With an exponentially increasing number of samples to process, malware analysis has become a very exciting, fast paced and, at times, confusing pastime. NovCon handlers rip through new samples every day looking for new threats, new treads, and new methods in use by malware authors. Unfortunately, much of that information never gets to other people in the community that can use it. To this end, NovCon will be posting regular analysis of malware samples we find interesting or exemplary to our blog beginning Friday, March 19^th, 2010. These reports will take a sample and dissect it to determine who it talks to, what modifications it makes to its host system, what files it drops, and other behaviors and attributes that can be used to identify the sample and its purpose.  We hope you will find this information useful, and feel free to send comments and suggestions our way.

This information is provided as an as-is, preliminary pass at the analysis of these files and is not meant as a final determination of harm or potential for harm. The data is early and raw and will not be thoroughly reviewed so please use the data at your own risk.