Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

21 September 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

03eb887daa
NEW 71e224b041 [0] WinXP 39 of 41 08:29:02 08:29:02 1 none none:none
Armadillo| none trace

8f490cc57d
NEW
a12cab51ef
NEW
db29fa6a62
NEW none[4]
none [0]
none [4] WinXP 0 of 41 12:56:15 12:56:15 1 none none:none
none:none
none:none
none|none
ASPack|
none|none none
lines=281
embedded dns
none trace
trace
trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] WinXP 0 of 32 03:29:51 03:29:51 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

53bfe15e91
NEW 1473091351 [0] WinXP
Win2K-f 33 of 33 03:29:51 16:55:39 5 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

8a75955033
NEW
9276c8b36b
NEW 2bf3e548b9 [0]
none [0] Win2K-f 28 of 32 03:09:22 03:09:22 1 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 47% lines=126
embedded dns
lines=81 trace
trace

df17a625ee
NEW none[0] WinXP 29 of 29 19:57:19 19:57:19 1 none none:none
ASPack| 72% lines=298
embedded dns trace

bb7681eca8
NEW none[3] WinXP 32 of 32 19:16:43 19:16:43 1 none none:none
tElock| none trace

9d8ec60aeb
NEW 97d170c714 [0] WinXP 29 of 29 13:21:20 13:21:20 1 none none:none
PolyEnE| none trace

b26ed6eeac
NEW 97c1157bf8 [0] WinXP 41 of 41 23:29:16 23:29:16 1 none none:none
PolyEnE| none trace

33e758de52
NEW cdb2e7c60a [0] Win2K-f 39 of 41 19:06:48 19:06:48 1 none none:none
StarForce| none trace

96d089e522
NEW b9dd25bdfb [0] WinXP 34 of 36 21:17:35 21:17:35 1 none ASM:Graph
PolyEnE| 100% lines=93
embedded dns trace

8f490cc57d
NEW none[4] WinXP 0 of 41 12:56:15 12:56:15 1 none none:none
none|none none trace

1bc51bf964
NEW 4ab7eeaf6c [0] Win2K-f 40 of 41 13:40:33 13:40:33 1 none none:none
tElock| none trace

8f490cc57d
NEW
a12cab51ef
NEW none[4]
none [0] WinXP 29 of 29 12:56:15 12:56:15 1 none none:none
none:none
none|none
ASPack| 54% none
lines=281
embedded dns trace
trace

84ace068d1
NEW c822a7d0e4 [0] WinXP 38 of 40 10:00:51 10:00:51 1 none none:none
tElock| none trace

7d89e4dffc
NEW a9315eb14c [0] WinXP 26 of 41 20:10:55 20:10:55 1 none none:none
FASM| none trace

03eb887daa
NEW
1179d0de83
NEW 71e224b041 [0]
ab96b69318[0] WinXP 40 of 41 08:29:02 08:29:02 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

8a75955033
NEW 2bf3e548b9 [0] Win2K-f 29 of 32 03:09:22 03:09:22 1 none ASM:Graph
tElock| 96% lines=126
embedded dns trace

3842e66ff7
NEW
39336e51eb
NEW
524bc0f75c
NEW fc7c8aaf10 [0]
3f5ab71d39[0]
d3e9510bb3[0] WinXP 32 of 38 02:02:13 02:02:13 1 none none:none
none:none
none:none
EXECrypto|
Neolite|
PENinja S| none
none
none trace
trace
trace

3ed16ae12d
NEW none[0] Win2K-f 3 of 33 17:42:56 17:42:56 1 none ASM:Graph
Armadillo| 47% lines=81 trace

84ace068d1
NEW
c584af4fcd
NEW c822a7d0e4 [0]
bdfcf0a930[0] WinXP 36 of 41 10:00:51 10:00:51 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

741e3b03b3
NEW none[0] WinXP 31 of 32 05:28:19 10:46:22 2 none none:none
none|none 32% lines=61 trace

8459377032
NEW
8c3fbe8572
NEW 2f809ba47f [0]
6d017d228b[0] WinXP 39 of 41 16:41:46 16:41:46 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

3842e66ff7
NEW
39336e51eb
NEW fc7c8aaf10 [0]
3f5ab71d39[0] WinXP 29 of 41 02:02:13 02:02:13 1 none none:none
none:none
EXECrypto|
Neolite| none
none trace
trace

e1693609f9
NEW none[3] Win2K-f 17 of 41 12:46:47 12:46:47 1 none none:none
none|none none trace

eda3b7766c
NEW 7556343561 [0] WinXP 40 of 41 09:56:47 20:21:30 2 none none:none
PolyEnE| none trace

3ed16ae12d
NEW
79c01ec060
NEW none[0]
1bfd34056c[0] Win2K-f 33 of 33 17:42:56 17:42:56 1 none ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=81
lines=64
embedded dns trace
trace

7d89e4dffc
NEW
7d99b0e910
NEW a9315eb14c [0]
none [0] WinXP 26 of 28 20:10:55 20:10:55 1 none none:none
none:none
FASM|
PolyEnE| 99% none
lines=68 trace
trace

1bc51bf964
NEW
e33c8e30b9
NEW 4ab7eeaf6c [0]
95caa6a57d[0] Win2K-f 39 of 41 13:40:33 13:40:33 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

3842e66ff7
NEW fc7c8aaf10 [0] WinXP 40 of 41 02:02:13 02:02:13 1 none none:none
EXECrypto| none trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] WinXP
Win2K-f 0 of 33 14:54:44 16:33:46 3 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

c4c5a56ffe
NEW 8bef2f9170 [0] Win2K-f 11 of 36 11:49:37 11:49:37 1 none none:none
StarForce| none trace

5285741560
NEW 60590b8b67 [0] WinXP 37 of 40 23:31:11 23:31:11 1 none ASM:Graph
none|none 55% lines=59 trace

8459377032
NEW 2f809ba47f [0] WinXP 38 of 41 16:41:46 16:41:46 1 none none:none
Armadillo| none trace

109188d5f8
NEW aa7be7c5d9 [0] WinXP 38 of 41 09:05:48 09:05:48 1 none none:none
PolyEnE| none trace