Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

17 October 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

2159b61b3b
NEW cdd2e4c318 [0] WinXP 39 of 41 11:36:17 11:36:17 1 none none:none
StarForce| none trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] WinXP 0 of 32 09:43:31 09:43:31 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

2cb7fb5674
NEW 4bf8dcd347 [0] WinXP 40 of 41 00:11:45 03:31:15 2 none none:none
none|none none trace

405ce10c9b
NEW
83192a6119
NEW 9f1a7125b9 [0]
fdc95e1fab[0] Win2K-f 15 of 41 21:03:13 21:03:13 1 none none:none
none:none
Armadillo|
none|none none
none trace
trace

14c118316b
NEW
f28b31493e
NEW none[4]
e1e1d22148[0] Win2K-f 28 of 40 12:43:50 12:43:50 1 none none:none
none:none
FSG|
PENinja S| none
none trace
trace

53bfe15e91
NEW 1473091351 [0] WinXP 33 of 33 01:57:58 09:43:31 2 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

337b3480eb
NEW
4fd9dd4880
NEW
8a75955033
NEW
9276c8b36b
NEW 1a253ee468 [0]
none [4]
2bf3e548b9[0]
none [0] Win2K-f 28 of 32 20:33:30 20:33:30 1 none none:none
none:none
ASM:Graph
ASM:Graph
UPX|
none|none
tElock|
Armadillo| 47% none
none
lines=126
embedded dns
lines=81 trace
trace
trace
trace

337b3480eb
NEW 1a253ee468 [0] Win2K-f 10 of 41 20:33:30 20:33:30 1 none none:none
UPX| none trace

bb7681eca8
NEW none[3] WinXP 32 of 32 09:52:29 09:52:29 1 none none:none
tElock| none trace

00936f5cdf
NEW 0e6320b85a [0] WinXP 40 of 40 02:52:21 02:52:21 1 none none:none
none|none none trace

53bfe15e91
NEW
b7082104e4
NEW 1473091351 [0]
c5b49e7b82[0] WinXP 8 of 33 01:57:58 01:57:58 1 none ASM:Graph
ASM:Graph
tElock|
tElock| 100% lines=75
embedded dns
lines=41 trace
trace

b26ed6eeac
NEW 97c1157bf8 [0] WinXP 41 of 41 00:52:07 00:52:07 1 none none:none
PolyEnE| none trace

639ad69965
NEW 84c2cecdaf [0] Win2K-f 39 of 41 23:29:33 23:29:33 1 none none:none
Armadillo| none trace

337b3480eb
NEW
4fd9dd4880
NEW
8a75955033
NEW
9276c8b36b
NEW
ae9b8cab06
NEW 1a253ee468 [0]
none [4]
2bf3e548b9[0]
none [0]
ae9b8cab06[1] Win2K-f 6 of 41 20:33:30 20:33:30 1 none none:none
none:none
ASM:Graph
ASM:Graph
ASM:Graph
UPX|
none|none
tElock|
Armadillo|
StarForce| 35% none
none
lines=126
embedded dns
lines=81
lines=7 trace
trace
trace
trace
trace

47d3548e36
NEW
d8722af110
NEW ab13346633 [0]
ab30a55931[0] Win2K-f 36 of 40 16:21:06 16:21:06 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

5c39773b13
NEW c64405f2e9 [0] Win2K-f 38 of 41 08:07:06 08:07:06 1 none none:none
tElock| none trace

405ce10c9b
NEW
87bd0a062f
NEW 9f1a7125b9 [0]
dc70d9623a[0] WinXP 30 of 33 08:50:20 08:50:20 1 none none:none
none:none
Armadillo|
Armadillo| none
none trace
trace

5c39773b13
NEW
a1acc403a2
NEW c64405f2e9 [0]
54ef26c2f9[0] Win2K-f 37 of 41 08:07:06 08:07:06 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

a12cab51ef
NEW none[0] WinXP 29 of 29 08:29:02 08:29:02 1 none none:none
ASPack| 54% lines=281
embedded dns trace

f502585714
NEW none[0] WinXP 29 of 29 17:58:58 17:58:58 1 none none:none
PolyEnE| 100% lines=63 trace

337b3480eb
NEW
4fd9dd4880
NEW
8a75955033
NEW 1a253ee468 [0]
none [4]
2bf3e548b9[0] Win2K-f 29 of 32 20:33:30 20:33:30 1 none none:none
none:none
ASM:Graph
UPX|
none|none
tElock| 96% none
none
lines=126
embedded dns trace
trace
trace

