Welcome to the Cyber-TA
Daily Malware Binary DIGEST Summary Page


21 March 2011

All data collection and analyses summarized in this page were 100% AUTO-GENERATED.

DEVELOPERS: Vinod Yegneswaran (SRI), Phillip Porras (SRI), Hassen Saidi (SRI)
Monirul Sharif (Georgia-Tech), Arvind Narayanan (University of Texas at Austin)

The data on this website is provided for research purposes only. It is provided
for your personal use only and is supplied AS IS, WITHOUT WARRANTY OF ANY KIND.
Use or reliance on this data is at your own risk.



Packed
MD5 		UnPacket
MD5 		Victim
OS 		AntiVirus
Hit-Cnt 		First
Encounter 		Last
Encounter 		Freq
Cnt 		Behavioral
Clusters 		Unpacked
Egg.asm 		Packer
Fingerprint 		API
Resolution 		String
Cnt 		Syscall
Trace
51c413f474
NEW
89f410e7cc
NEW
909270c172
NEW
b34e640329
NEW
eb2c861fea
NEW
f6d9770745
NEW		 none[none]
2593cbda62[0]
55c25968a5[0]
none [none]
none [none]
none [none]		 WinXP 18 of 41 19:39:15 19:39:15 1 none none:none
ASM:Graph
ASM:Graph
none:none
none:none
none:none
 none|none
Armadillo|
tElock|
none|none
none|none
none|none		 none
lines=91
lines=125
embedded dns
none
none
none		 none
trace
trace
none
none
none
b91423b944
NEW		 none[none] WinXP 39 of 40 04:30:28 06:21:04 2 none none:none
 none|none none none
118b884494
NEW		 none[none] WinXP 41 of 42 04:01:44 04:01:44 1 none none:none
 none|none none none
53bfe15e91
NEW
73f1082158
NEW		 1473091351 [0]
none [0]		 Win2K-f 0 of 32 10:08:51 14:09:25 3 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
379a6daa0d
NEW		 1d04d6dc84 [0] Win2K-f 39 of 40 09:16:17 09:17:08 2 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
6438959caa
NEW		 none[none] WinXP 40 of 42 05:53:14 05:53:14 1 none none:none
 none|none none none
1595515522
NEW		 none[none] WinXP 34 of 36 04:24:45 22:12:28 2 none none:none
 none|none none none
53bfe15e91
NEW		 1473091351 [0] WinXP
Win2K-f		 33 of 33 01:20:43 22:15:57 6 none ASM:Graph
 tElock| 96% lines=75
embedded dns		 trace
c95f4f5246
NEW		 none[none] WinXP 42 of 43 03:22:02 03:22:02 1 none none:none
 none|none none none
4739f8e8c4
NEW		 none[none] WinXP 40 of 43 13:01:21 13:01:21 1 none none:none
 none|none none none
1761e9db94
NEW		 none[none] Win2K-f 40 of 41 18:51:38 18:51:38 1 none none:none
 none|none none none
53bfe15e91
NEW
b7082104e4
NEW		 1473091351 [0]
c5b49e7b82[0]		 Win2K-f 8 of 33 08:51:03 08:51:03 1 none ASM:Graph
ASM:Graph
 tElock|
tElock|		 100% lines=75
embedded dns
lines=41		 trace
trace
17c42606e8
NEW		 afaf06d6cd [0] Win2K-f
WinXP		 39 of 41 04:30:37 05:23:29 2 none ASM:Graph
 pex| 81% lines=42 trace
1b3d8e9fe7
NEW		 1d04d6dc84 [0] WinXP
Win2K-f		 39 of 41 04:41:04 08:44:59 2 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
6b315f5dbc
NEW
7938865f8c
NEW		 7604b94520 [0]
a9b9e4904b[0]		 WinXP 39 of 41 02:29:11 02:29:11 1 none ASM:Graph
ASM:Graph
 tElock|
Armadillo|		 0% lines=64
embedded dns
lines=91		 trace
trace
2fc89991b2
NEW
7bdf45b79a
NEW		 none[none]
none [none]		 WinXP 40 of 41 02:57:34 02:57:34 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
8a19ca9eea
NEW		 none[none] WinXP 40 of 43 11:48:48 11:48:48 1 none none:none
