Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

26 July 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

7b313206a2
NEW 0c866c8cce [0] WinXP 38 of 41 15:39:51 15:39:51 1 none none:none
none|none none trace

4e723f03b5
NEW 5d0041443e [0] Win2K-f 41 of 41 02:19:47 02:19:47 1 none none:none
tElock| none trace

47d76e8dce
NEW 457779e597 [0] WinXP 25 of 41 17:15:14 17:15:14 1 none none:none
Neolite| none trace

18dfbbc85b
NEW
637194c253
NEW
6648e7022b
NEW
6a4845ca11
NEW
6f8772fb4c
NEW 4f6fcecea3 [0]
2d39eb2ce1[0]
0ad0f97bcc[0]
c23d00870b[0]
72c4861af2[0] WinXP 27 of 41 13:46:01 13:46:01 1 none none:none
none:none
none:none
none:none
none:none
UPX|
UPX|
UPX|
tElock|
UPX| none
none
none
none
none trace
trace
trace
trace
trace

7f60162c2c
NEW none[0] WinXP 25 of 25 12:49:11 13:30:20 2 none none:none
PolyEnE| 100% lines=93
embedded dns trace

1e5df7ba74
NEW none[0] WinXP 31 of 32 12:29:25 12:29:25 1 none ASM:Graph
PolyEnE| 99% lines=68 trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] WinXP
Win2K-f 0 of 32 02:20:57 22:35:43 5 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

53bfe15e91
NEW 1473091351 [0] WinXP
Win2K-f 33 of 33 01:43:49 22:35:43 10 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

21f78789d7
NEW
d764c1dcb2
NEW 5014629ea1 [0]
3d2bc60c5d[0] WinXP 38 of 40 01:08:35 01:08:35 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

21f78789d7
NEW 5014629ea1 [0] WinXP 38 of 41 01:08:35 01:08:35 1 none none:none
Armadillo| none trace

18dfbbc85b
NEW
637194c253
NEW
6648e7022b
NEW
6a4845ca11
NEW 4f6fcecea3 [0]
2d39eb2ce1[0]
0ad0f97bcc[0]
c23d00870b[0] WinXP 0 of 0 13:46:01 13:46:01 1 none none:none
none:none
none:none
none:none
UPX|
UPX|
UPX|
tElock| none
none
none
none trace
trace
trace
trace

18dfbbc85b
NEW 4f6fcecea3 [0] WinXP 7 of 41 13:46:01 18:13:26 2 none none:none
UPX| none trace

18dfbbc85b
NEW
533d15b5ce
NEW
58c343a8d8
NEW 4f6fcecea3 [0]
c67adf46e2[0]
none [0] WinXP 28 of 33 18:13:26 18:13:26 1 none none:none
ASM:Graph
none:none
UPX|
tElock|
Armadillo| 0% none
lines=126
embedded dns
lines=91 trace
trace
trace

18dfbbc85b
NEW
637194c253
NEW
6648e7022b
NEW 4f6fcecea3 [0]
2d39eb2ce1[0]
0ad0f97bcc[0] WinXP 28 of 41 13:46:01 13:46:01 1 none none:none
none:none
none:none
UPX|
UPX|
UPX| none
none
none trace
trace
trace

18dfbbc85b
NEW
637194c253
NEW
6648e7022b
NEW
6a4845ca11
NEW
6f8772fb4c
NEW
a72dde0ecb
NEW 4f6fcecea3 [0]
2d39eb2ce1[0]
0ad0f97bcc[0]
c23d00870b[0]
72c4861af2[0]
495a04ac11[0] WinXP 21 of 41 13:46:01 13:46:01 1 none none:none
none:none
none:none
none:none
none:none
none:none
UPX|
UPX|
UPX|
tElock|
UPX|
UPX| none
none
none
none
none
none trace
trace
trace
trace
trace
trace

4e723f03b5
NEW
9a9801a8d3
NEW 5d0041443e [0]
94e2bf1ef1[0] Win2K-f 5 of 41 02:19:47 02:19:47 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

7d99b0e910
NEW none[0] WinXP 26 of 28 09:21:30 17:52:03 2 none none:none
PolyEnE| 99% lines=68 trace

53bfe15e91
NEW
57ce4acac2
NEW 1473091351 [0]
none [0] WinXP
Win2K-f 0 of 33 01:43:49 15:21:29 4 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

59617f9be3
NEW 35722f3350 [0] WinXP 22 of 40 09:43:32 09:43:32 1 none none:none
StarForce| none trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] Win2K-f 0 of 33 21:27:49 21:27:49 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

18dfbbc85b
NEW
533d15b5ce
NEW 4f6fcecea3 [0]
c67adf46e2[0] WinXP 30 of 33 18:13:26 18:13:26 1 none none:none
ASM:Graph
UPX|
tElock| 96% none
lines=126
embedded dns trace
trace

18dfbbc85b
NEW
637194c253
NEW
6648e7022b
NEW
6a4845ca11
NEW
6f8772fb4c
NEW
a72dde0ecb
NEW
ffafd341d9
NEW 4f6fcecea3 [0]
2d39eb2ce1[0]
0ad0f97bcc[0]
c23d00870b[0]
72c4861af2[0]
495a04ac11[0]
294fb27545[0] WinXP 38 of 40 13:46:01 13:46:01 1 none none:none
none:none
none:none
none:none
none:none
none:none
ASM:Graph
UPX|
UPX|
UPX|
tElock|
UPX|
UPX|
Armadillo| 0% none
none
none
none
none
none
lines=91 trace
trace
trace
trace
trace
trace
trace

47d76e8dce
NEW
524bc0f75c
NEW
d00b0ae77c
NEW 457779e597 [0]
d3e9510bb3[0]
423a668612[0] WinXP 27 of 32 17:15:14 17:15:14 1 none none:none
none:none
none:none
Neolite|
PENinja S|
Armadillo| none
none
none trace
trace
trace

2457886182
NEW 89781b90e7 [0] WinXP 39 of 41 09:06:00 09:06:00 1 none none:none
PolyEnE| none trace

18dfbbc85b
NEW
637194c253
NEW 4f6fcecea3 [0]
2d39eb2ce1[0] WinXP 14 of 41 13:46:01 13:46:01 1 none none:none
none:none
UPX|
UPX| none
none trace
trace

5285741560
NEW 60590b8b67 [0] WinXP 37 of 40 05:48:13 05:48:13 1 none ASM:Graph
none|none 55% lines=59 trace

47d76e8dce
NEW
524bc0f75c
NEW 457779e597 [0]
d3e9510bb3[0] WinXP 32 of 38 17:15:14 17:15:14 1 none none:none
none:none
Neolite|
PENinja S| none
none trace
trace

511fc83563
NEW 8f20cd5496 [0] WinXP 40 of 41 14:14:42 14:14:42 1 none none:none
PolyEnE| none trace