contagio malware exchange: 005 Crime - Blackhole Java CVE-2010-0840 - exploit - Web

About contagio exchange

CONTAGIO EXCHANGE Contagio exchange was created to absorb malware samples shared by readers of Contagio. This is meant to be a community driven malware collection.

Edit Aug 2013 - The community is busy and Mila too so this was not a very active site (my fault probably) so I will be just dumping malware strings here - it often helps in malware identification and googling is the best way.

With just strings, not exactly a fun blog to read but might become s useful resource over time.

I will not be posting samples here, just md5. You can find the corresponding samples on contagio or ping me if you can't find

P.S. Robot pictures delivered by Robohash.com (generated from file hashes)

Tuesday, March 6, 2012

005 Crime - Blackhole Java CVE-2010-0840 - exploit - Web - Feb 2012

MD5: 1d26215f49beeefad8392e3e4e192e90

Download (pass infected)

Name Java CVE-2010-0840
Category Crime
type exploit
vector Web
Sample credit Mila

Virustotal
SHA256:     ee1fc2ec13e067824dbc950064115b6d08705955c3f7251f360183faca5193da
SHA1:     ccded41a7eae60999686b668fd4e4e8bd50b7aa5
MD5:     1d26215f49beeefad8392e3e4e192e90
File size:     5.2 KB ( 5361 bytes )
File name:     czhwjvgwkmarcoj.jar
File type:     ZIP
Detection ratio:     18 / 43
Analysis date:     2012-03-07 04:47:01 UTC ( 0 minutes ago )

Antivirus     Result     Update
AhnLab-V3     -     20120307
AntiVir     EXP/CVE-2010-0840     20120306
Antiy-AVL     Exploit/Java.Agent     20120305
Avast     Java:Agent-ACJ [Expl]     20120306
AVG     Java/Agent     20120306
BitDefender     Java.Exploit.CVE-2010-0840.Y     20120307
Comodo     UnclassifiedMalware     20120306
DrWeb     Java.Downloader.510     20120307
Emsisoft     Exploit.Java.Agent!IK     20120307
eTrust-Vet     -     20120306
F-Secure     Java.Exploit.CVE-2010-0840.Y     20120306
Fortinet     -     20120305
GData     Java.Exploit.CVE-2010-0840.Y     20120306
Ikarus     Exploit.Java.Agent     20120307
Jiangmin     Exploit.Java.ic     20120301
K7AntiVirus     -     20120306
Kaspersky     Exploit.Java.Agent.fw     20120306
McAfee     Downloader.a!bb3     20120307
McAfee-GW-Edition     Downloader.a!bb3     20120307
Microsoft     -     20120307
nProtect     Java.Exploit.CVE-2010-0840.Y     20120306
SUPERAntiSpyware     -     20120307
Symantec     Trojan.Maljava     20120305
TrendMicro-HouseCall     -     20120307