Analysis by: Kenneth Guang Zheng Lee

 URL BLOCKING DATE/TIME: 24 Jul 2013 09:50:00 AM GMT-8
 CATEGORY: Disease Vector

JAVA_EXPLOYT.RO connects to this URL to possibly download other malicious files after successfully exploiting a vulnerability. This malware is related to the Blackhole Exploit kit spam campaign on July 2013. This campaign used the birth of Prince George and the controversy of the movie Ender's Game as lures.