Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

29 July 2010

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

ecfbf321d3
NEW none[none] Win2K-f 38 of 41 21:06:04 21:06:04 1 none none:none
none|none none none

5d445c59d8
NEW
69325e465b
NEW 892e12db7b [0]
none [none] Win2K-f 39 of 42 02:52:07 02:52:07 1 none ASM:Graph
none:none
tElock|
none|none lines=64
embedded dns
none trace
none

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] Win2K-f 0 of 32 17:31:13 17:31:13 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

a72398081f
NEW 3f0ad45d1c [0] Win2K-f 34 of 40 16:51:22 16:51:22 1 none ASM:Graph
tElock| 0% lines=10 trace

ec90ec15db
NEW 7b0ab2b387 [0] Win2K-f 38 of 41 17:34:05 17:34:05 1 none ASM:Graph
none|none 98% lines=546 trace

53bfe15e91
NEW 1473091351 [0] Win2K-f
WinXP 33 of 33 08:48:13 23:02:01 5 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

14f47ffd1e
NEW 90bf4b99ff [0] WinXP 40 of 41 05:43:03 05:43:03 1 none ASM:Graph
tElock| 96% lines=56
embedded dns trace

df17a625ee
NEW none[0] WinXP 29 of 29 04:53:39 04:53:39 1 none none:none
ASPack| 72% lines=298
embedded dns trace

3e4757e60f
NEW
7d765e7015
NEW none[none]
none [none] WinXP 22 of 42 21:42:56 21:42:56 1 none none:none
none:none
none|none
none|none none
none none
none

53aa804019
NEW
95ddd4a823
NEW 29c6cdbf45 [0]
9e78315a6d[0] Win2K-f 39 of 41 05:01:28 05:01:28 1 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 0% lines=64
embedded dns
lines=91 trace
trace

beb4580c06
NEW none[none] WinXP 40 of 42 21:53:54 21:53:54 1 none none:none
none|none none none

8583b476c4
NEW
b6a8e96230
NEW none[none]
none [none] Win2K-f 38 of 41 12:27:56 12:27:56 1 none none:none
none:none
none|none
none|none none
none none
none

5c6df5141d
NEW none[none] WinXP 41 of 41 14:00:11 14:00:11 1 none none:none
none|none none none

3e4757e60f
NEW
7d765e7015
NEW
87bd0a062f
NEW none[none]
none [none]
dc70d9623a[0] WinXP 30 of 33 21:42:56 21:42:56 1 none none:none
none:none
ASM:Graph
none|none
none|none
Armadillo| 0% none
none
lines=91 none
none
trace

bab3e2f199
NEW ce51be97e5 [0] WinXP
Win2K-f 38 of 41 00:44:51 13:36:24 2 none ASM:Graph
tElock| 96% lines=64
embedded dns trace

5d445c59d8
NEW 892e12db7b [0] Win2K-f 39 of 41 02:52:07 02:52:07 1 none ASM:Graph
tElock| 96% lines=64
embedded dns trace

45e2ebbbf0
NEW none[none] WinXP 41 of 42 05:07:52 05:12:34 2 none none:none
none|none none none

5789d05b0d
NEW none[none] Win2K-f 39 of 42 23:49:47 23:49:47 1 none none:none
none|none none none

3e4757e60f
NEW
7d765e7015
NEW
87bd0a062f
NEW
88752d8d73
NEW
c0662f4055
NEW
c7d6018f97
NEW
d30209b0ff
NEW
da62be38dd
NEW none[none]
none [none]
dc70d9623a[0]
none [none]
none [none]
5c1d8bbd5b[0]
none [none]
none [none] WinXP 16 of 42 21:42:56 21:42:56 1 none none:none
none:none
ASM:Graph
none:none
none:none
ASM:Graph
none:none
none:none
none|none
none|none
Armadillo|
none|none
none|none
tElock|
none|none
none|none none
none
lines=91
none
none
lines=125
embedded dns
none
none none
none
trace
none
none
trace
none
none

3ff6383287
NEW none[none] Win2K-f 41 of 41 04:30:16 04:30:16 1 none none:none
none|none none none

3e4757e60f
NEW
7d765e7015
NEW
87bd0a062f
NEW
88752d8d73
NEW
c0662f4055
NEW none[none]
none [none]
dc70d9623a[0]
none [none]
none [none] WinXP 32 of 42 21:42:56 21:42:56 1 none none:none
none:none
ASM:Graph
none:none
none:none
none|none
none|none
Armadillo|
none|none
none|none none
none
lines=91
none
none none
none
trace
none
none

8583b476c4
NEW none[none] Win2K-f 38 of 41 12:27:56 12:27:56 1 none none:none
none|none none none

3e4757e60f
NEW
7d765e7015
NEW
87bd0a062f
NEW
88752d8d73
NEW none[none]
none [none]
dc70d9623a[0]
none [none] WinXP 41 of 42 21:42:56 21:42:56 1 none none:none
none:none
ASM:Graph
none:none
none|none
none|none
Armadillo|
none|none none
none
lines=91
none none
none
trace
none

e30eff4db6
NEW none[none] WinXP 40 of 42 01:28:34 01:28:34 1 none none:none
none|none none none

bab3e2f199
NEW
e8b0a286dd
NEW ce51be97e5 [0]
f189cda1ab[0] WinXP
Win2K-f 38 of 41 00:44:51 13:36:24 2 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 0% lines=64
embedded dns
lines=91 trace
trace

741e3b03b3
NEW none[0] WinXP 31 of 32 13:47:34 13:47:34 1 none none:none
none|none 32% lines=61 trace

568b9e866c
NEW
5c20c3472e
NEW 6dfc90ff94 [0]
9ca7a71763[0] Win2K-f 37 of 41 14:43:01 22:07:06 2 none ASM:Graph
ASM:Graph
tElock|
tElock| 96% lines=42
lines=64
embedded dns trace
trace

01c4a6b3eb
NEW dd524b0259 [0] WinXP 40 of 41 11:37:11 11:37:11 1 none ASM:Graph
PolyEnE| 100% lines=68 trace

1b1db1c992
NEW
8a50345c2f
NEW a8036b5105 [0]
585123125f[0] WinXP 40 of 41 12:19:52 12:19:52 1 none ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=91
lines=64
embedded dns trace
trace

3e4757e60f
NEW none[none] WinXP 30 of 42 21:42:56 21:42:56 1 none none:none
none|none none none

1b1db1c992
NEW a8036b5105 [0] WinXP 39 of 41 12:19:52 12:19:52 1 none ASM:Graph
Armadillo| 0% lines=91 trace

7d99b0e910
NEW none[0] WinXP 26 of 28 01:51:48 23:25:43 6 none none:none
PolyEnE| 99% lines=68 trace

3e4757e60f
NEW
7d765e7015
NEW
87bd0a062f
NEW
88752d8d73
NEW
c0662f4055
NEW
c7d6018f97
NEW
d30209b0ff
NEW none[none]
none [none]
dc70d9623a[0]
none [none]
none [none]
5c1d8bbd5b[0]
none [none] Win2K-f
WinXP 8 of 42 00:23:52 21:42:56 3 none none:none
none:none
ASM:Graph
none:none
none:none
ASM:Graph
none:none
none|none
none|none
Armadillo|
none|none
none|none
tElock|
none|none none
none
lines=91
none
none
lines=125
embedded dns
none none
none
trace
none
none
trace
none

568b9e866c
NEW 6dfc90ff94 [0] Win2K-f 37 of 41 14:43:01 22:07:06 2 none ASM:Graph
tElock| 100% lines=42 trace

7f6289ba44
NEW 3b6bb7e7a6 [0] Win2K-f 39 of 41 02:30:44 02:30:44 1 none ASM:Graph
tElock| 96% lines=64
embedded dns trace

1a2c0e6130
NEW none[0] WinXP 29 of 29 19:26:38 19:26:38 1 none none:none
none|none 33% lines=60 trace

14f47ffd1e
NEW
50437008d9
NEW 90bf4b99ff [0]
c1b09ac5d7[0] WinXP 5 of 41 05:43:03 05:43:03 1 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 0% lines=56
embedded dns
lines=90 trace
trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] Win2K-f
WinXP 0 of 33 08:48:13 23:02:01 4 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

3e4757e60f
NEW
7d765e7015
NEW
87bd0a062f
NEW
88752d8d73
NEW
c0662f4055
NEW
c7d6018f97
NEW none[none]
none [none]
dc70d9623a[0]
none [none]
none [none]
5c1d8bbd5b[0] WinXP 31 of 33 21:42:56 21:42:56 1 none none:none
none:none
ASM:Graph
none:none
none:none
ASM:Graph
none|none
none|none
Armadillo|
none|none
none|none
tElock| 96% none
none
lines=91
none
none
lines=125
embedded dns none
none
trace
none
none
trace

53aa804019
NEW 29c6cdbf45 [0] Win2K-f 39 of 41 05:01:28 05:01:28 1 none ASM:Graph
tElock| 96% lines=64
embedded dns trace

5e8ccc4190
NEW 8d5f86583f [0] WinXP 39 of 40 06:11:05 06:11:05 1 none ASM:Graph
PolyEnE| 100% lines=68 trace

2ea5285f04
NEW none[none] WinXP 40 of 41 17:06:26 18:23:07 2 none none:none
none|none none none

5285741560
NEW 60590b8b67 [0] WinXP 37 of 40 01:13:10 01:13:10 1 none ASM:Graph
none|none 55% lines=59 trace

a72398081f
NEW
c81d608892
NEW 3f0ad45d1c [0]
none [none] Win2K-f 33 of 42 16:51:22 16:51:22 1 none ASM:Graph
none:none
tElock|
none|none lines=10
none trace
none

a0139d7ad8
NEW none[0] WinXP 29 of 29 15:03:07 15:03:07 1 none none:none
PolyEnE| 99% lines=68 trace

7f6289ba44
NEW
80ad48ab3e
NEW 3b6bb7e7a6 [0]
c0e98a3863[0] Win2K-f 39 of 41 02:30:44 02:30:44 1 none ASM:Graph
ASM:Graph
tElock|
tElock| 100% lines=64
embedded dns
lines=42 trace
trace