 none|none none none
b502f83a7c
NEW		 28f5be93b0 [0] WinXP 32 of 32 00:19:27 14:17:41 3 none ASM:Graph
 PolyEnE| 99% lines=73 trace
8887d42f5c
NEW		 afaf06d6cd [0] WinXP 38 of 41 07:55:45 07:55:45 1 none ASM:Graph
 pex| 81% lines=42 trace
fe87c62b51
NEW		 fe87c62b51 [1] WinXP 38 of 41 05:48:57 08:23:05 2 none ASM:Graph
 pex| 42% lines=19 trace
6ffc4847e4
NEW		 none[none] WinXP 43 of 43 23:23:01 23:23:01 1 none none:none
 none|none none none
51c413f474
NEW
89f410e7cc
NEW
909270c172
NEW
b34e640329
NEW		 none[none]
2593cbda62[0]
55c25968a5[0]
none [none]		 WinXP 29 of 43 19:39:15 19:39:15 1 none none:none
ASM:Graph
ASM:Graph
none:none
 none|none
Armadillo|
tElock|
none|none		 none
lines=91
lines=125
embedded dns
none		 none
trace
trace
none
51c413f474
NEW		 none[none] WinXP 18 of 41 19:39:15 19:39:15 1 none none:none
 none|none none none
4dd4197eb4
NEW		 1d04d6dc84 [0] WinXP 37 of 40 08:29:14 08:29:14 1 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
e6f26d0bed
NEW		 none[none] WinXP 0 of 0 07:45:37 07:45:37 1 none none:none
 none|none none none
760ab8f2ff
NEW		 none[none] WinXP 37 of 41 06:54:13 06:54:13 1 none none:none
 none|none none none
741e3b03b3
NEW		 none[0] WinXP 31 of 32 21:38:17 21:38:17 1 none none:none
 none|none 32% lines=61 trace
50cdd5c6cf
NEW		 1d04d6dc84 [0] Win2K-f 37 of 40 04:28:48 06:24:54 2 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
01c4a6b3eb
NEW		 dd524b0259 [0] WinXP 40 of 41 13:15:22 13:15:22 1 none ASM:Graph
 PolyEnE| 100% lines=68 trace
bf063bba17
NEW		 none[none] WinXP 36 of 42 06:37:44 06:37:44 1 none none:none
 none|none none none
1c05c18d2a
NEW		 none[none] WinXP 41 of 43 05:07:55 12:44:33 2 none none:none
 none|none none none
f14fd68756
NEW		 f14fd68756 [1] Win2K-f 37 of 40 05:55:32 05:55:32 1 none ASM:Graph
 pex| 42% lines=19 trace
ac499f0305
NEW		 none[none] WinXP 37 of 41 17:17:58 17:17:58 1 none none:none
 none|none none none
c473a72583
NEW		 1d04d6dc84 [0] Win2K-f
WinXP		 35 of 40 08:44:40 08:51:04 2 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
2fc89991b2
NEW		 none[none] WinXP 40 of 41 02:57:34 02:57:34 1 none none:none
 none|none none none
89333786d3
NEW		 none[none] WinXP 40 of 42 21:32:54 21:32:54 1 none none:none
 none|none none none
53bfe15e91
NEW
57ce4acac2
NEW		 1473091351 [0]
none [0]		 WinXP 0 of 33 01:20:43 01:20:43 1 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
51c413f474
NEW
89f410e7cc
NEW		 none[none]
2593cbda62[0]		 WinXP 38 of 40 19:39:15 19:39:15 1 none none:none
ASM:Graph
 none|none
Armadillo|		 0% none
lines=91		 none
trace
084b71b74d
NEW		 8a425894ca [0] Win2K-f 38 of 41 10:01:41 10:01:41 1 none ASM:Graph
 pex| 81% lines=42 trace
036b734a65
NEW		 none[none] Win2K-f 38 of 43 04:25:57 04:25:57 1 none none:none
 none|none none none
53bfe15e91
NEW
a08f3b74a4
NEW		 1473091351 [0]
none [0]		 Win2K-f 0 of 33 22:15:57 22:15:57 1 none ASM:Graph
none:none
 tElock|
Armadillo|		 0% lines=75
embedded dns
lines=90		 trace
trace
1d0ce31c6d
NEW		 none[none] WinXP 40 of 41 00:53:33 00:53:33 1 none none:none
 none|none none none
e3faefa56a
NEW		 1d04d6dc84 [0] WinXP 40 of 41 10:28:47 10:28:47 1 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
