http://{Random}.{blocked}ip.na me/temp/newyear/Java5.jar

 Analysis by: Kenneth Guang Zheng Lee

 URL BLOCKING DATE/TIME: 06 Feb 2013 07:20:00 AM GMT-8
 RATING: HIGH
 DOMAIN: changeip.name
 CATEGORY: Disease Vector
 DESCRIPTION:

JAVA_EXPLOYT.NTW may be downloaded from this site. This malware takes advantage of certain vulnerabilities in Java to download and execute backdoor malware onto the affected system. This malware is related to the Whitehole Exploit Kit attacks in February 2012.