Packed MD5 741e3b03b3ff6e464a5a61e7d1875f7f 
Priority 100 
First 03/11/2008 
Last 08/30/2008 
Count 344 
History 344 hits: 01-05 to 08-30 
Unpacked MD5 e0197e8a64415a348347b4ed491f9eca  
AV Hits 31 
AV Count 32 
CC Servers  
DNS Lookups  
Failed Connects  
AV Name AhnLab-V3:Sasser.15872.D, AntiVir:Sasser.E, Authentium:Sasser.E, Avast:_Sasser-J, AVG:I-Sasser.E, BitDefender:Sasser.E, CAT-QuickHeal:Sasser.E, ClamAV:Sasser.H, DrWeb:HLLW.Jobaka.5, eSafe:Sasser.e, eTrust-Vet:Sasser.E, Ewido:Sasser.d, FileAdvisor:MISSED, Fortinet:Sasser.E!worm, F-Prot:Sasser.E, F-Secure:Sasser.d, Ikarus:Email-Plexus.E, Kaspersky:Sasser.d, McAfee:Sasser.e, Microsoft:Sasser.dam, NOD32v2:Sasser.E, Norman:Sasser.E, Panda:Sasser.E.worm, Prevx1:MISSED, Rising:Sasser.e, Sophos:Sasser-E, Sunbelt:Sasser.d, Symantec:Sasser.E.Worm, TheHacker:Sasser.gen.worm, VBA32:Sasser.d, VirusBuster:Sasser.E, Webwasher-Gateway:Sasser.E  
WinXP Files 10785_upload.exe, 11785_upload.exe, 12112_upload.exe, 12201_upload.exe, 12346_upload.exe, 12540_upload.exe, 14967_upload.exe, 15141_upload.exe, 15263_upload.exe, 17570_upload.exe, 18467_upload.exe, 18667_upload.exe, 18909_upload.exe, 19244_upload.exe, 20957_upload.exe, 21061_upload.exe, 21622_upload.exe, 22100_upload.exe, 2213_upload.exe, 24908_upload.exe, 25192_upload.exe, 2550_upload.exe, 25693_upload.exe, 25712_upload.exe, 26560_upload.exe, 27090_upload.exe, 27398_upload.exe, 27407_upload.exe, 27489_upload.exe, 27713_upload.exe, 28031_upload.exe, 28624_upload.exe, 29417_upload.exe, 651_upload.exe, 7456_upload.exe, 7487_upload.exe, 7935_upload.exe, 8549_upload.exe, 8580_upload.exe, 9304_upload.exe, 9651_upload.exe, 9691_upload.exe, cmd.ftp, lsasss.exe, 18428_upload.exe, 23479_upload.exe, 24899_upload.exe, 31235_upload.exe, 31378_upload.exe, 5160_upload.exe, 8519_upload.exe, 9968_upload.exe, 12530_upload.exe, 14785_upload.exe, 15171_upload.exe, 15560_upload.exe, 17551_upload.exe, 21008_upload.exe, 24848_upload.exe, 29458_upload.exe, 30980_upload.exe, 31877_upload.exe, 32060_upload.exe, 32253_upload.exe, 5549_upload.exe, 6713_upload.exe, 8415_upload.exe, 9040_upload.exe, 19498_upload.exe, 24660_upload.exe, 27978_upload.exe, 28266_upload.exe, 7234_upload.exe, 8294_upload.exe, 8834_upload.exe, 10479_upload.exe, 10499_upload.exe, 10735_upload.exe, 10773_upload.exe, 10783_upload.exe, 11184_upload.exe, 11336_upload.exe, 11487_upload.exe, 11977_upload.exe, 12080_upload.exe, 12855_upload.exe, 13223_upload.exe, 13406_upload.exe, 14325_upload.exe, 15121_upload.exe, 15409_upload.exe, 15713_upload.exe, 15753_upload.exe, 16070_upload.exe, 16110_upload.exe, 1611_upload.exe, 16164_upload.exe, 16213_upload.exe, 16326_upload.exe, 16571_upload.exe, 16593_upload.exe, 16876_upload.exe, 17755_upload.exe, 18041_upload.exe, 18508_upload.exe, 18837_upload.exe, 18857_upload.exe, 18897_upload.exe, 19195_upload.exe, 19509_upload.exe, 20110_upload.exe, 21581_upload.exe, 21715_upload.exe, 22182_upload.exe, 22572_upload.exe, 