0] WinXP 40 of 41 13:25:09 13:25:09 1 none none:none
PolyEnE| none trace

7d99b0e910
NEW none[0] WinXP 26 of 28 17:49:44 17:49:44 1 none none:none
PolyEnE| 99% lines=68 trace

770a04a72c
NEW none[3] Win2K-f 15 of 41 09:24:48 09:24:48 1 none none:none
none|none none trace

53bfe15e91
NEW
57ce4acac2
NEW 1473091351 [0]
none [0] Win2K-f 0 of 33 10:33:58 10:33:58 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

1a2c0e6130
NEW none[0] WinXP 29 of 29 21:23:20 23:53:43 2 none none:none
none|none 33% lines=60 trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 33 11:51:54 21:09:01 3 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

6648e7022b
NEW
87bd0a062f
NEW
9857a367e2
NEW
c7d6018f97
NEW 0ad0f97bcc [0]
dc70d9623a[0]
8d4e5ce4de[0]
5c1d8bbd5b[0] WinXP 31 of 33 10:27:43 10:27:43 1 none none:none
none:none
none:none
none:none
UPX|
Armadillo|
ASProtect|
tElock| none
none
none
none trace
trace
trace
trace

b8076e37ae
NEW 52953fed05 [0] WinXP 28 of 41 21:37:24 21:37:24 1 none none:none
StarForce| none trace

5285741560
NEW 60590b8b67 [0] WinXP 37 of 40 05:35:54 05:35:54 1 none ASM:Graph
none|none 55% lines=59 trace

87e1117f2a
NEW
b4fe4581c3
NEW 3ff643aae6 [0]
599b835896[0] WinXP 29 of 33 08:08:04 08:08:04 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace