Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

24 January 2010

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

4c3df24b32
NEW none[0] WinXP 0 of 33 17:27:59 17:27:59 1 none ASM:Graph
Armadillo| 47% lines=81 trace

8a75955033
NEW
9276c8b36b
NEW
a2ce42b73d
NEW 2bf3e548b9 [0]
none [0]
none [none] Win2K-f 11 of 41 04:25:55 18:53:34 4 none ASM:Graph
ASM:Graph
none:none
tElock|
Armadillo|
none|none lines=126
embedded dns
lines=81
none trace
trace
none

7f60162c2c
NEW none[0] WinXP 25 of 25 23:32:56 23:32:56 1 none none:none
PolyEnE| 100% lines=93
embedded dns trace

7e0094743a
NEW none[none] Win2K-f 17 of 41 04:25:55 04:58:07 2 none none:none
none|none none none

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 32 00:55:40 19:22:50 4 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

11ccf83448
NEW none[none] WinXP 33 of 41 08:37:04 08:37:04 1 none none:none
none|none none none

53bfe15e91
NEW 1473091351 [0] Win2K-f
WinXP 33 of 33 00:55:40 23:00:25 15 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

8a75955033
NEW
9276c8b36b
NEW 2bf3e548b9 [0]
none [0] Win2K-f 28 of 32 18:53:34 18:53:34 1 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 47% lines=126
embedded dns
lines=81 trace
trace

6ec2a8994b
NEW
7e0094743a
NEW
8a65feb98c
NEW
a2ce42b73d
NEW
a744dfe863
NEW 398aab9636 [0]
none [none]
none [none]
none [none]
none [none] Win2K-f 9 of 41 04:25:55 04:25:55 1 none none:none
none:none
none:none
none:none
none:none
tElock|
none|none
none|none
none|none
none|none none
none
none
none
none trace
none
none
none
none

973b7d1bee
NEW 922ddaf1ee [0] WinXP 40 of 41 23:38:24 23:38:24 1 none none:none
PolyEnE| none trace

87e1117f2a
NEW 3ff643aae6 [0] Win2K-f 32 of 33 10:57:55 10:57:55 1 none none:none
tElock| none trace

07fabc79ef
NEW none[0] Win2K-f 0 of 32 01:52:20 10:11:29 3 none ASM:Graph
Armadillo| 47% lines=81 trace

6ec2a8994b
NEW 398aab9636 [0] Win2K-f 30 of 33 04:25:55 04:25:55 1 none none:none
tElock| none trace

5213395833
NEW 515eacbc36 [0] WinXP 41 of 41 21:56:13 21:56:13 1 none none:none
tElock| none trace

9bdd2c95b1
NEW d1bbd693ba [0] Win2K-f 39 of 41 21:12:40 21:12:40 1 none none:none
Armadillo| none trace

6ec2a8994b
NEW
7e0094743a
NEW
8a65feb98c
NEW
a2ce42b73d
NEW
a744dfe863
NEW
b85291c8ef
NEW 398aab9636 [0]
none [none]
none [none]
none [none]
none [none]
none [none] Win2K-f 7 of 41 04:25:55 04:25:55 1 none none:none
none:none
none:none
none:none
none:none
none:none
tElock|
none|none
none|none
none|none
none|none
none|none none
none
none
none
none
none trace
none
none
none
none
none

18727a186e
NEW 1ea861ccfa [0] Win2K-f 3 of 41 01:21:30 01:21:30 1 none none:none
Armadillo| none trace

6ec2a8994b
NEW
7e0094743a
NEW
8a65feb98c
NEW
a2ce42b73d
NEW
a744dfe863
NEW
b85291c8ef
NEW
bcf66a38c8
NEW 398aab9636 [0]
none [none]
none [none]
none [none]
none [none]
none [none]
570133b348[0] Win2K-f 2 of 35 04:25:55 04:25:55 1 none none:none
none:none
none:none
none:none
none:none
none:none
none:none
tElock|
none|none
none|none
none|none
none|none
none|none
Armadillo| none
none
none
none
none
none
none trace
none
none
none
none
none
trace

474acf88e5
NEW 1f53944b24 [0] WinXP 38 of 40 19:53:42 19:53:42 1 none none:none
tElock| none trace

5213395833
NEW
9fdf6de4a9
NEW 515eacbc36 [0]
794f9a1087[0] WinXP 6 of 41 21:56:13 21:56:13 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] WinXP
Win2K-f 0 of 33 00:59:29 23:00:25 7 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

9bdd2c95b1
NEW
cd456ac095
NEW d1bbd693ba [0]
d75caee680[0] Win2K-f 39 of 40 21:12:40 21:12:40 1 none none:none
none:none
Armadillo|
tElock| none
none trace
trace

41a9bb65c8
NEW none[none] Win2K-f 39 of 40 14:04:58 14:04:58 1 none none:none
none|none none none

6ec2a8994b
NEW
7e0094743a
NEW
8a65feb98c
NEW
a2ce42b73d
NEW
a744dfe863
NEW
b85291c8ef
NEW
bcf66a38c8
NEW
ccbaf89629
NEW 398aab9636 [0]
none [none]
none [none]
none [none]
none [none]
none [none]
570133b348[0]
none [none] Win2K-f 0 of 41 04:25:55 04:25:55 1 none none:none
none:none
none:none
none:none
none:none
none:none
none:none
none:none
tElock|
none|none
none|none
none|none
none|none
none|none
Armadillo|
none|none none
none
none
none
none
none
none
none trace
none
none
none
none
none
trace
none

474acf88e5
NEW
68f0c14692
NEW 1f53944b24 [0]
ccc1b24d53[0] WinXP 38 of 40 19:53:42 19:53:42 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

ce28648035
NEW 126d2f4655 [0] Win2K-f 34 of 39 23:16:40 23:16:40 1 none ASM:Graph
none|none 98% lines=546 trace

8a75955033
NEW 2bf3e548b9 [0] Win2K-f 29 of 32 18:53:34 18:53:34 1 none ASM:Graph
tElock| 96% lines=126
embedded dns trace

03f912899b
NEW none[0] WinXP 32 of 32 16:50:00 16:50:00 1 none none:none
none|none 32% lines=64 trace

fbdcccdaae
NEW none[none] WinXP 38 of 41 13:01:58 13:01:58 1 none none:none
none|none none none

87e1117f2a
NEW
8a65feb98c
NEW
a2ce42b73d
NEW
b4fe4581c3
NEW 3ff643aae6 [0]
none [none]
none [none]
599b835896[0] Win2K-f 29 of 33 10:57:55 10:57:55 1 none none:none
none:none
none:none
none:none
tElock|
none|none
none|none
Armadillo| none
none
none
none trace
none
none
trace

87e1117f2a
NEW
8a65feb98c
NEW 3ff643aae6 [0]
none [none] Win2K-f 19 of 41 04:25:55 10:57:55 3 none none:none
none:none
tElock|
none|none none
none trace
none

d9cb288f31
NEW 45603a001c [0] Win2K-f 3 of 37 00:06:45 20:10:41 6 none ASM:Graph
UPX| 92% lines=174
embedded dns trace