Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


11 October 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
1fa41f09fc
NEW
24e59ab043
NEW
3c6b773d78
NEW
a62f6fc33b
NEW
ef5fd50f61
NEW
ff2150aa95
NEW		 8267b23408 [0]
778da26bf3[0]
fb2dc717f9[0]
020eee55f3[0]
c932de5e59[0]
6e55004755[0]		 Win2K-f 30 of 33 02:09:05 02:09:05 1 none none:none
none:none
none:none
none:none
none:none
none:none
 Armadillo|
Armadillo|
Armadillo|
StarForce|
StarForce|
tElock|		 none
none
none
none
none
none		 trace
trace
trace
trace
trace
trace
53bfe15e91
NEW
73f1082158
NEW		 1473091351 [0]
none [0]		 WinXP 0 of 32 02:04:49 11:00:42 2 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
067917e07b
NEW
d764c1dcb2
NEW		 dae35b319c [0]
3d2bc60c5d[0]		 Win2K-f 38 of 40 04:58:16 11:36:44 2 none none:none
none:none
 Armadillo|
tElock|		 none
none		 trace
trace
53bfe15e91
NEW		 1473091351 [0] Win2K-f
WinXP		 33 of 33 01:19:47 18:32:53 8 none ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
1c5e79f5f4
NEW
8a75955033
NEW
9276c8b36b
NEW		 none[4]
2bf3e548b9[0]
none [0]		 Win2K-f 28 of 32 18:04:27 18:04:27 1 none none:none
ASM:Graph
ASM:Graph
 FSG|
tElock|
Armadillo|		 47% none
lines=126
embedded dns
lines=81		 trace
trace
trace
bb7681eca8
NEW		 none[3] WinXP 32 of 32 10:08:12 10:08:12 1 none none:none
 tElock| none trace
1c5e79f5f4
NEW
1fa41f09fc
NEW
3c6b773d78
NEW
8b9732ded9
NEW		 none[4]
8267b23408[0]
fb2dc717f9[0]
none [4]		 Win2K-f 0 of 41 02:19:27 02:19:27 1 none none:none
none:none
none:none
none:none
 FSG|
Armadillo|
Armadillo|
none|none		 none
none
none
none		 trace
trace
trace
trace
1bc51bf964
NEW		 4ab7eeaf6c [0] Win2K-f 40 of 41 04:11:16 04:11:16 1 none none:none
 tElock| none trace
a12cab51ef
NEW		 none[0] WinXP 29 of 29 02:12:18 14:45:39 2 none none:none
 ASPack| 54% lines=281
embedded dns		 trace
067917e07b
NEW		 dae35b319c [0] Win2K-f 36 of 41 04:58:16 11:36:44 2 none none:none
 Armadillo| none trace
e49826ceaa
NEW		 none[4] WinXP 31 of 41 10:07:19 10:07:19 1 none none:none
 ASPack| none trace
1c5e79f5f4
NEW
8a75955033
NEW		 none[4]
2bf3e548b9[0]		 Win2K-f 29 of 32 18:04:27 18:04:27 1 none none:none
ASM:Graph
 FSG|
tElock|		 96% none
lines=126
embedded dns		 trace
trace
616f21b486
NEW		 348063e1c2 [0] WinXP 39 of 41 17:33:09 17:33:09 1 none none:none
 StarForce| none trace
2949a0ad17
NEW		 0b5f65174a [0] WinXP 41 of 41 11:15:13 11:15:13 1 none none:none
 ASPack| none trace
7f60162c2c
NEW		 none[0] WinXP 25 of 25 10:27:39 17:11:02 3 none none:none
 PolyEnE| 100% lines=93
embedded dns		 trace
1c5e79f5f4
NEW
8a75955033
NEW
9276c8b36b
NEW
c7830331fc
NEW		 none[4]
2bf3e548b9[0]
none [0]
7953649664[0]		 Win2K-f 7 of 41 02:19:27 18:04:27 2 none none:none
ASM:Graph
ASM:Graph
none:none
 FSG|
tElock|
Armadillo|
tElock|		 none
lines=126
embedded dns
lines=81
none		 trace
trace
trace
trace
741e3b03b3
NEW		 none[0] WinXP 31 of 32 04:16:16 13:34:39 2 none none:none
 none|none 32% lines=61 trace
1c5e79f5f4
NEW
1fa41f09fc
NEW
3c6b773d78
NEW
8b9732ded9
NEW
a62f6fc33b
NEW		 none[4]
8267b23408[0]
fb2dc717f9[0]
none [4]
020eee55f3[0]		 Win2K-f 3 of 41 02:09:05 02:19:27 2 none none:none
none:none
none:none
none:none
none:none
 FSG|
Armadillo|
Armadillo|
none|none
StarForce|		 none
none
none
none
none		 trace
trace
