Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

21 October 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

72134e4b44
NEW 28c60e99a7 [0] WinXP 41 of 41 11:34:21 11:34:21 1 none none:none
PolyEnE| none trace

3b3a6d7615
NEW ed7beb96f5 [0] Win2K-f 39 of 41 00:27:25 00:27:25 1 none none:none
Armadillo| none trace

5403724951
NEW 44ee5f83ba [0] Win2K-f 40 of 41 17:27:00 17:27:00 1 none none:none
tElock| none trace

3e6f5c2878
NEW
533d15b5ce
NEW
58c343a8d8
NEW
f725e57065
NEW a14706e352 [0]
c67adf46e2[0]
none [0]
3f11911aa9[0] Win2K-f
WinXP 13 of 41 03:31:32 17:04:28 3 none none:none
ASM:Graph
none:none
none:none
FSG|
tElock|
Armadillo|
tElock| none
lines=126
embedded dns
lines=91
none trace
trace
trace
trace

5403724951
NEW
6494cbd582
NEW 44ee5f83ba [0]
adcb56d0cb[0] Win2K-f 39 of 41 17:27:00 17:27:00 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 32 03:12:53 22:06:04 4 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

53bfe15e91
NEW 1473091351 [0] WinXP
Win2K-f 33 of 33 02:00:51 22:06:04 9 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

07fabc79ef
NEW none[0] WinXP 0 of 32 02:00:51 02:00:51 1 none ASM:Graph
Armadillo| 47% lines=81 trace

471baae627
NEW
df9d3ed316
NEW ab1997f348 [0]
366478534d[0] Win2K-f 40 of 41 14:12:58 14:12:58 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

53bfe15e91
NEW
b7082104e4
NEW 1473091351 [0]
c5b49e7b82[0] WinXP 8 of 33 09:28:50 09:28:50 1 none ASM:Graph
ASM:Graph
tElock|
tElock| 100% lines=75
embedded dns
lines=41 trace
trace

0107259495
NEW
18dfbbc85b
NEW
1c5e79f5f4
NEW
9c20944d61
NEW
9cb6b0c63b
NEW
ec42c1334f
NEW none[4]
4f6fcecea3[0]
none [4]
0bf3a9d27b[0]
7edfa9b0f8[0]
d6868cc552[0] WinXP 10 of 41 06:20:43 06:20:43 1 none none:none
none:none
none:none
ASM:Graph
none:none
none:none
none|none
UPX|
FSG|
PolyEnE|
StarForce|
StarForce| none
none
none
lines=134
none
none trace
trace
trace
trace
trace
trace

b502f83a7c
NEW 28f5be93b0 [0] WinXP 32 of 32 17:59:00 17:59:00 1 none none:none
PolyEnE| none trace

d42c1cc7c0
NEW none[0] WinXP 29 of 29 09:47:47 09:47:47 1 none ASM:Graph
PolyEnE| 100% lines=54 trace

3e6f5c2878
NEW
533d15b5ce
NEW a14706e352 [0]
c67adf46e2[0] Win2K-f 30 of 33 03:31:32 17:04:28 2 none none:none
ASM:Graph
FSG|
tElock| 96% none
lines=126
embedded dns trace
trace

9716d7995a
NEW c3a5354b6f [0] WinXP 35 of 35 18:35:43 18:35:43 1 none none:none
PolyEnE| none trace

398caf7316
NEW 6ac15bfbb3 [0] WinXP 38 of 41 04:25:51 04:25:51 1 none none:none
PolyEnE| none trace

741e3b03b3
NEW none[0] WinXP 31 of 32 02:33:48 02:33:48 1 none none:none
none|none 32% lines=61 trace

533d15b5ce
NEW
58c343a8d8
NEW
f725e57065
NEW
ff88da0c98
NEW c67adf46e2 [0]
none [0]
3f11911aa9[0]
3a4805c89d[0] Win2K-f 18 of 41 03:31:32 03:31:32 1 none ASM:Graph
none:none
none:none
none:none
tElock|
Armadillo|
tElock|
FSG| lines=126
embedded dns
lines=91
none
none trace
trace
trace
trace

471baae627
NEW ab1997f348 [0] Win2K-f 39 of 41 14:12:58 14:12:58 1 none none:none
Armadillo| none trace

