Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

04 December 2009

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

9ce56f9f19
NEW 261c9da48f [0] Win2K-f 39 of 41 20:58:27 20:58:27 1 none none:none
StarForce| none trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 32 02:50:56 22:22:35 9 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

3fc86a2f40
NEW none[none] Win2K-f 40 of 41 21:18:39 21:18:39 1 none none:none
none|none none none

3d174375ea
NEW
785e86954f
NEW
99d68b5c5b
NEW
9b6ea363eb
NEW
bea8cb1865
NEW
efb275f9df
NEW
fac78fde16
NEW none[none]
c6edee8e8b[0]
none [none]
none [none]
154de51a66[0]
none [none]
882896ab05[0] WinXP 35 of 36 14:31:46 14:31:46 1 none none:none
none:none
none:none
none:none
ASM:Graph
none:none
none:none
none|none
PeStubOEP|
none|none
none|none
Armadillo|
none|none
tElock| none
none
none
none
lines=91
none
none none
trace
none
none
trace
none
trace

97e402001a
NEW none[none] WinXP 39 of 41 07:10:11 07:10:11 1 none none:none
none|none none none

53bfe15e91
NEW 1473091351 [0] Win2K-f
WinXP 33 of 33 02:50:56 22:22:35 21 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

07fabc79ef
NEW none[0] Win2K-f 0 of 32 14:59:15 14:59:15 1 none ASM:Graph
Armadillo| 47% lines=81 trace

3d174375ea
NEW
785e86954f
NEW
99d68b5c5b
NEW
9b6ea363eb
NEW
bea8cb1865
NEW
efb275f9df
NEW none[none]
c6edee8e8b[0]
none [none]
none [none]
154de51a66[0]
none [none] WinXP 10 of 41 14:31:46 14:31:46 1 none none:none
none:none
none:none
none:none
ASM:Graph
none:none
none|none
PeStubOEP|
none|none
none|none
Armadillo|
none|none none
none
none
none
lines=91
none none
trace
none
none
trace
none

8015c2d45f
NEW 749cbc2739 [0] WinXP 40 of 41 18:41:28 18:41:28 1 none none:none
PolyEnE| none trace

53bfe15e91
NEW
b7082104e4
NEW 1473091351 [0]
c5b49e7b82[0] Win2K-f
WinXP 8 of 33 08:55:41 17:01:39 4 none ASM:Graph
ASM:Graph
tElock|
tElock| 100% lines=75
embedded dns
lines=41 trace
trace

7dd92cbd4b
NEW none[none] WinXP 41 of 41 09:30:17 09:30:17 1 none none:none
none|none none none

9bdd2c95b1
NEW none[none] Win2K-f 39 of 41 10:51:18 10:51:18 1 none none:none
none|none none none

3d174375ea
NEW
785e86954f
NEW
99d68b5c5b
NEW none[none]
c6edee8e8b[0]
none [none] WinXP 18 of 41 14:31:46 14:31:46 1 none none:none
none:none
none:none
none|none
PeStubOEP|
none|none none
none
none none
trace
none

288edf00ad
NEW 5c93343272 [0] Win2K-f 39 of 41 22:19:35 22:19:35 1 none none:none
StarForce| none trace

912a073945
NEW 7874c7f21e [0] WinXP 39 of 41 17:09:03 17:09:03 1 none none:none
PolyEnE| none trace

9bdd2c95b1
NEW
cd456ac095
NEW none[none]
none [none] Win2K-f 39 of 40 10:51:18 10:51:18 1 none none:none
none:none
none|none
none|none none
none none
none

3d174375ea
NEW
533d15b5ce
NEW none[none]
c67adf46e2[0] Win2K-f 30 of 33 06:21:32 06:21:32 1 none none:none
ASM:Graph
none|none
tElock| 96% none
lines=126
embedded dns none
trace

14c958f874
NEW
3d174375ea
NEW
785e86954f
NEW
99b248336f
NEW none[none]
none [none]
c6edee8e8b[0]
c64bd1a776[0] Win2K-f 34 of 36 00:19:14 00:19:14 1 none none:none
none:none
none:none
none:none
none|none
none|none
PeStubOEP|
Armadillo| none
none
none
none none
none
trace
trace

154e28f846
NEW 4d85da80b1 [0] Win2K-f 40 of 41 09:54:37 09:54:37 1 none none:none
none|none none trace

ca8bd5c40e
NEW 9cb687217f [0] WinXP 40 of 41 12:24:54 12:24:54 1 none none:none
PolyEnE| none trace

7f60162c2c
NEW none[0] WinXP 25 of 25 14:15:06 14:15:06 1 none none:none
PolyEnE| 100% lines=93
embedded dns trace

b0bcbc2d7c
NEW none[none] WinXP 39 of 41 05:15:45 05:15:45 1 none none:none
none|none none none

741e3b03b3
NEW none[0] WinXP 31 of 32 19:21:39 19:21:39 1 none none:none
none|none 32% lines=61 trace

