http://{BLOCKED}.241.239/javaw.exe

Publish Date: 13 de июля de 2012

• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

 Analyse von: Paul Jayson Tiu

---

 URL gesperrt am/um: domingo, 10 de junio de 2012 14:40:00 GMT-8

 Bewertung: : High

 Domain: : 113.10.241.239/

 Category: Disease Vector

 DESCRIPTION:

JS_DLOADER.SMGA connects to this site to download a malicious file detected as BKDR_AGENT.BCSG. JS_DLOADER.SMGA exploits a CVE-2012-1875 vulnerability.

Verwandter URL

• http://{BLOCKED}9.236.143/english/cala.exe
• http://{BLOCKED}.241.239/css.htm

Verwandte Schwachstelle

• (MS12-037) Cumulative Security Update for Internet Explorer (2699988)
• June 2012 - Microsoft Releases 7 Security Advisories

Zugehörige Datei

• JS_DLOADER.SMGA
• TROJ_AGENT.BCSH
• BKDR_AGENT.BCSG