Multiperspective Malware Analysis Page - Daily Malware Binary Digest Summary

Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page

25 December 2010

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.

Packed
MD5 UnPacket
MD5 Victim
OS AntiVirus
Hit-Cnt First
Encounter Last
Encounter Freq
Cnt Behavioral
Clusters Unpacked
Egg.asm Packer
Fingerprint API
Resolution String
Cnt Syscall
Trace

53bfe15e91
NEW
73f1082158
NEW 1473091351 [0]
none [0] Win2K-f 0 of 32 01:48:48 22:21:36 2 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

14f47ffd1e
NEW 90bf4b99ff [0] Win2K-f 40 of 41 06:25:23 06:25:23 1 none ASM:Graph
tElock| 96% lines=56
embedded dns trace

53bfe15e91
NEW 1473091351 [0] Win2K-f
WinXP 33 of 33 01:48:48 22:21:36 7 none ASM:Graph
tElock| 96% lines=75
embedded dns trace

866ac9b262
NEW none[none] WinXP 39 of 41 06:07:29 07:11:53 2 none none:none
none|none none none

b8e6f4caf7
NEW
fb92b91fe7
NEW f81eac6379 [0]
fe88ab8768[0] Win2K-f 39 of 39 03:30:18 03:30:18 1 none none:none
none:none
tElock|
Armadillo| none
none trace
trace

67f1a33096
NEW
724cf0dc37
NEW 148e04eaab [0]
901dd267d4[0] Win2K-f 38 of 40 16:14:58 16:14:58 1 none ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=91
lines=64
embedded dns trace
trace

4004c8512f
NEW none[none] WinXP 42 of 43 09:53:13 09:53:13 1 none none:none
none|none none none

5799ab6538
NEW 2713679411 [0] WinXP 40 of 41 05:01:10 05:01:10 1 none ASM:Graph
tElock| 96% lines=64
embedded dns trace

53bfe15e91
NEW
b7082104e4
NEW 1473091351 [0]
c5b49e7b82[0] WinXP 8 of 33 04:42:20 04:42:20 1 none ASM:Graph
ASM:Graph
tElock|
tElock| 100% lines=75
embedded dns
lines=41 trace
trace

216ec67841
NEW
f0524e8cb2
NEW none[3]
none [none] Win2K-f 1 of 43 05:42:09 05:42:09 1 none none:none
none:none
StarForce|
none|none none
none trace
none

02c8f02035
NEW none[none] WinXP 41 of 43 02:33:27 16:05:36 2 none none:none
none|none none none

b8e6f4caf7
NEW f81eac6379 [0] Win2K-f 39 of 40 03:30:18 03:30:18 1 none none:none
tElock| none trace

6b315f5dbc
NEW
7938865f8c
NEW 7604b94520 [0]
a9b9e4904b[0] Win2K-f 39 of 41 02:32:13 02:32:13 1 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 0% lines=64
embedded dns
lines=91 trace
trace

5c6df5141d
NEW none[none] WinXP 41 of 41 02:01:41 02:01:41 1 none none:none
none|none none none

5d445c59d8
NEW 892e12db7b [0] WinXP 39 of 41 00:46:49 14:30:37 2 none ASM:Graph
tElock| 96% lines=64
embedded dns trace

f3932b94a6
NEW 910494cc45 [0] WinXP 40 of 41 19:21:36 19:21:36 1 none ASM:Graph
none|none 98% lines=546 trace

38ed850a0e
NEW 46990f37cd [0] WinXP 34 of 38 19:01:59 19:01:59 1 none ASM:Graph
Armadillo| 0% lines=91 trace

6a6aaa5b73
NEW
8bde6dd126
NEW 63889c9976 [0]
885c68f500[0] Win2K-f 40 of 41 11:41:37 11:41:37 1 none ASM:Graph
ASM:Graph
tElock|
tElock| 96% lines=42
lines=64
embedded dns trace
trace

c19c8a2776
NEW none[none] WinXP 42 of 43 02:38:29 11:39:40 2 none none:none
none|none none none

5818023061
NEW none[0] WinXP 32 of 32 01:45:19 01:45:19 1 none none:none
PolyEnE| 99% lines=68 trace

fb486908b0
NEW none[none] WinXP 41 of 43 05:50:59 18:00:15 4 none none:none
none|none none none

216ec67841
NEW none[3] Win2K-f 2 of 37 05:42:09 05:50:54 2 none none:none
StarForce| none trace

0b951c2832
NEW 5fe761661a [0] WinXP 32 of 36 20:08:17 20:08:17 1 none ASM:Graph
Armadillo| 0% lines=91 trace

6a6aaa5b73
NEW 63889c9976 [0] Win2K-f 39 of 40 11:41:37 11:41:37 1 none ASM:Graph
tElock| 100% lines=42 trace

9716d7995a
NEW c3a5354b6f [0] WinXP 35 of 35 01:15:53 01:15:53 1 none ASM:Graph
PolyEnE| 99% lines=68 trace

6b315f5dbc
NEW 7604b94520 [0] Win2K-f 39 of 41 02:32:13 02:32:13 1 none ASM:Graph
tElock| 96% lines=64
embedded dns trace

67f1a33096
NEW 148e04eaab [0] Win2K-f 38 of 40 16:14:58 16:14:58 1 none ASM:Graph
Armadillo| 0% lines=91 trace

4410d5ed68
NEW none[none] WinXP 39 of 43 06:25:57 20:52:44 2 none none:none
none|none none none

baa07a6a42
NEW none[none] WinXP 41 of 42 06:32:46 06:32:46 1 none none:none
none|none none none

