Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


16 September 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
b669db7f51
NEW		 none[4] WinXP 34 of 41 11:32:30 11:32:30 1 none none:none
 none|none none trace
10759405e0
NEW		 292d343248 [0] WinXP 38 of 41 17:14:02 17:14:02 1 none none:none
 Armadillo| none trace
5403724951
NEW		 44ee5f83ba [0] Win2K-f 40 of 41 01:06:06 01:06:06 1 none none:none
 tElock| none trace
53bfe15e91
NEW
73f1082158
NEW		 1473091351 [0]
none [0]		 WinXP
Win2K-f		 0 of 32 02:48:43 19:38:32 3 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
5403724951
NEW
6494cbd582
NEW		 44ee5f83ba [0]
adcb56d0cb[0]		 Win2K-f 39 of 41 01:06:06 01:06:06 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
56703b9d17
NEW		 de8764ef05 [0] Win2K-f 39 of 41 14:29:07 14:29:07 1 none none:none
 Armadillo| none trace
53bfe15e91
NEW		 1473091351 [0] WinXP
Win2K-f		 33 of 33 02:48:43 20:47:24 8 none ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
07fabc79ef
NEW		 none[0] Win2K-f 0 of 32 03:37:16 03:37:16 1 none ASM:Graph
 Armadillo| 47% lines=81 trace
53bfe15e91
NEW
b7082104e4
NEW		 1473091351 [0]
c5b49e7b82[0]		 Win2K-f 8 of 33 16:14:10 16:14:10 1 none ASM:Graph
ASM:Graph
 tElock|
tElock|		 100% lines=75
embedded dns
lines=41		 trace
trace
06a5e31b47
NEW		 25e6e52787 [0] WinXP 35 of 36 08:25:07 08:25:07 1 none ASM:Graph
 PolyEnE| 100% lines=68 trace
fe22b8315f
NEW		 bb25603f41 [0] WinXP 32 of 33 21:36:16 21:36:16 1 none none:none
 StarForce| none trace
616f21b486
NEW		 348063e1c2 [0] WinXP 39 of 41 23:51:46 23:51:46 1 none none:none
 StarForce| none trace
9716d7995a
NEW		 c3a5354b6f [0] WinXP 35 of 35 07:14:01 07:14:01 1 none none:none
 PolyEnE| none trace
39336e51eb
NEW
524bc0f75c
NEW		 3f5ab71d39 [0]
d3e9510bb3[0]		 WinXP 32 of 38 05:28:15 05:28:15 1 none none:none
none:none
 Neolite|
PENinja S|		 none
none		 trace
trace
4c3df24b32
NEW		 none[0] Win2K-f 0 of 33 16:05:15 16:05:15 1 none ASM:Graph
 Armadillo| 47% lines=81 trace
741e3b03b3
NEW		 none[0] WinXP 31 of 32 11:52:15 11:52:15 1 none none:none
 none|none 32% lines=61 trace
56703b9d17
NEW
c55e86f7e9
NEW		 de8764ef05 [0]
c790c10ad1[0]		 Win2K-f 40 of 41 14:29:07 14:29:07 1 none none:none
none:none
 Armadillo|
tElock|		 none
none		 trace
trace
831f4ee0a7
NEW		 none[0] WinXP 29 of 29 13:54:20 13:54:20 1 none ASM:Graph
 none|none 100% lines=61 trace
39336e51eb
NEW		 3f5ab71d39 [0] WinXP 29 of 41 05:28:15 05:28:15 1 none none:none
 Neolite| none trace
67c629c38b
NEW		 none[3] WinXP 31 of 41 05:58:57 05:58:57 1 none none:none
 none|none none trace
eda3b7766c
NEW		 7556343561 [0] WinXP 40 of 41 04:42:35 04:42:35 1 none none:none
 PolyEnE| none trace
7d99b0e910
NEW		 none[0] WinXP 26 of 28 17:11:00 17:11:00 1 none none:none
 PolyEnE| 99% lines=68 trace
10759405e0
NEW
d08e00dfaf
NEW		 292d343248 [0]
854c49d8c4[0]		 WinXP 39 of 41 17:14:02 17:14:02 1 none none:none
none:none
 Armadillo|
tElock|		 none
none		 trace
trace
4d4b114a18
NEW		 2414a15ebd [0] WinXP 40 of 41 19:07:20 19:07:20 1 none none:none
 PolyEnE| none trace
06c9e8d638
NEW		 6ec94ef43f [0] Win2K-f 40 of 41 02:36:59 02:36:59 1 none none:none
 none|none none trace
474acf88e5
NEW		 1f53944b24 [0] WinXP 38 of 40 11:27:41 11:27:41 1 none none:none
 tElock| none trace
41fba073ee
NEW		 4009c372b6 [0] Win2K-f 6 of 40 06:12:31 06:12:31 1 none none:none
 FASM| none trace
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 WinXP
Win2K-f		 0 of 33 17:41:14 20:47:24 2 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
474acf88e5
NEW
68f0c14692
NEW		 1f53944b24 [0]
ccc1b24d53[0]		 WinXP 38 of 40 11:27:41 11:27:41 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
39336e51eb
NEW
524bc0f75c
NEW
a3dd1d02df
NEW		 3f5ab71d39 [0]
d3e9510bb3[0]
8803db6928[0]		 WinXP 41 of 41 05:28:15 05:28:15 1 none none:none
none:none
none:none
 Neolite|
PENinja S|
Armadillo|		 none
none
none		 trace
trace
trace
5285741560
NEW		 60590b8b67 [0] WinXP 37 of 40 14:34:49 14:34:49 1 none ASM:Graph
 none|none 55% lines=59 trace
aab1b56620
NEW		 3b2e1c5b9d [0] WinXP 40 of 41 02:22:17 02:22:17 1 none none:none
 PolyEnE| none trace