CVE-2018-15982

References:

  • CVE-2018-15982 on Mitre
  • CVE-2018-15982 on Cirl.lu
  • References:
  • CVE-2018-15982 (Flash Player up to 31.0.0.153) and Exploit Kits - 2019-01-16 - MDNC - Kafeine CVE-2018-15982 Fallout Underminer Spelevo GreenFlash Sundown
  • More Reading:

  • Underminer exploit kit improves in its latest iteration - 2018-12-31 - Malwarebytes - Jérôme Segura CVE-2018-15982 Underminer
  • Fallout += https and CVE-2018-15982 - 2019-01-16 - Twitter - Kafeine CVE-2018-15982 Fallout Bikarys
  • It looks like there is a new EK in town (CVE-2018-15982 inside). See 85.17.197[.101. I first thought about GrandSoft but that's not it. Reminds SPL EK (an evolution?). Going for "Spelevo" as name. cc thx @jspchc @EKwatcher @ring_lcy - 2019-03-07 - Twitter - Kafeine Spelevo CVE-2018-15982
  • 19.03.26 #Malvertising -> #GreenFlashSundown EK-> #SeonRansomware ver 0.2 & #pony & #miner using CVE-2018-15982 - 2019-04-05 - Twitter - Anti-malware vigilante CVE-2018-15982 GreenFlash Sundown Seon
  • Shadowgate Returns to Worldwide Operations With Evolved Greenflash Sundown Exploit Kit - 2019-06-27 - Trendmicro - Joseph C. Chen GreenFlash Sundown WordsJS CVE-2018-15982