1e12f5145a
NEW
f208493e65
NEW 617af909de [0]
5100adb4f9[0] WinXP 40 of 41 05:16:02 05:16:02 1 none ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=91
lines=64
embedded dns trace
trace

f61fdfb5d4
NEW none[none] WinXP 43 of 43 14:27:40 14:27:40 1 none none:none
none|none none none

5d445c59d8
NEW
8a54950abb
NEW 892e12db7b [0]
f6b9e43917[0] WinXP 37 of 40 00:46:49 14:30:37 2 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 0% lines=64
embedded dns
lines=91 trace
trace

0cfab99612
NEW none[0] WinXP 29 of 29 07:43:14 07:43:14 1 none none:none
PolyEnE| 99% lines=68 trace

7d99b0e910
NEW none[0] WinXP 26 of 28 00:18:18 23:50:04 8 none none:none
PolyEnE| 99% lines=68 trace

5799ab6538
NEW
ddbe111920
NEW 2713679411 [0]
none [none] WinXP 41 of 43 05:01:10 05:01:10 1 none ASM:Graph
none:none
tElock|
none|none lines=64
embedded dns
none trace
none

ab9c4b5f21
NEW
d789c8d157
NEW 5fe48b2dcc [0]
5f6572479f[0] WinXP 31 of 33 18:46:45 18:46:45 1 none ASM:Graph
ASM:Graph
Armadillo|
PolyEnE| 95% lines=42
lines=113
embedded dns trace
trace

53bfe15e91
NEW
57ce4acac2
NEW 1473091351 [0]
none [0] Win2K-f 0 of 33 14:57:50 14:57:50 1 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

c66d771507
NEW none[none] WinXP 42 of 43 12:55:12 12:55:12 1 none none:none
none|none none none

02c8f02035
NEW
0e395f5cf9
NEW none[none]
none [none] WinXP 41 of 43 02:33:27 16:05:36 2 none none:none
none:none
none|none
none|none none
none none
none

1a2c0e6130
NEW none[0] WinXP 29 of 29 02:40:02 02:40:02 1 none none:none
none|none 33% lines=60 trace

14f47ffd1e
NEW
50437008d9
NEW 90bf4b99ff [0]
c1b09ac5d7[0] Win2K-f 5 of 41 06:25:23 06:25:23 1 none ASM:Graph
ASM:Graph
tElock|
Armadillo| 0% lines=56
embedded dns
lines=90 trace
trace

53bfe15e91
NEW
a08f3b74a4
NEW 1473091351 [0]
none [0] Win2K-f 0 of 33 09:49:21 19:59:00 3 none ASM:Graph
none:none
tElock|
Armadillo| 0% lines=75
embedded dns
lines=90 trace
trace

1e12f5145a
NEW 617af909de [0] WinXP 39 of 41 05:16:02 05:16:02 1 none ASM:Graph
Armadillo| 0% lines=91 trace

d20f157117
NEW 738f555183 [0] WinXP 34 of 34 07:26:04 07:26:04 1 none ASM:Graph
PolyEnE| 99% lines=68 trace

a3c82ff952
NEW none[none] WinXP 39 of 41 02:32:26 02:32:26 1 none none:none
none|none none none

14d265a635
NEW none[none] WinXP 41 of 42 01:16:17 01:16:17 1 none none:none
none|none none none

ab9c4b5f21
NEW 5fe48b2dcc [0] WinXP 39 of 41 18:46:45 18:46:45 1 none ASM:Graph
Armadillo| 0% lines=42 trace

d8040f84d4
NEW d683995e84 [0] WinXP 39 of 41 03:53:28 03:53:28 1 none ASM:Graph
PolyEnE| 100% lines=73 trace

38ed850a0e
NEW
b9297745a1
NEW 46990f37cd [0]
4294884d84[0] Win2K-f
WinXP 35 of 38 18:25:35 19:01:59 2 none ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=91
lines=64
embedded dns trace
trace

7e2a86b9a4
NEW none[none] WinXP 43 of 43 10:08:27 10:08:27 1 none none:none
none|none none none

3dc6500eb1
NEW none[none] Win2K-f 40 of 41 19:59:42 19:59:42 1 none none:none
none|none none none

5e8ccc4190
NEW 8d5f86583f [0] WinXP 39 of 40 09:26:49 09:26:49 1 none ASM:Graph
PolyEnE| 100% lines=68 trace

ed96c03ca8
NEW c0028e9e98 [0] WinXP 39 of 41 07:38:31 07:38:31 1 none ASM:Graph
PolyEnE| 100% lines=68 trace

0b951c2832
NEW
e4ed4df0f0
NEW 5fe761661a [0]
de471fc380[0] WinXP 34 of 36 20:08:17 20:08:17 1 none ASM:Graph
ASM:Graph
Armadillo|
tElock| 96% lines=91
lines=64
embedded dns trace
trace

60c4a8055b
NEW none[none] WinXP 40 of 43 01:31:40 01:31:40 1 none none:none
none|none none none

8a2553433c
NEW none[none] WinXP 38 of 42 05:33:01 05:33:01 1 none none:none
none|none none none

b9297745a1
NEW
ed7950804d
NEW 4294884d84 [0]
none [none] Win2K-f 40 of 42 18:25:35 18:25:35 1 none ASM:Graph
none:none
tElock|
none|none lines=64
embedded dns
none trace
none

32a0d7d0e0
NEW none[0] WinXP 29 of 29 08:32:14 08:32:14 1 none none:none
tElock| 100% lines=81
embedded dns trace

3dc6500eb1
NEW
ff3843f312
NEW none[none]
30a7e641cf[0] Win2K-f 38 of 41 19:59:42 19:59:42 1 none none:none
ASM:Graph
none|none
Armadillo| 0% none
lines=90 none
trace