Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


21 May 2010

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
73f1082158
NEW		 none[0] Win2K-f
WinXP		 0 of 32 07:36:15 23:21:30 4 none none:none
 Armadillo| 0% lines=90 trace
bea8cb1865
NEW
f0a4409bf8
NEW
fac78fde16
NEW		 154de51a66 [0]
none [none]
882896ab05[0]		 Win2K-f 35 of 36 05:32:23 05:32:23 1 none ASM:Graph
none:none
ASM:Graph
 Armadillo|
none|none
tElock|		 96% lines=91
none
lines=126
embedded dns		 trace
none
trace
14f47ffd1e
NEW		 90bf4b99ff [0] Win2K-f 40 of 41 07:50:59 07:50:59 1 none ASM:Graph
 tElock| 96% lines=56
embedded dns		 trace
53bfe15e91
NEW		 1473091351 [0] WinXP
Win2K-f		 33 of 33 01:49:27 23:24:36 8 none ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
138360a64d
NEW
8a75955033
NEW
9276c8b36b
NEW		 none[none]
2bf3e548b9[0]
none [0]		 Win2K-f 28 of 32 04:07:48 04:07:48 1 none none:none
ASM:Graph
none:none
 none|none
tElock|
Armadillo|		 0% none
lines=126
embedded dns
lines=90		 none
trace
trace
34cbe7a593
NEW
3e83a2d4d7
NEW		 d38cb78003 [0]
b97fd63d29[0]		 Win2K-f 38 of 41 00:34:16 00:34:16 1 none ASM:Graph
ASM:Graph
 Armadillo|
tElock|		 96% lines=91
lines=64
embedded dns		 trace
trace
53bfe15e91
NEW
b7082104e4
NEW		 1473091351 [0]
c5b49e7b82[0]		 WinXP
Win2K-f		 8 of 33 01:49:27 23:24:36 2 none ASM:Graph
ASM:Graph
 tElock|
tElock|		 100% lines=75
embedded dns
lines=41		 trace
trace
365c6f7cd1
NEW		 none[none] WinXP 40 of 41 13:36:25 13:36:25 1 none none:none
 none|none none none
595716fa87
NEW		 none[none] WinXP 40 of 41 11:38:53 11:38:53 1 none none:none
 none|none none none
9bdd2c95b1
NEW		 d1bbd693ba [0] Win2K-f 39 of 41 12:00:48 12:00:48 1 none ASM:Graph
 Armadillo| 0% lines=91 trace
a5ceb6c29d
NEW		 d64cd9d18b [0] Win2K-f 40 of 41 02:03:32 02:03:32 1 none ASM:Graph
 tElock| 100% lines=42 trace
6b315f5dbc
NEW
7938865f8c
NEW		 7604b94520 [0]
a9b9e4904b[0]		 WinXP 39 of 41 04:41:35 04:41:35 1 none ASM:Graph
ASM:Graph
 tElock|
Armadillo|		 0% lines=64
embedded dns
lines=91		 trace
trace
47d3548e36
NEW
d8722af110
NEW		 ab13346633 [0]
ab30a55931[0]		 WinXP 36 of 40 14:58:29 14:58:29 1 none ASM:Graph
ASM:Graph
 Armadillo|
tElock|		 96% lines=91
lines=64
embedded dns		 trace
trace
53bfe15e91
NEW
6c28235817
NEW		 1473091351 [0]
e88650c1e2[0]		 Win2K-f 37 of 41 05:32:34 05:32:34 1 none ASM:Graph
none:none
 tElock|
Armadillo|		 lines=75
embedded dns
none		 trace
trace
912a073945
NEW		 7874c7f21e [0] WinXP 39 of 41 13:12:25 13:12:25 1 none ASM:Graph
 PolyEnE| 100% lines=68 trace
9bdd2c95b1
NEW
cd456ac095
NEW		 d1bbd693ba [0]
d75caee680[0]		 Win2K-f 39 of 40 12:00:48 12:00:48 1 none ASM:Graph
ASM:Graph
 Armadillo|
tElock|		 96% lines=91
lines=64
embedded dns		 trace
trace
10c560fc02
NEW		 none[none] Win2K-f 40 of 41 21:27:34 21:27:34 1 none none:none
 none|none none none
138360a64d
NEW
8a75955033
NEW		 none[none]
2bf3e548b9[0]		 Win2K-f 29 of 32 04:07:48 04:07:48 1 none none:none
ASM:Graph
 none|none
tElock|		 96% none
lines=126
embedded dns		 none
trace
0b951c2832
NEW		 5fe761661a [0] Win2K-f 32 of 36 04:11:49 04:11:49 1 none ASM:Graph
 Armadillo| 0% lines=91 trace
03f912899b
NEW		 none[0] WinXP 32 of 32 20:53:09 20:53:09 1 none none:none
 none|none 32% lines=64 trace
6b315f5dbc
NEW		 7604b94520 [0] WinXP 39 of 41 04:41:35 04:41:35 1 none ASM:Graph