2274_upload.exe, 23008_upload.exe, 23489_upload.exe, 23604_upload.exe, 25174_upload.exe, 25805_upload.exe, 26021_upload.exe, 26459_upload.exe, 26644_upload.exe, 27633_upload.exe, 27755_upload.exe, 27877_upload.exe, 27907_upload.exe, 28172_upload.exe, 28256_upload.exe, 28532_upload.exe, 28906_upload.exe, 28999_upload.exe, 29297_upload.exe, 29706_upload.exe, 30724_upload.exe, 30725_upload.exe, 31359_upload.exe, 31388_upload.exe, 3190_upload.exe, 31980_upload.exe, 3346_upload.exe, 3793_upload.exe, 5059_upload.exe, 5334_upload.exe, 5518_upload.exe, 6019_upload.exe, 6192_upload.exe, 6561_upload.exe, 6701_upload.exe, 671_upload.exe, 7038_upload.exe, 7160_upload.exe, 7999_upload.exe, 8272_upload.exe, 8609_upload.exe, 8836_upload.exe, 8887_upload.exe, 9174_upload.exe, 9346_upload.exe, 9366_upload.exe, 9693_upload.exe, 9744_upload.exe, 9926_upload.exe, 29685_upload.exe, 31561_upload.exe, 4947_upload.exe, 5294_upload.exe, 12039_upload.exe, 12140_upload.exe, 14795_upload.exe, 1621_upload.exe, 19051_upload.exe, 19305_upload.exe, 2079_upload.exe, 22029_upload.exe, 22500_upload.exe, 23233_upload.exe, 23509_upload.exe, 23530_upload.exe, 2406_upload.exe, 24214_upload.exe, 32255_upload.exe, 7815_upload.exe, 8040_upload.exe, 11213_upload.exe, 12677_upload.exe, 13691_upload.exe, 1405_upload.exe, 17050_upload.exe, 17856_upload.exe, 18009_upload.exe, 18447_upload.exe, 21694_upload.exe, 26357_upload.exe, 26378_upload.exe, 29040_upload.exe, 4958_upload.exe, 5874_upload.exe, 6744_upload.exe, 6917_upload.exe, 8826_upload.exe, 9058_upload.exe, 10069_upload.exe, 14489_upload.exe, 16703_upload.exe, 17405_upload.exe, 1763_upload.exe, 17828_upload.exe, 17989_upload.exe, 18203_upload.exe, 18774_upload.exe, 25041_upload.exe, 25388_upload.exe, 25447_upload.exe, 25541_upload.exe, 26509_upload.exe, 26816_upload.exe, 27459_upload.exe, 27796_upload.exe, 2957_upload.exe, 29898_upload.exe, 29906_upload.exe, 30368_upload.exe, 344_upload.exe, 446_upload.exe, 5009_upload.exe, 5152_upload.exe, 6622_upload.exe, 7120_upload.exe, 7122_upload.exe, 5214_upload.exe, 10804_upload.exe, 11691_upload.exe, 12110_upload.exe, 13671_upload.exe, 14132_upload.exe, 15192_upload.exe, 16713_upload.exe, 16804_upload.exe, 17295_upload.exe, 1774_upload.exe, 20038_upload.exe, 23622_upload.exe, 24562_upload.exe, 31613_upload.exe, 32325_upload.exe, 32532_upload.exe, 3314_upload.exe, 3672_upload.exe, 4916_upload.exe, 5161_upload.exe, 661_upload.exe, 7305_upload.exe, 8324_upload.exe, 8732_upload.exe, 10283_upload.exe, 10919_upload.exe, 11569_upload.exe, 12529_upload.exe, 12550_upload.exe, 1285_upload.exe, 1294_upload.exe, 13285_upload.exe, 15142_upload.exe, 15476_upload.exe, 15806_upload.exe, 16397_upload.exe, 16488_upload.exe, 16541_upload.exe, 17663_upload.exe, 18847_upload.exe, 19164_upload.exe, 19694_upload.exe, 19919_upload.exe, 21000_upload.exe, 2108_upload.exe, 2223_upload.exe, 22611_upload.exe, 22745_upload.exe, 23667_upload.exe, 24092_upload.exe, 