Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


19 November 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
53bfe15e91
NEW
73f1082158
NEW		 1473091351 [0]
none [0]		 Win2K-f
WinXP		 0 of 32 02:10:03 08:16:13 3 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
1c5e79f5f4
NEW
785e86954f
NEW
83192a6119
NEW		 none[4]
c6edee8e8b[0]
fdc95e1fab[0]		 Win2K-f
WinXP		 15 of 41 00:18:36 20:10:07 3 none none:none
none:none
none:none
 FSG|
PeStubOEP|
none|none		 none
none
none		 trace
trace
trace
14f47ffd1e
NEW		 90bf4b99ff [0] WinXP 40 of 41 03:30:34 03:30:34 1 none none:none
 tElock| none trace
53bfe15e91
NEW		 1473091351 [0] Win2K-f
WinXP		 33 of 33 02:10:03 22:31:46 8 none ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
785e86954f
NEW
83192a6119
NEW
8a75955033
NEW
9276c8b36b
NEW		 c6edee8e8b [0]
fdc95e1fab[0]
2bf3e548b9[0]
none [0]		 Win2K-f 28 of 32 00:18:36 00:18:36 1 none none:none
none:none
ASM:Graph
ASM:Graph
 PeStubOEP|
none|none
tElock|
Armadillo|		 47% none
none
lines=126
embedded dns
lines=81		 trace
trace
trace
trace
5e3a9c2d9d
NEW		 dbc48b815a [0] Win2K-f 40 of 41 09:52:42 09:52:42 1 none none:none
 tElock| none trace
1c5e79f5f4
NEW
785e86954f
NEW
83192a6119
NEW
87e1117f2a
NEW		 none[4]
c6edee8e8b[0]
fdc95e1fab[0]
3ff643aae6[0]		 Win2K-f 32 of 33 20:10:07 20:10:07 1 none none:none
none:none
none:none
none:none
 FSG|
PeStubOEP|
none|none
tElock|		 none
none
none
none		 trace
trace
trace
trace
07fabc79ef
NEW		 none[0] Win2K-f 0 of 32 06:36:25 06:36:25 1 none ASM:Graph
 Armadillo| 47% lines=81 trace
1c5e79f5f4
NEW
37795a29d0
NEW
785e86954f
NEW
7bc8d57d8c
NEW
821accf421
NEW
83192a6119
NEW
b950c2f278
NEW		 none[4]
none [none]
c6edee8e8b[0]
be025ab204[0]
none [none]
fdc95e1fab[0]
none [none]		 WinXP 12 of 41 18:21:07 18:21:07 1 none none:none
none:none
none:none
none:none
none:none
none:none
none:none
 FSG|
none|none
PeStubOEP|
none|none
none|none
none|none
none|none		 none
none
none
none
none
none
none		 trace
none
trace
trace
none
trace
none
df17a625ee
NEW		 none[0] WinXP 29 of 29 11:54:17 11:54:17 1 none none:none
 ASPack| 72% lines=298
embedded dns		 trace
555fe42b9d
NEW		 none[none] Win2K-f 38 of 40 11:40:24 11:40:24 1 none none:none
 none|none none none
53bfe15e91
NEW
b7082104e4
NEW		 1473091351 [0]
c5b49e7b82[0]		 Win2K-f 8 of 33 18:16:10 18:16:10 1 none ASM:Graph
ASM:Graph
 tElock|
tElock|		 100% lines=75
embedded dns
lines=41		 trace
trace
b2c6d4a8bb
NEW		 none[none] WinXP 39 of 41 07:48:15 07:48:15 1 none none:none
 none|none none none
a37cd9a568
NEW
e3e0aa4c3c
NEW		 none[none]
none [none]		 WinXP 39 of 41 12:37:54 12:37:54 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
b502f83a7c
NEW		 28f5be93b0 [0] WinXP 32 of 32 05:50:02 05:50:02 1 none none:none
 PolyEnE| none trace
4d429bb27b
NEW		 none[none] WinXP 38 of 41 06:57:03 06:57:03 1 none none:none
 none|none none none
912a073945
NEW		 7874c7f21e [0] WinXP 39 of 41 05:36:01 05:36:01 1 none none:none
 PolyEnE| none trace
785e86954f
NEW
83192a6119
NEW
8a75955033
NEW		 c6edee8e8b [0]
fdc95e1fab[0]
2bf3e548b9[0]		 Win2K-f 29 of 32 00:18:36 00:18:36 1 none none:none
none:none
ASM:Graph
 PeStubOEP|
none|none
tElock|		 96% none
none
lines=126
embedded dns		 trace
trace
trace
03f912899b
NEW		 none[0] WinXP 32 of 32 09:23:58 09:23:58 1 none none:none
 none|none 32% lines=64 trace
329832e822
NEW		 none[none] WinXP 38 of 41 19:15:44 19:15:44 1 none none:none
 none|none none none
1c5e79f5f4
NEW
37795a29d0
NEW		 none[4]
none [none]		 WinXP 6 of 41 18:21:07 18:21:07 1 none none:none
none:none
 FSG|
none|none		 none
none		 trace
none
9716d7995a
NEW		 c3a5354b6f [0] WinXP 35 of 35 07:54:23 07:54:23 1 none none:none