531a598a70
NEW		 none[none] Win2K-f 40 of 43 06:39:19 06:39:19 1 none none:none
 none|none none none
dc467897c8
NEW		 none[none] WinXP 39 of 40 03:39:53 19:33:53 3 none none:none
 none|none none none
5285741560
NEW		 60590b8b67 [0] WinXP 37 of 40 02:58:57 02:58:57 1 none ASM:Graph
 none|none 55% lines=59 trace
013a5ba10e
NEW		 1d04d6dc84 [0] Win2K-f 40 of 40 05:07:15 05:07:15 1 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
5fa6f2f4f2
NEW		 1e4ad6cdb1 [0] WinXP 40 of 41 08:39:30 08:39:30 1 none ASM:Graph
 ASPack| 43% lines=3065
embedded dns		 trace
c13a6c3da5
NEW		 1d04d6dc84 [0] Win2K-f
WinXP		 40 of 41 04:43:48 10:15:42 3 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
0448650359
NEW		 1e4ad6cdb1 [0] Win2K-f 34 of 40 08:28:43 08:28:43 1 none ASM:Graph
 ASPack| 43% lines=3065
embedded dns		 trace
ffbb6cbe61
NEW		 1d04d6dc84 [0] WinXP
Win2K-f		 40 of 41 05:19:41 11:37:48 4 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
d15089dd77
NEW		 none[none] Win2K-f 39 of 43 05:45:43 05:45:43 1 none none:none
 none|none none none
f534041536
NEW		 1d04d6dc84 [0] Win2K-f
WinXP		 40 of 41 05:14:16 06:21:58 2 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
4c1e03dd5e
NEW		 none[none] WinXP 39 of 42 12:24:02 12:24:02 1 none none:none
 none|none none none
51c413f474
NEW
89f410e7cc
NEW
909270c172
NEW
b34e640329
NEW
eb2c861fea
NEW		 none[none]
2593cbda62[0]
55c25968a5[0]
none [none]
none [none]		 WinXP 36 of 43 19:39:15 19:39:15 1 none none:none
ASM:Graph
ASM:Graph
none:none
none:none
 none|none
Armadillo|
tElock|
none|none
none|none		 none
lines=91
lines=125
embedded dns
none
none		 none
trace
trace
none
none
45885d17fa
NEW		 none[none] Win2K-f 40 of 42 15:47:42 15:47:42 1 none none:none
 none|none none none
c03793a035
NEW		 1d04d6dc84 [0] Win2K-f
WinXP		 41 of 41 06:34:50 08:23:45 2 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
51c413f474
NEW
89f410e7cc
NEW
909270c172
NEW
b34e640329
NEW
eb2c861fea
NEW
f6d9770745
NEW
f7df702b31
NEW		 none[none]
2593cbda62[0]
55c25968a5[0]
none [none]
none [none]
none [none]
none [none]		 WinXP 21 of 40 19:39:15 19:39:15 1 none none:none
ASM:Graph
ASM:Graph
none:none
none:none
none:none
none:none
 none|none
Armadillo|
tElock|
none|none
none|none
none|none
none|none		 none
lines=91
lines=125
embedded dns
none
none
none
none		 none
trace
trace
none
none
none
none
1761e9db94
NEW
d1e83e2d0a
NEW		 none[none]
none [none]		 Win2K-f 40 of 40 18:51:38 18:51:38 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
d031b42d3f
NEW		 none[none] WinXP 38 of 41 20:28:28 20:28:28 1 none none:none
 none|none none none
5c6df5141d
NEW		 none[none] WinXP 41 of 41 19:54:17 19:54:17 1 none none:none
 none|none none none
ecd24cb494
NEW		 none[none] WinXP 42 of 43 04:53:18 04:53:18 1 none none:none
 none|none none none
fb486908b0
NEW		 none[none] WinXP 41 of 43 04:01:19 08:57:06 3 none none:none
 none|none none none
29a3030e16
NEW		 1d04d6dc84 [0] Win2K-f 41 of 41 12:19:30 12:19:30 1 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
6b315f5dbc
NEW		 7604b94520 [0] WinXP 39 of 41 02:29:11 02:29:11 1 none ASM:Graph