28766_upload.exe, 29215_upload.exe, 2968_upload.exe, 30052_upload.exe, 30284_upload.exe, 31602_upload.exe, 3163_upload.exe, 5774_upload.exe, 6908_upload.exe, 7193_upload.exe, 8030_upload.exe, 8142_upload.exe, 8640_upload.exe, 9120_upload.exe, 12437_upload.exe, 13447_upload.exe, 13846_upload.exe, 14620_upload.exe, 16642_upload.exe, 16877_upload.exe, 17102_upload.exe, 19111_upload.exe, 20356_upload.exe, 23979_upload.exe, 27570_upload.exe, 28736_upload.exe, 2977_upload.exe, 30009_upload.exe, 30490_upload.exe, 31337_upload.exe, 32084_upload.exe, 5742_upload.exe, 8611_upload.exe, 8711_upload.exe  
WinXP Processes CMD.EXE, CSRSS.EXE, EXPLORER.EXE, LSASS.EXE, LSASSS.EXE, MSMSGS.EXE, SERVICES.EXE, SPOOLSV.EXE, SVCHOST.EXE, WINLOGON.EXE, dwwin.exe, lsasss.exe  
WinXP Registries HKEY_LOCAL_MACHINE@...Reliability\\UserDefined  
WinXP Ports 1022, 1023, 1026, 1027, 1028, 1029, 1030, 1031, 1034, 1035, 1036, 1037, 1041, 1042, 1043, 1044, 1045, 1047, 1049, 1051, 1053, 1055, 1056, 1058, 1059, 1061, 1066, 1070, 1072, 1075, 1082, 1088, 1094, 1097, 1099, 1100, 1101, 1102, 1103, 1105, 1106, 1107, 1109, 1113, 1115, 1117, 1119, 1122, 1124, 1128, 1131, 1135, 1145, 1146, 1148, 1149, 1150, 1151, 1152, 1154, 1155, 1158, 1159, 1162, 1163, 1171, 1179, 1180, 1182, 1183, 1184, 1185, 1186, 1188, 1189, 1192, 1193, 1203, 1208, 1209, 1210, 1211, 1212, 1214, 1215, 1217, 1218, 1220, 1222, 1224, 1226, 1228, 1229, 1231, 1233, 1246, 1252, 1253, 1255, 1256, 1257, 1258, 1259, 1261, 1262, 1264, 1265, 1268, 1270, 1272, 1273, 1276, 1277, 1280, 1281, 1283, 1284, 1291, 1306, 1307, 1308, 1309, 1310, 1312, 1314, 1316, 1317, 1319, 1320, 1322, 1324, 1326, 1327, 1333, 1345, 1346, 1347, 1348, 1349, 1351, 1352, 1354, 1355, 1357, 1358, 1360, 1361, 1364, 1365, 1368, 1370, 1374, 1377, 1382, 1394, 1395, 1397, 1398, 1399, 1400, 1401, 1403, 1404, 1406, 1408, 1411, 1412, 1413, 1415, 1417, 1419, 1429, 1438, 1439, 1440, 1441, 1442, 1444, 1445, 1446, 1448, 1450, 1451, 1456, 1457, 1460, 1461, 1468, 1477, 1478, 1480, 1481, 1482, 1484, 1485, 1487, 1488, 1494, 1501, 1502, 1504, 1505, 1506, 1507, 1509, 1511, 1512, 1514, 1515, 1517, 1518, 1522, 1527, 1536, 1538, 1539, 1540, 1542, 1543, 1544, 1546, 1548, 1549, 1551, 1552, 1555, 1557, 1564, 1574, 1575, 1576, 1577, 1578, 1583, 1587, 1589, 1590, 1591, 1592, 1594, 1595, 1599, 1601, 1607, 1612, 1032, 1033, 1064, 1065, 1073, 1074, 1078, 1079, 1080, 1086, 1087, 1089, 1091, 1093, 1110, 1111, 1112, 1114, 1116, 1120, 1123, 1129, 1132, 1137, 1141, 1153, 1164, 1168, 1169, 1170, 1172, 1174, 1175, 1177, 1178, 1181, 1190, 1196, 1198, 1206, 1213, 1221, 1225, 1234, 1241, 1242, 1244, 1245, 1247, 1248, 1249, 1250, 1251, 1254, 1260, 1269, 1282, 1296, 1298, 1299, 1301, 1302, 1303, 1304, 1305, 1325, 1328, 1329, 1331, 1332, 1336, 1338, 1340, 1341, 1343, 1344, 1350, 1356, 1369, 1372, 1373, 1375, 1376, 1378, 1379, 1381, 1386, 1387, 1407, 1409, 1410, 1414, 1416, 1418, 1420, 1422, 1424, 1425, 1430, 1432, 1434, 1437, 1447, 1454, 1462, 1472, 1473, 