 tElock| 96% lines=64
embedded dns		 trace
eb33ccfff8
NEW		 e732a43be0 [0] WinXP 40 of 41 19:25:19 19:25:19 1 none ASM:Graph
 none|none 57% lines=58 trace
e699383656
NEW		 none[none] WinXP 33 of 41 00:31:10 00:31:10 1 none none:none
 none|none none none
a5ceb6c29d
NEW
adadfc0e1c
NEW		 d64cd9d18b [0]
0f57439d82[0]		 Win2K-f 38 of 41 02:03:32 02:03:32 1 none ASM:Graph
ASM:Graph
 tElock|
tElock|		 96% lines=42
lines=64
embedded dns		 trace
trace
595716fa87
NEW
5e31cc8bf6
NEW		 none[none]
none [none]		 WinXP 40 of 41 11:38:53 11:38:53 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
7f60162c2c
NEW		 none[0] WinXP 25 of 25 09:16:45 18:44:58 3 none none:none
 PolyEnE| 100% lines=93
embedded dns		 trace
10c560fc02
NEW
1b8d146832
NEW		 none[none]
none [none]		 Win2K-f 40 of 41 21:27:34 21:27:34 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
34cbe7a593
NEW		 d38cb78003 [0] Win2K-f 36 of 41 00:34:16 00:34:16 1 none ASM:Graph
 Armadillo| 0% lines=91 trace
138360a64d
NEW		 none[none] Win2K-f 36 of 41 04:07:48 04:07:48 1 none none:none
 none|none none none
bea8cb1865
NEW		 154de51a66 [0] Win2K-f 32 of 36 05:32:23 05:32:23 1 none ASM:Graph
 Armadillo| 0% lines=91 trace
47d3548e36
NEW		 ab13346633 [0] WinXP 37 of 41 14:58:29 14:58:29 1 none ASM:Graph
 Armadillo| 0% lines=91 trace
5213395833
NEW		 515eacbc36 [0] Win2K-f 41 of 41 01:58:23 01:58:23 1 none ASM:Graph
 tElock| 96% lines=56
embedded dns		 trace
7d99b0e910
NEW		 none[0] WinXP 26 of 28 01:04:43 10:40:48 4 none none:none
 PolyEnE| 99% lines=68 trace
770a04a72c
NEW		 none[3] Win2K-f 15 of 41 03:44:46 03:44:46 1 none none:none
 none|none none trace
f0a4409bf8
NEW		 none[none] Win2K-f 36 of 41 05:32:23 06:01:08 2 none none:none
 none|none none none
4c6ed19a25
NEW		 none[none] Win2K-f 41 of 41 14:22:29 14:22:29 1 none none:none
 none|none none none
14f47ffd1e
NEW
50437008d9
NEW		 90bf4b99ff [0]
c1b09ac5d7[0]		 Win2K-f 5 of 41 07:50:59 07:50:59 1 none ASM:Graph
ASM:Graph
 tElock|
Armadillo|		 0% lines=56
embedded dns
lines=90		 trace
trace
5213395833
NEW
9fdf6de4a9
NEW		 515eacbc36 [0]
794f9a1087[0]		 Win2K-f 6 of 41 01:58:23 01:58:23 1 none ASM:Graph
ASM:Graph
 tElock|
Armadillo|		 0% lines=56
embedded dns
lines=90		 trace
trace
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 Win2K-f 0 of 33 11:53:12 22:10:53 2 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
b5e3c14700
NEW		 none[none] Win2K-f 36 of 41 01:02:15 01:02:15 1 none none:none
 none|none none none
2b9bc1463d
NEW		 7978e0f6fb [0] WinXP 40 of 41 10:45:45 10:45:45 1 none ASM:Graph
 PolyEnE| 100% lines=68 trace
d8040f84d4
NEW		 d683995e84 [0] WinXP 39 of 41 04:18:42 04:18:42 1 none ASM:Graph
 PolyEnE| 100% lines=73 trace
0b951c2832
NEW
e4ed4df0f0
NEW		 5fe761661a [0]
de471fc380[0]		 Win2K-f 34 of 36 04:11:49 04:11:49 1 none ASM:Graph
ASM:Graph
 Armadillo|
tElock|		 96% lines=91
lines=64
embedded dns		 trace
trace
a0139d7ad8
NEW		 none[0] WinXP 29 of 29 13:48:27 13:48:27 1 none none:none
 PolyEnE| 99% lines=68 trace
1e4f8f9259
NEW		 e73db583fd [0] Win2K-f 40 of 41 14:05:03 14:05:03 1 none ASM:Graph
 none|none 98% lines=546 trace
d9cb288f31
NEW		 45603a001c [0] Win2K-f 3 of 37 21:38:05 22:26:57 3 none ASM:Graph
 UPX| 92% lines=174
embedded dns		 trace