 tElock| 96% lines=64
embedded dns		 trace
d11b1f56f9
NEW		 none[none] WinXP 40 of 41 10:31:03 10:31:03 1 none none:none
 none|none none none
420b1a76c4
NEW		 none[none] WinXP 42 of 43 21:24:05 21:24:05 1 none none:none
 none|none none none
6163d9bc47
NEW		 none[none] WinXP 0 of 0 05:02:56 05:02:56 1 none none:none
 none|none none none
aad01847fa
NEW		 none[none] WinXP 42 of 43 03:21:08 03:21:08 1 none none:none
 none|none none none
246f38a76e
NEW		 none[none] WinXP 39 of 41 07:00:18 07:00:18 1 none none:none
 none|none none none
2026658d8d
NEW		 none[none] Win2K-f 38 of 40 07:38:05 07:38:05 1 none none:none
 none|none none none
50465eaf96
NEW		 none[none] WinXP
Win2K-f		 39 of 43 04:27:12 04:29:48 2 none none:none
 none|none none none
82e755f5d3
NEW		 1d04d6dc84 [0] Win2K-f 37 of 40 06:13:51 06:13:51 1 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
d6944558fe
NEW		 none[none] Win2K-f 35 of 43 05:10:00 05:10:00 1 none none:none
 none|none none none
b68d420d61
NEW		 1d04d6dc84 [0] Win2K-f 40 of 41 08:13:42 08:13:42 1 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
f996bf0275
NEW		 1e4ad6cdb1 [0] Win2K-f 38 of 41 05:38:55 05:38:55 1 none ASM:Graph
 ASPack| 43% lines=3065
embedded dns		 trace
b0290639db
NEW		 none[none] Win2K-f 39 of 43 00:45:29 00:45:29 1 none none:none
 none|none none none
0cfab99612
NEW		 none[0] WinXP 29 of 29 20:43:23 20:43:23 1 none none:none
 PolyEnE| 99% lines=68 trace
8128405d8c
NEW		 1d04d6dc84 [0] WinXP 40 of 41 04:29:49 04:29:49 1 none ASM:Graph
 ASPack| 41% lines=3292
embedded dns		 trace
7d99b0e910
NEW		 none[0] WinXP 26 of 28 09:25:29 20:03:03 5 none none:none
 PolyEnE| 99% lines=68 trace
863ed6d07e
NEW		 none[none] WinXP 36 of 41 17:14:48 17:14:48 1 none none:none
 none|none none none
b0290639db
NEW
b66ca7bc34
NEW		 none[none]
none [none]		 Win2K-f 40 of 43 00:45:29 00:45:29 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
51c413f474
NEW
89f410e7cc
NEW
909270c172
NEW		 none[none]
2593cbda62[0]
55c25968a5[0]		 WinXP 38 of 40 19:39:15 19:39:15 1 none none:none
ASM:Graph
ASM:Graph
 none|none
Armadillo|
tElock|		 96% none
lines=91
lines=125
embedded dns		 none
trace
trace
d20f157117
NEW		 738f555183 [0] WinXP 34 of 34 07:32:18 11:51:24 2 none ASM:Graph
 PolyEnE| 99% lines=68 trace
eaeda9a47f
NEW		 none[none] WinXP 37 of 41 00:47:22 00:47:22 1 none none:none
 none|none none none
2131a2c834
NEW		 none[none] WinXP 39 of 42 07:02:43 07:02:43 1 none none:none
 none|none none none
bf063bba17
NEW
f269760f66
NEW		 none[none]
none [none]		 WinXP 38 of 42 06:37:44 06:37:44 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
5e8ccc4190
NEW		 8d5f86583f [0] WinXP 39 of 40 08:06:06 08:06:06 1 none ASM:Graph
 PolyEnE| 100% lines=68 trace
8a2553433c
NEW		 none[none] WinXP 38 of 42 11:29:09 11:29:09 1 none none:none
 none|none none none
d031b42d3f
NEW
fa14802705
NEW		 none[none]
none [none]		 WinXP 38 of 41 20:28:28 20:28:28 1 none none:none
none:none
 none|none
none|none		 none
none		 none
none
d9cb288f31
NEW		 45603a001c [0] Win2K-f 3 of 37 06:55:24 14:45:13 8 none ASM:Graph
 UPX| 92% lines=174
embedded dns		 trace