1474, 1475, 1476, 1495, 1498, 1499, 1503, 1510, 1521, 1524, 1525, 1526, 1528, 1529, 1531, 1532, 1535, 1545, 1547, 1559, 1560, 1562, 1563, 1565, 1566, 1568, 1569, 1581, 1586, 1588, 1597, 1598, 1600, 1603, 1604, 1611, 1618, 1624, 1625, 1626, 1628, 1630, 1632, 1633, 1634, 1635, 1636, 1638, 1639, 1643, 1645, 1649, 1650, 1652, 1654, 1661, 1672, 1673, 1675, 1676, 1677, 1678, 1679, 1683, 1684, 1687, 1688, 1694, 1701, 1702, 1704, 1705, 1706, 1707, 1708, 1710, 1711, 1713, 1714, 1716, 1717, 1721, 1723, 1726, 1733, 1740, 1742, 1745, 1747, 1748, 1750, 1751, 1752, 1753, 1754, 1755, 1756, 1757, 1758, 1385, 1388, 1389, 1390, 1391, 1392, 1396, 1402, 1405, 1436, 1449, 1453, 1458, 1465, 1466, 1483, 1486, 1489, 1490, 1492, 1493, 1496, 1497, 1520, 1541, 1550, 1553, 1554, 1556, 1567, 1593, 1596, 1602, 1605, 1610, 1615, 1617, 1619, 1620, 1621, 1623, 1627, 1629, 1631, 1637, 1640, 1641, 1658, 1659, 1662, 1663, 1664, 1665, 1667, 1668, 1671, 1674, 1680, 1682, 1686, 1689, 1695, 1712, 1718, 1722, 1725, 1741, 1744, 1759, 1761, 1762, 1765, 1766, 1774, 1785, 1786, 1787, 1789, 1790, 1791, 1792, 1794, 1795, 1797, 1798, 1800, 1802, 1805, 1806, 1808, 1810, 1813, 1816, 1823, 1834, 1835, 1837, 1838, 1839, 1841, 1842, 1844, 1845, 1852, 1856, 1859, 1862, 1864, 1866, 1867, 1869, 1870, 1875, 1882, 1883, 1885, 1886, 1887, 1888, 1889, 1891, 1892, 1896, 1898, 1901, 1902, 1904, 1905, 1912, 1921, 1922, 1923, 1924, 1925, 1927, 1928, 1931, 1932, 1933, 1934, 1935, 1937, 1938, 1940, 1941, 1950, 1957, 1961, 1964, 1965, 1967, 1968, 1974, 1979, 1980, 1983, 1984, 1990, 1993, 1994, 1039, 1187, 1197, 1200, 1201, 1204, 1205, 1227, 1230, 1232, 1235, 1236, 1238, 1240, 1243, 1266, 1271, 1274, 1275, 1278, 1285, 1289, 1300, 1311, 1313, 1315, 1318, 1321, 1334, 1337, 1353, 1359, 1362, 1363, 1366, 1383, 1423, 1431, 1435, 1443, 1455, 1479, 1491, 1519, 1523, 1533, 1534, 1537, 1561, 1582, 1585, 1622, 1642, 1647, 1648, 1651, 1655, 1681, 1690, 1691, 1693, 1697, 1700, 1709, 1729, 1730, 1731, 1732, 1735, 1736, 1738, 1739, 1768, 1769, 1770, 1771, 1772, 1775, 1777, 1778, 1780, 1781, 1784, 1801, 1812, 1814, 1818, 1819, 1821, 1822, 1826, 1827, 1829, 1831, 1851, 1854, 1855, 1857, 1858, 1871, 1872, 1874, 1876, 1877, 1879, 1880, 1884, 1893, 1900, 1909, 1910, 1913, 1914, 1915, 1916, 1918, 1919, 1926, 1929, 1948, 1949, 1951, 1952, 1953, 1954, 1955, 1958, 1962, 1963, 1972, 1776, 1779, 1782, 1783, 1788, 1799, 1803, 1807, 1830, 1832, 1833, 1836, 1840, 1847, 1848, 1865, 1868, 1873, 1881, 1890, 1895, 1917, 1920, 1939, 1943, 1960, 1966, 1969, 1970, 1973, 1977, 1988, 1996, 1997, 1999, 2000, 2001, 2002, 2003, 2006, 2008, 2010, 2011, 2018, 2025, 2026, 2027, 2028, 2029, 2031, 2032, 2035, 2037, 2039, 2040, 2042, 2043, 2044, 2045, 2046, 2048, 2050, 2057, 2070, 2072, 2073, 2075, 2076, 2077, 2078, 2079, 2081, 2083, 2086, 2087, 2089, 2090, 2091, 2095, 2097, 2104, 2114, 2115, 2116, 2117, 2119, 2120, 2122, 2123, 2125, 2126, 2129, 2131, 2135, 2136, 2138, 2140, 2142, 2143, 2149, 2162, 2163, 