Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

24 October 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

1c5e79f5f4
NEW
6c911f028b
NEW
a853b0a295
NEW
f725e57065
NEW none[4]
621d723e96[0]
37d19e5a58[0]
3f11911aa9[0] Win2K-f 13 of 41 05:24:14 05:38:54 2 none none:none
none:none
none:none
none:none
FSG|
tElock|
PE-PACK|
tElock| none
none
none
none trace
trace
trace
trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 32 08:59:27 13:48:38 3 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

53bfe15e91
NEW 1473091351 [0] Win2K-f
WinXP 33 of 33 08:59:27 17:05:28 4 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

d585417e21
NEW 18fb8a661f [0] Win2K-f 40 of 41 06:40:09 06:40:09 1 none none:none
none|none none trace

5d41c1a044
NEW 00efd06897 [0] WinXP 41 of 41 07:43:23 07:43:23 1 none none:none
PolyEnE| none trace

df17a625ee
NEW none[0] WinXP 29 of 29 17:43:01 17:43:01 1 none none:none
ASPack| 72% lines=298
embedded dns trace

8b41cb7a41
NEW ef18d720f3 [0] Win2K-f 3 of 41 04:58:54 04:58:54 1 none none:none
Armadillo| none trace

4e9eaac33b
NEW
ed6e4406bb
NEW 0b1b9729e8 [0]
1dc0d6c4a2[0] Win2K-f 39 of 41 21:41:42 21:41:42 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

168aab35a3
NEW
1c5e79f5f4
NEW
248f4c0ab5
NEW
667f0c59f3
NEW
6c911f028b
NEW
a4e86ca72e
NEW 60b730b97e [0]
none [4]
bfa6d4e8e5[0]
8fe2be2095[0]
621d723e96[0]
none [4] Win2K-f 0 of 41 05:24:14 05:24:14 1 none ASM:Graph
none:none
none:none
ASM:Graph
none:none
none:none
tElock|
FSG|
UPX|
Armadillo|
tElock|
none|none lines=120
embedded dns
none
none
lines=91
none
none trace
trace
trace
trace
trace
trace

9d8ec60aeb
NEW 97d170c714 [0] WinXP 29 of 29 11:39:13 11:39:13 1 none none:none
PolyEnE| none trace

1c5e79f5f4
NEW
6c911f028b
NEW
a853b0a295
NEW none[4]
621d723e96[0]
37d19e5a58[0] Win2K-f 26 of 41 05:38:54 05:38:54 1 none none:none
none:none
none:none
FSG|
tElock|
PE-PACK| none
none
none trace
trace
trace

168aab35a3
NEW 60b730b97e [0] Win2K-f 31 of 33 05:24:14 05:24:14 1 none ASM:Graph
tElock| 95% lines=120
embedded dns trace

8b41cb7a41
NEW
97fef473b9
NEW ef18d720f3 [0]
ff4e7d6992[0] Win2K-f 33 of 33 04:58:54 04:58:54 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

4ea751e441
NEW 04524d1332 [0] WinXP 40 of 41 03:11:39 03:11:39 1 none none:none
tElock| none trace

b850153581
NEW 97aa41e3e3 [0] WinXP 40 of 41 08:04:12 08:04:12 1 none none:none
PolyEnE| none trace

4e9eaac33b
NEW 0b1b9729e8 [0] Win2K-f 40 of 41 21:41:42 21:41:42 1 none none:none
tElock| none trace

9716d7995a
NEW c3a5354b6f [0] WinXP 35 of 35 07:56:00 07:56:00 1 none none:none
PolyEnE| none trace

6c9b737799
NEW none[3] Win2K-f 28 of 41 03:10:49 03:10:49 1 none none:none
UPX| none trace

168aab35a3
NEW
1c5e79f5f4
NEW
248f4c0ab5
NEW
667f0c59f3
NEW 60b730b97e [0]
none [4]
bfa6d4e8e5[0]
8fe2be2095[0] Win2K-f 31 of 33 05:24:14 05:24:14 1 none ASM:Graph
none:none
none:none
ASM:Graph
tElock|
FSG|
UPX|
Armadillo| 0% lines=120
embedded dns
none
none
lines=91 trace
trace
trace
trace

741e3b03b3
NEW none[0] WinXP 31 of 32 15:21:49 17:02:15 2 none none:none
none|none 32% lines=61 trace

1c5e79f5f4
NEW
6c911f028b
NEW none[4]
621d723e96[0] Win2K-f 18 of 41 05:24:14 05:38:54 2 none none:none
none:none
FSG|
tElock| none
none trace
trace

4ea751e441
NEW
edf686131d
NEW 04524d1332 [0]
7e512b9f7a[0] WinXP 39 of 41 03:11:39 03:11:39 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

0cfab99612
NEW none[0] WinXP 29 of 29 02:10:49 02:10:49 1 none ASM:Graph
PolyEnE| 99% lines=68 trace

7d99b0e910
NEW none[0] WinXP 26 of 28 18:03:10 18:03:10 1 none none:none
PolyEnE| 99% lines=68 trace

168aab35a3
NEW
1c5e79f5f4
NEW
248f4c0ab5
NEW 60b730b97e [0]
none [4]
bfa6d4e8e5[0] Win2K-f 7 of 41 05:24:14 05:24:14 1 none ASM:Graph
none:none
none:none
tElock|
FSG|
UPX| lines=120
embedded dns
none
none trace
trace
trace

1c5e79f5f4
NEW none[4] Win2K-f 17 of 41 05:24:14 05:38:54 2 none none:none
FSG| none trace

1a2c0e6130
NEW none[0] WinXP 29 of 29 19:18:33 19:18:33 1 none none:none
none|none 33% lines=60 trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] WinXP 0 of 33 17:05:28 17:05:28 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

b27d73bfcb
NEW 473c6454ce [0] WinXP 35 of 36 10:25:27 10:25:27 1 none ASM:Graph
PolyEnE| 100% lines=68 trace

5285741560
NEW 60590b8b67 [0] WinXP 37 of 40 18:12:07 20:11:27 3 none ASM:Graph
none|none 55% lines=59 trace

9bb68450cd
NEW c2d5ac2315 [0] WinXP 34 of 36 10:47:49 15:09:14 3 none ASM:Graph
PolyEnE| 100% lines=73
embedded dns trace

d9cb288f31
NEW 45603a001c [0] Win2K-f 3 of 37 20:53:35 20:53:35 1 none ASM:Graph
UPX| 92% lines=174
embedded dns trace