About contagio exchange

CONTAGIO EXCHANGE Contagio exchange was created to absorb malware samples shared by readers of Contagio. This is meant to be a community driven malware collection.
Edit Aug 2013 - The community is busy and Mila too so this was not a very active site (my fault probably) so I will be just dumping malware strings here - it often helps in malware identification and googling is the best way.
With just strings, not exactly a fun blog to read but might become s useful resource over time.
I will not be posting samples here, just md5. You can find the corresponding samples on contagio or ping me if you can't find
P.S. Robot pictures delivered by Robohash.com (generated from file hashes)

Tuesday, March 6, 2012

007 - Crime - Blackhole Flash CVE-2011-0611 SWF - Exploit - Web - Feb 2012

MD5:  196D309B7366F7507586CD162C8ED2C9

Download (pass infected) 

 Name  Blackhole Flash CVE-2011-0611_SWF
type exploit
vector  Web
Sample credit Mila
Date Feb 2012


VirustotalSHA256:     1581dc1e2cac90116a7f91bb8e68d44a7f4513369309c691f71f2d022d85e63a
SHA1:     5eae153d5ad6c0967b88bfc9efb7c535dca25ff1
MD5:     196d309b7366f7507586cd162c8ed2c9
File size:     7.0 KB ( 7124 bytes )
File name:     11519464962-9-4_1.x-shockwave-flash
File type:     Flash
Detection ratio:     10 / 43
Analysis date:     2012-03-06 13:23:20 UTC ( 15 hours, 56 minutes ago )
Antivirus     Result     Update
AhnLab-V3     -     20120305
AntiVir     EXP/CVE-2011-0611.FL     20120306
Antiy-AVL     -     20120305
Avast     SWF:Downloader-AK [Expl]     20120306
BitDefender     Script.SWF.Cxx     20120306
F-Secure     Script.SWF.Cxx     20120306
Fortinet     SWF/CVE20110611.fam!exploit     20120305
GData     Script.SWF.Cxx     20120306
Kaspersky     Exploit.SWF.CVE-2011-0611.be     20120305
McAfee-GW-Edition     -     20120304
Norman     HTML/Shellcode.AA     20120304
nProtect     Script.SWF.Cxx     20120306
Sophos     Troj/SWFExp-AI     20120306