Analysis of exploit kits(EXP)family members Archie and Astrum-vulnerability warning-the black bar safety net

2014-12-24T00:00:00
ID MYHACK58:62201457291
Type myhack58
Reporter 佚名
Modified 2014-12-24T00:00:00

Description

Exploit kits(EXP)has been spread crimeware important tool. As the saying goes, know ourselves victorious, as security researchers, we must fully understand and analyze them. This article will introduce two of the latest popular Tools Pack-Archie and Astrum.

Archie kit

Archie kits in 8 months has been introduced before, because it is from the msf exp module, The time was to treat it as a very basic exp kit. Our Archie used to the exp detection, found this kit first appeared in the 7 January to the first week. Then it has been very active.

!

7 month start, the Archie Kit With for CVE-2 0 1 4-0 5 1 5 (Flash vulnerability)of flow, after a few months we found for the CVE-2 0 1 4-0 4 9 7 (Flash), CVE-2 0 1 3-0 0 7 4 (Silverlight), and CVE-2 0 1 3-2 5 5 1 (Internet Explorer)exploits. To 1 1 months,*** Kafeinein the tool kit found in a new Flash VulnerabilityCVE-2 0 1 4-0 5 6 9and IE vulnerabilitiesCVE-2 0 1 4-6 3 3 2*

!

Our anti-virus software to Archie Kit the use of the EXP detection is:

[1] [2] [3] [4] [5] [6] [7] next