024410ad21
NEW
b0cedd71bb
NEW 96d0267b80 [0]
f6e156bdca[0] WinXP 38 of 40 15:35:53 15:35:53 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

0107259495
NEW
18dfbbc85b
NEW none[4]
4f6fcecea3[0] WinXP 7 of 41 06:20:43 06:20:43 1 none none:none
none:none
none|none
UPX| none
none trace
trace

3e6f5c2878
NEW
533d15b5ce
NEW
58c343a8d8
NEW a14706e352 [0]
c67adf46e2[0]
none [0] Win2K-f 28 of 33 03:31:32 17:04:28 2 none none:none
ASM:Graph
none:none
FSG|
tElock|
Armadillo| 0% none
lines=126
embedded dns
lines=91 trace
trace
trace

0107259495
NEW
18dfbbc85b
NEW
1c5e79f5f4
NEW
9c20944d61
NEW
9cb6b0c63b
NEW none[4]
4f6fcecea3[0]
none [4]
0bf3a9d27b[0]
7edfa9b0f8[0] WinXP 7 of 41 06:20:43 06:20:43 1 none none:none
none:none
none:none
ASM:Graph
none:none
none|none
UPX|
FSG|
PolyEnE|
StarForce| none
none
none
lines=134
none trace
trace
trace
trace
trace

17028f1eda
NEW none[3] WinXP 31 of 32 16:50:02 16:50:02 1 none none:none
tElock| none trace

3e6f5c2878
NEW a14706e352 [0] Win2K-f 16 of 41 17:04:28 17:04:28 1 none none:none
FSG| none trace

53bfe15e91
NEW
57ce4acac2
NEW 1473091351 [0]
none [0] Win2K-f 0 of 33 05:47:37 05:47:37 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

b8f53b4800
NEW
e9ef6d378d
NEW 4208eb65f3 [0]
72080f1764[0] WinXP 38 of 41 00:39:35 00:39:35 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

024410ad21
NEW 96d0267b80 [0] WinXP 40 of 41 15:35:53 15:35:53 1 none none:none
tElock| none trace

0107259495
NEW
18dfbbc85b
NEW
1c5e79f5f4
NEW none[4]
4f6fcecea3[0]
none [4] WinXP 17 of 41 06:20:43 06:20:43 1 none none:none
none:none
none:none
none|none
UPX|
FSG| none
none
none trace
trace
trace

1a2c0e6130
NEW none[0] WinXP 29 of 29 21:31:51 21:31:51 1 none none:none
none|none 33% lines=60 trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] Win2K-f 0 of 33 02:58:30 08:17:49 3 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

3b3a6d7615
NEW
b7a694b220
NEW ed7beb96f5 [0]
9f0354af30[0] Win2K-f 40 of 41 00:27:25 00:27:25 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

b8f53b4800
NEW 4208eb65f3 [0] WinXP 39 of 41 00:39:35 00:39:35 1 none none:none
tElock| none trace

0107259495
NEW
18dfbbc85b
NEW
1c5e79f5f4
NEW
9c20944d61
NEW none[4]
4f6fcecea3[0]
none [4]
0bf3a9d27b[0] WinXP 37 of 39 06:20:43 06:20:43 1 none none:none
none:none
none:none
ASM:Graph
none|none
UPX|
FSG|
PolyEnE| 100% none
none
none
lines=134 trace
trace
trace
trace

624d43be60
NEW 3caff61b75 [0] WinXP 38 of 40 05:56:36 05:56:36 1 none ASM:Graph
PolyEnE| 100% lines=68 trace

0107259495
NEW none[4] WinXP 0 of 41 06:20:43 06:20:43 1 none none:none
none|none none trace

5285741560
NEW 60590b8b67 [0] WinXP 37 of 40 07:48:46 07:48:46 1 none ASM:Graph
none|none 55% lines=59 trace

a0139d7ad8
NEW none[0] WinXP 29 of 29 06:22:49 06:22:49 1 none none:none
PolyEnE| 99% lines=68 trace

9bb68450cd
NEW c2d5ac2315 [0] WinXP 34 of 36 06:38:34 06:38:34 1 none ASM:Graph
PolyEnE| 100% lines=73
embedded dns trace