Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

06 October 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

619115df0d
NEW 7b9aa49eb9 [0] WinXP 39 of 41 17:41:28 17:41:28 1 none none:none
tElock| none trace

7f60162c2c
NEW none[0] WinXP 25 of 25 02:28:58 02:28:58 1 none none:none
PolyEnE| 100% lines=93
embedded dns trace

0f5ec5c3b5
NEW
3cc6c5584c
NEW
736b3db4fe
NEW
c7830331fc
NEW 2ab58743f8 [0]
4da1c2ed7d[0]
none [4]
7953649664[0] Win2K-f
WinXP 7 of 41 14:46:31 22:50:09 3 none none:none
none:none
none:none
none:none
tElock|
Armadillo|
Obsidium|
tElock| none
none
none
none trace
trace
trace
trace

4640a4ccd3
NEW 9d9f2a02f5 [0] WinXP 40 of 41 09:11:01 09:11:01 1 none none:none
tElock| none trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] WinXP
Win2K-f 0 of 32 02:20:51 19:46:33 3 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

7f38ca84af
NEW 89991cf07f [0] WinXP 39 of 41 17:20:11 17:20:11 1 none none:none
PolyEnE| none trace

0151482932
NEW none[3] Win2K-f 12 of 41 20:49:30 20:49:30 1 none none:none
none|none none trace

a8a15ce6ae
NEW 0d23174d7b [0] Win2K-f 39 of 41 20:03:06 20:03:06 1 none none:none
PolyEnE| none trace

53bfe15e91
NEW 1473091351 [0] Win2K-f
WinXP 33 of 33 00:12:46 19:46:33 4 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

736b3db4fe
NEW
8a75955033
NEW
9276c8b36b
NEW none[4]
2bf3e548b9[0]
none [0] Win2K-f 28 of 32 14:46:31 14:46:31 1 none none:none
ASM:Graph
ASM:Graph
Obsidium|
tElock|
Armadillo| 47% none
lines=126
embedded dns
lines=81 trace
trace
trace

01c4a6b3eb
NEW dd524b0259 [0] WinXP 40 of 41 10:47:19 10:47:19 1 none none:none
PolyEnE| none trace

0f5ec5c3b5
NEW
3cc6c5584c
NEW 2ab58743f8 [0]
4da1c2ed7d[0] Win2K-f 38 of 41 22:50:09 22:50:09 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

0f5ec5c3b5
NEW 2ab58743f8 [0] Win2K-f 38 of 41 22:50:09 22:50:09 1 none none:none
tElock| none trace

d805fd89c4
NEW 036c86797f [0] Win2K-f 39 of 41 05:05:31 05:05:31 1 none none:none
EXECrypto| none trace

f54691063f
NEW 6039c698cd [0] WinXP 37 of 40 13:11:25 13:11:25 1 none ASM:Graph
none|none 55% lines=59 trace

619115df0d
NEW
736b3db4fe
NEW
b3f96920fe
NEW 7b9aa49eb9 [0]
none [4]
bf01f2b155[0] WinXP 38 of 41 17:41:28 17:41:28 1 none none:none
none:none
none:none
tElock|
Obsidium|
Armadillo| none
none
none trace
trace
trace

cc88f4f016
NEW 3d17903825 [0] Win2K-f 31 of 41 14:18:32 14:18:32 1 none none:none
StarForce| none trace

7d99b0e910
NEW none[0] WinXP 26 of 28 17:06:24 17:06:24 1 none none:none
PolyEnE| 99% lines=68 trace

459d2bddeb
NEW 10fac04dd2 [0] Win2K-f 40 of 41 21:36:29 21:36:29 1 none none:none
none|none none trace

0f5ec5c3b5
NEW
3cc6c5584c
NEW
736b3db4fe
NEW 2ab58743f8 [0]
4da1c2ed7d[0]
none [4] Win2K-f
WinXP 8 of 41 14:46:31 22:50:09 3 none none:none
none:none
none:none
tElock|
Armadillo|
Obsidium| none
none
none trace
trace
trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] Win2K-f 0 of 33 00:12:46 00:12:46 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

4640a4ccd3
NEW
518025c884
NEW 9d9f2a02f5 [0]
e811756e2b[0] WinXP 39 of 41 09:11:01 09:11:01 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

38ed850a0e
NEW 46990f37cd [0] WinXP 34 of 38 12:51:18 12:51:18 1 none ASM:Graph
Armadillo| 0% lines=91 trace

b8076e37ae
NEW 52953fed05 [0] WinXP 28 of 41 06:34:31 06:34:31 1 none none:none
StarForce| none trace

c4c5a56ffe
NEW 8bef2f9170 [0] WinXP 11 of 36 06:24:23 06:24:23 1 none none:none
StarForce| none trace

38ed850a0e
NEW
b9297745a1
NEW 46990f37cd [0]
4294884d84[0] WinXP 35 of 38 12:51:18 12:51:18 1 none ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=91
lines=64
embedded dns trace
trace

736b3db4fe
NEW
8a75955033
NEW none[4]
2bf3e548b9[0] Win2K-f 29 of 32 14:46:31 14:46:31 1 none none:none
ASM:Graph
Obsidium|
tElock| 96% none
lines=126
embedded dns trace
trace

03f912899b
NEW none[0] WinXP 32 of 32 11:29:48 11:29:48 1 none none:none
none|none 32% lines=64 trace