9716d7995a
NEW c3a5354b6f [0] WinXP 35 of 35 21:31:14 21:31:14 1 none none:none
PolyEnE| none trace

405ce10c9b
NEW 9f1a7125b9 [0] WinXP
Win2K-f 18 of 41 08:50:20 21:03:13 2 none none:none
Armadillo| none trace

405ce10c9b
NEW
83192a6119
NEW
b8aeb8dbdf
NEW 9f1a7125b9 [0]
fdc95e1fab[0]
443b0a882b[0] WinXP
Win2K-f 12 of 40 08:50:20 21:03:13 2 none none:none
none:none
none:none
Armadillo|
none|none
StarForce| none
none
none trace
trace
trace

7f60162c2c
NEW none[0] WinXP 25 of 25 19:50:12 21:00:09 2 none none:none
PolyEnE| 100% lines=93
embedded dns trace

337b3480eb
NEW
4fd9dd4880
NEW
8a75955033
NEW
9276c8b36b
NEW
ae9b8cab06
NEW
db0b018d16
NEW 1a253ee468 [0]
none [4]
2bf3e548b9[0]
none [0]
ae9b8cab06[1]
9d2b52b268[0] Win2K-f 7 of 41 20:33:30 20:33:30 1 none none:none
none:none
ASM:Graph
ASM:Graph
ASM:Graph
none:none
UPX|
none|none
tElock|
Armadillo|
StarForce|
StarForce| none
none
lines=126
embedded dns
lines=81
lines=7
none trace
trace
trace
trace
trace
trace

405ce10c9b
NEW
83192a6119
NEW
b8aeb8dbdf
NEW
dd96e88e03
NEW 9f1a7125b9 [0]
fdc95e1fab[0]
443b0a882b[0]
6f87541765[0] WinXP
Win2K-f 26 of 41 08:50:20 21:03:13 2 none none:none
none:none
none:none
none:none
Armadillo|
none|none
StarForce|
StarForce| none
none
none
none trace
trace
trace
trace

47d3548e36
NEW ab13346633 [0] Win2K-f 37 of 41 16:21:06 16:21:06 1 none none:none
Armadillo| none trace

14c118316b
NEW none[4] Win2K-f 40 of 41 12:43:50 12:43:50 1 none none:none
FSG| none trace

aa52a1cad3
NEW 822158a84f [0] Win2K-f 37 of 41 11:22:01 11:22:01 1 none none:none
Armadillo| none trace

a08f3b74a4
NEW none[0] WinXP 0 of 33 14:46:24 14:46:24 1 none none:none
Armadillo| 0% lines=90 trace

639ad69965
NEW
78eadbd884
NEW 84c2cecdaf [0]
480abf2e12[0] Win2K-f 40 of 41 23:29:33 23:29:33 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

405ce10c9b
NEW
87bd0a062f
NEW
b8aeb8dbdf
NEW
c7d6018f97
NEW 9f1a7125b9 [0]
dc70d9623a[0]
443b0a882b[0]
5c1d8bbd5b[0] WinXP 31 of 33 08:50:20 08:50:20 1 none none:none
none:none
none:none
none:none
Armadillo|
Armadillo|
StarForce|
tElock| none
none
none
none trace
trace
trace
trace

5865b09945
NEW 4d99f4784a [0] WinXP 36 of 38 12:52:40 12:52:40 1 none none:none
PolyEnE| none trace

5285741560
NEW 60590b8b67 [0] WinXP 37 of 40 00:37:26 00:37:26 1 none ASM:Graph
none|none 55% lines=59 trace

5a9531a716
NEW fa931579df [0] WinXP 40 of 40 10:37:19 10:37:19 1 none none:none
PolyEnE| none trace

d4f6a8418f
NEW 1c281beeea [0] WinXP 23 of 41 11:20:09 11:20:09 1 none none:none
StarForce| none trace

4e3937b86b
NEW 8ea2fdbfa2 [0] WinXP 39 of 41 13:41:21 13:41:21 1 none none:none
PolyEnE| none trace

337b3480eb
NEW
4fd9dd4880
NEW 1a253ee468 [0]
none [4] Win2K-f 0 of 41 20:33:30 20:33:30 1 none none:none
none:none
UPX|
none|none none
none trace
trace

d9cb288f31
NEW 45603a001c [0] Win2K-f 3 of 37 09:05:48 16:04:12 3 none ASM:Graph
UPX| 92% lines=174
embedded dns trace