trace
trace
trace
99c07c4fd6
NEW
bc43f0abc4
NEW		 bbf30ef165 [0]
67bede154c[0]		 Win2K-f 40 of 41 05:47:18 05:47:18 1 none none:none
none:none
 Armadillo|
tElock|		 none
none		 trace
trace
3ae357d17b
NEW		 none[0] WinXP 29 of 29 10:26:36 10:26:36 1 none ASM:Graph
 PolyEnE| 99% lines=73 trace
0cfab99612
NEW		 none[0] WinXP 29 of 29 07:42:50 07:42:50 1 none ASM:Graph
 PolyEnE| 99% lines=68 trace
7d99b0e910
NEW		 none[0] WinXP 26 of 28 04:52:04 04:52:04 1 none none:none
 PolyEnE| 99% lines=68 trace
1c5e79f5f4
NEW
1fa41f09fc
NEW
3c6b773d78
NEW
8b9732ded9
NEW
a62f6fc33b
NEW
c3c12f9578
NEW
c7830331fc
NEW
ef5fd50f61
NEW		 none[4]
8267b23408[0]
fb2dc717f9[0]
none [4]
020eee55f3[0]
none [4]
7953649664[0]
c932de5e59[0]		 Win2K-f 34 of 41 02:09:05 02:19:27 2 none none:none
none:none
none:none
none:none
none:none
none:none
none:none
none:none
 FSG|
Armadillo|
Armadillo|
none|none
StarForce|
none|none
tElock|
StarForce|		 none
none
none
none
none
none
none
none		 trace
trace
trace
trace
trace
trace
trace
trace
1bc51bf964
NEW
e33c8e30b9
NEW		 4ab7eeaf6c [0]
95caa6a57d[0]		 Win2K-f 39 of 41 04:11:16 04:11:16 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
b8f53b4800
NEW
e9ef6d378d
NEW		 4208eb65f3 [0]
72080f1764[0]		 WinXP 38 of 41 00:34:12 00:34:12 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
1c5e79f5f4
NEW		 none[4] Win2K-f 17 of 41 02:19:27 18:04:27 2 none none:none
 FSG| none trace
2e45ae247e
NEW		 36aa8cd03d [0] Win2K-f 0 of 33 01:19:47 01:19:47 1 none none:none
 Armadillo| none trace
1c5e79f5f4
NEW
1fa41f09fc
NEW
3c6b773d78
NEW		 none[4]
8267b23408[0]
fb2dc717f9[0]		 Win2K-f 12 of 41 02:09:05 02:19:27 2 none none:none
none:none
none:none
 FSG|
Armadillo|
Armadillo|		 none
none
none		 trace
trace
trace
aa52a1cad3
NEW		 822158a84f [0] Win2K-f 37 of 41 00:19:32 00:19:32 1 none none:none
 Armadillo| none trace
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 Win2K-f
WinXP		 0 of 33 08:27:27 18:32:53 5 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
1c5e79f5f4
NEW
1fa41f09fc
NEW
3c6b773d78
NEW
8b9732ded9
NEW
a62f6fc33b
NEW
c3c12f9578
NEW		 none[4]
8267b23408[0]
fb2dc717f9[0]
none [4]
020eee55f3[0]
none [4]		 Win2K-f 0 of 41 02:19:27 02:19:27 1 none none:none
none:none
none:none
none:none
none:none
none:none
 FSG|
Armadillo|
Armadillo|
none|none
StarForce|
none|none		 none
none
none
none
none
none		 trace
trace
trace
trace
trace
trace
b8f53b4800
NEW		 4208eb65f3 [0] WinXP 39 of 41 00:34:12 00:34:12 1 none none:none
 tElock| none trace
ce28648035
NEW		 126d2f4655 [0] WinXP 34 of 39 22:28:07 22:28:07 1 none ASM:Graph
 none|none 98% lines=546 trace
69f8ccc92e
NEW		 e9613e6868 [0] Win2K-f 38 of 41 16:07:31 16:07:31 1 none none:none
 StarForce| none trace
1fa41f09fc
NEW
24e59ab043
NEW		 8267b23408 [0]
778da26bf3[0]		 Win2K-f 34 of 36 02:09:05 02:09:05 1 none none:none
none:none
 Armadillo|
Armadillo|		 none
none		 trace
trace
1c5e79f5f4
NEW
1fa41f09fc
NEW		 none[4]
8267b23408[0]		 Win2K-f 31 of 41 02:09:05 02:19:27 2 none none:none
none:none
 FSG|
Armadillo|		 none
none		 trace
trace
99c07c4fd6
NEW		 bbf30ef165 [0] Win2K-f 39 of 41 05:47:18 05:47:18 1 none none:none
 Armadillo| none trace
2f6afffda4
NEW		 ede9ae4e6d [0] WinXP 39 of 41 15:04:33 15:04:33 1 none none:none
 PolyEnE| none trace