 PolyEnE| none trace
4c3df24b32
NEW		 none[0] Win2K-f 0 of 33 08:39:49 08:39:49 1 none ASM:Graph
 Armadillo| 47% lines=81 trace
1c5e79f5f4
NEW
37795a29d0
NEW
785e86954f
NEW
7bc8d57d8c
NEW
821accf421
NEW		 none[4]
none [none]
c6edee8e8b[0]
be025ab204[0]
none [none]		 WinXP 11 of 41 18:21:07 18:21:07 1 none none:none
none:none
none:none
none:none
none:none
 FSG|
none|none
PeStubOEP|
none|none
none|none		 none
none
none
none
none		 trace
none
trace
trace
none
02674c9a56
NEW
25eae40389
NEW		 0da2cae967 [0]
1e0aae0aeb[0]		 WinXP 38 of 41 09:19:15 09:19:15 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
329832e822
NEW
33acd5f772
NEW		 none[none]
none [none]		 WinXP 38 of 41 19:15:44 19:15:44 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
1c5e79f5f4
NEW
37795a29d0
NEW
785e86954f
NEW
7bc8d57d8c
NEW		 none[4]
none [none]
c6edee8e8b[0]
be025ab204[0]		 WinXP 38 of 40 18:21:07 18:21:07 1 none none:none
none:none
none:none
none:none
 FSG|
none|none
PeStubOEP|
none|none		 none
none
none
none		 trace
none
trace
trace
8ab0fb88b8
NEW		 968cc91789 [0] WinXP 39 of 40 20:54:37 20:54:37 1 none none:none
 none|none none trace
07cd99a10b
NEW		 none[none] WinXP 40 of 41 10:06:07 10:06:07 1 none none:none
 none|none none none
3ae357d17b
NEW		 none[0] WinXP 29 of 29 17:19:14 17:19:14 1 none ASM:Graph
 PolyEnE| 99% lines=73 trace
02674c9a56
NEW		 0da2cae967 [0] WinXP 39 of 41 09:19:15 09:19:15 1 none none:none
 tElock| none trace
5e3a9c2d9d
NEW
630308d06b
NEW		 dbc48b815a [0]
847d302e37[0]		 Win2K-f 39 of 41 09:52:42 09:52:42 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
7d99b0e910
NEW		 none[0] WinXP 26 of 28 17:05:42 18:30:40 3 none none:none
 PolyEnE| 99% lines=68 trace
1c5e79f5f4
NEW
785e86954f
NEW		 none[4]
c6edee8e8b[0]		 Win2K-f
WinXP		 29 of 41 00:18:36 20:10:07 3 none none:none
none:none
 FSG|
PeStubOEP|		 none
none		 trace
trace
1c5e79f5f4
NEW		 none[4] WinXP
Win2K-f		 17 of 41 18:21:07 20:10:07 2 none none:none
 FSG| none trace
1a2c0e6130
NEW		 none[0] WinXP 29 of 29 03:46:09 03:46:09 1 none none:none
 none|none 33% lines=60 trace
14f47ffd1e
NEW
50437008d9
NEW		 90bf4b99ff [0]
c1b09ac5d7[0]		 WinXP 5 of 41 03:30:34 03:30:34 1 none none:none
none:none
 tElock|
Armadillo|		 none
none		 trace
trace
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 Win2K-f 0 of 33 13:26:16 22:31:46 2 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
a37cd9a568
NEW		 none[none] WinXP 39 of 41 12:37:54 12:37:54 1 none none:none
 none|none none none
d53d2baf56
NEW		 none[none] WinXP 39 of 41 11:15:13 11:15:13 1 none none:none
 none|none none none
1c5e79f5f4
NEW
37795a29d0
NEW
785e86954f
NEW
7bc8d57d8c
NEW
821accf421
NEW
83192a6119
NEW
b950c2f278
NEW
f91ada07e0
NEW		 none[4]
none [none]
c6edee8e8b[0]
be025ab204[0]
none [none]
fdc95e1fab[0]
none [none]
none [none]		 WinXP 14 of 41 18:21:07 18:21:07 1 none none:none
none:none
none:none
none:none
none:none
none:none
none:none
none:none
 FSG|
none|none
PeStubOEP|
none|none
none|none
none|none
none|none
none|none		 none
none
none
none
none
none
none
none		 trace
none
trace
trace
none
trace
none
none
61ab3a71eb
NEW		 none[none] WinXP 39 of 41 10:29:56 10:29:56 1 none none:none
 none|none none none
5285741560
NEW		 60590b8b67 [0] WinXP 37 of 40 19:05:48 19:05:48 1 none ASM:Graph
 none|none 55% lines=59 trace
1c5e79f5f4
NEW
785e86954f
NEW
83192a6119
NEW
87e1117f2a
NEW
b4fe4581c3
NEW		 none[4]
c6edee8e8b[0]
fdc95e1fab[0]
3ff643aae6[0]
599b835896[0]		 Win2K-f 29 of 33 20:10:07 20:10:07 1 none none:none
none:none
none:none
none:none
none:none
 FSG|
PeStubOEP|
none|none
tElock|
Armadillo|		 none
none
none
none
none		 trace
trace
trace
trace
trace