01c4a6b3eb
NEW dd524b0259 [0] WinXP 40 of 41 11:25:52 11:25:52 1 none none:none
PolyEnE| none trace

3d174375ea
NEW
785e86954f
NEW
99d68b5c5b
NEW
9b6ea363eb
NEW
bea8cb1865
NEW none[none]
c6edee8e8b[0]
none [none]
none [none]
154de51a66[0] WinXP 32 of 36 14:31:46 14:31:46 1 none none:none
none:none
none:none
none:none
ASM:Graph
none|none
PeStubOEP|
none|none
none|none
Armadillo| 0% none
none
none
none
lines=91 none
trace
none
none
trace

831f4ee0a7
NEW none[0] WinXP 29 of 29 10:57:06 10:57:06 1 none ASM:Graph
none|none 100% lines=61 trace

3d174375ea
NEW
533d15b5ce
NEW
58c343a8d8
NEW none[none]
c67adf46e2[0]
none [0] Win2K-f 28 of 33 06:21:32 06:21:32 1 none none:none
ASM:Graph
none:none
none|none
tElock|
Armadillo| 0% none
lines=126
embedded dns
lines=91 none
trace
trace

4180c19d91
NEW
b6e91e001c
NEW 9f3f2de385 [0]
d2275a6cf5[0] Win2K-f 38 of 41 10:33:29 10:33:29 1 none none:none
none:none
Armadillo|
PolyEnE| none
none trace
trace

3d174375ea
NEW none[none] Win2K-f
WinXP 31 of 41 00:19:14 14:31:46 3 none none:none
none|none none none

3d174375ea
NEW
785e86954f
NEW
99d68b5c5b
NEW
9b6ea363eb
NEW none[none]
c6edee8e8b[0]
none [none]
none [none] Win2K-f
WinXP 23 of 41 00:19:14 14:31:46 2 none none:none
none:none
none:none
none:none
none|none
PeStubOEP|
none|none
none|none none
none
none
none none
trace
none
none

14c958f874
NEW none[none] Win2K-f 4 of 41 00:19:14 00:19:14 1 none none:none
none|none none none

3d174375ea
NEW
785e86954f
NEW none[none]
c6edee8e8b[0] Win2K-f
WinXP 29 of 41 00:19:14 14:31:46 3 none none:none
none:none
none|none
PeStubOEP| none
none none
trace

4e482110e9
NEW none[none] Win2K-f 18 of 41 12:54:39 12:54:39 1 none none:none
none|none none none

deffdf68e8
NEW 2b011e15ba [0] Win2K-f 34 of 41 04:55:36 04:55:36 1 none none:none
StarForce| none trace

57ce4acac2
NEW none[0] Win2K-f 0 of 33 21:50:48 21:50:48 1 none none:none
Armadillo| 0% lines=90 trace

9d94bc6743
NEW a42cc1cd6b [0] WinXP 39 of 41 18:21:17 18:21:17 1 none none:none
PolyEnE| none trace

474acf88e5
NEW 1f53944b24 [0] WinXP 38 of 40 11:33:04 11:33:04 1 none none:none
tElock| none trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 33 05:17:21 16:51:10 7 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

474acf88e5
NEW
68f0c14692
NEW 1f53944b24 [0]
ccc1b24d53[0] WinXP 38 of 40 11:33:04 11:33:04 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

ed96c03ca8
NEW c0028e9e98 [0] WinXP 39 of 41 09:51:47 09:51:47 1 none none:none
PolyEnE| none trace

4180c19d91
NEW 9f3f2de385 [0] Win2K-f 37 of 41 10:33:29 10:33:29 1 none none:none
Armadillo| none trace

14c958f874
NEW
3d174375ea
NEW
785e86954f
NEW
99b248336f
NEW
9b6ea363eb
NEW
9d677c3f70
NEW none[none]
none [none]
c6edee8e8b[0]
c64bd1a776[0]
none [none]
77e75ff10f[0] Win2K-f 29 of 32 00:19:14 00:19:14 1 none none:none
none:none
none:none
none:none
none:none
none:none
none|none
none|none
PeStubOEP|
Armadillo|
none|none
tElock| none
none
none
none
none
none none
none
trace
trace
none
trace

3d174375ea
NEW
533d15b5ce
NEW
58c343a8d8
NEW
785e86954f
NEW
c44b28de51
NEW none[none]
c67adf46e2[0]
none [0]
c6edee8e8b[0]
none [none] Win2K-f 18 of 40 06:21:32 06:21:32 1 none none:none
ASM:Graph
none:none
none:none
none:none
none|none
tElock|
Armadillo|
PeStubOEP|
none|none none
lines=126
embedded dns
lines=91
none
none none
trace
trace
trace
none

d9cb288f31
NEW 45603a001c [0] Win2K-f 3 of 37 16:46:23 17:01:28 2 none ASM:Graph
UPX| 92% lines=174
embedded dns trace

633319e478
NEW none[none] Win2K-f 29 of 39 12:22:12 12:22:12 1 none none:none
none|none none none