2164, 2165, 2166, 2168, 2169, 2173, 2174, 2177, 2178, 2184, 2191, 2192, 2193, 2194, 2195, 2197, 2198, 2200, 2201, 2203, 2204, 2206, 2207, 2209, 2210, 2215, 2217, 2219, 2220, 2225, 2228, 2233, 2245, 2246, 2248, 2249, 2250, 2251, 2252, 2254, 2256, 2260, 2261, 2263, 2266, 2271, 2279, 2280, 2282, 2283, 2285, 2286, 2288, 2289, 2291, 2292, 2293, 2294, 2295, 2296, 2298, 2303, 2304, 2314, 2323, 2324, 2326, 2327, 2328, 2329, 2330, 2332, 2333, 2335, 2336, 2338, 2339, 2340, 2342, 2343, 2347, 2350, 2351, 2354, 2356, 2365, 2377, 2378, 2380, 2381, 2382, 2383, 2384, 2386, 2387, 2389, 2390, 2396, 2398, 2400, 2401, 2407, 2416, 2417, 2419, 2420, 2421, 2422, 2423, 2425, 2426, 2428, 2429, 2432, 2434, 2437, 2439, 2442, 2443, 2445, 2447, 2452, 2465, 2466, 2468, 2469, 2470, 2471, 2472, 2475, 2477, 2479, 2480, 2482, 2483, 2486, 2493, 2500, 2502, 2503, 2505, 2506, 2507, 2509, 2510, 2511, 2512, 2513, 2514, 2515, 2516, 2517, 2518, 1057, 1060, 1062, 1063, 1068, 1071, 1076, 1077, 1081, 1104, 1108, 1118, 1125, 1127, 1138, 1156, 1157, 1160, 1166, 1173, 1195, 1199, 1216, 1237, 1239, 1287, 1288, 1294, 1323, 1330, 1339, 1371, 1380, 1421, 1426, 1452, 1459, 1469, 1470, 1500, 1508, 1516, 1571, 1572, 1580, 1657, 1660, 1666, 1670, 1692, 1703, 1715, 1724, 1727, 1728, 1734, 1760, 1763, 1796, 1804, 1286, 1290, 1292, 1335, 1393, 1427, 1428, 1471, 1513, 1530, 1570, 1573, 1644, 1646, 1669, 1746, 1809, 1820, 1828, 1878, 1263, 1297, 1463, 1464, 1467, 1558, 1608, 1613, 1685, 1696, 1698, 1737, 1743, 1764, 1793, 1817, 1824, 1860, 1861, 1863, 1894, 1906, 1908, 1911, 1930, 1050, 1606, 1609, 1653, 1656, 1699, 1825, 1897, 1899, 1903, 1907, 1936, 1719, 1720, 1749, 1767, 1773, 1843, 1849, 1850, 1942, 1946, 1947, 1976, 1987, 1991, 1995, 1998, 2004, 2007, 2015, 2016, 2019, 2022, 2024, 2030, 2034, 2036, 2049, 2062, 2064, 2066, 2068, 2071, 2074, 2082, 2084, 2096, 2098, 2099, 2101, 2102, 2105, 2111, 2113, 2124, 2127, 2128, 2132, 2144, 2147, 2151, 2152, 2153, 2154, 2155, 2156, 2157, 2158, 2159, 1025, 1040, 1046, 1052, 1083, 1092, 1095, 1098, 1121, 1133, 1136, 1139, 1140, 1176, 1191, 1219, 1223, 1293, 1295, 1367, 1433, 1579, 1038, 1048, 1069, 1096, 1126, 1167, 1194, 1279, 1384, 1811, 1815, 1846, 1853, 1975, 1982, 1985, 1986, 1989, 2005, 2009, 2012, 2014, 2021, 2051, 2052, 2055, 2056, 2059, 2061, 2088, 2092, 2094, 2106, 2109, 2118  
Win-2Kf Files  
Win-2Kf Processes  
Win-2Kf Registries  
Win-2Kf Ports  
Create Events  
Create Files  
Create RegKeys  
Open RegKeys SOFTWARE\Microsoft\Windows\CurrentVersion\Run,ssgrate.exe,drvsys.exe,Drvddll_exe 
Service Starts  
Service Deletes  
Service Creates  
Cluster  
Cluster Confidence  
Packer ID1 none 
Packer ID2 none 
Embedded DNS  
String Count 62 
String Link text
String MD5 0ce3b7e2ea1e4b5d52b7fcbb32dc99df 
Timerange 365 Days 
Unpack Status good (unpacked : 0 : Unpacking Provided Binary. (Code,Data) = (72.63%, 21.12%)) 
Countries 24 
Unpacked Link e0197e8a64 [0
Callgraph ASM:Graph 
API Resolution 100% 
Comment none