Sweet Orange

SWO - Anogre - Status: Retired - Last seen: 2015-04-05

References:
  • Juice the Sweet Orange - 2012-12-28 - MDNC - Kafeine Sweet Orange CVE-2012-5076
  • More Reading:

  • CVE-2012-4681 - Связка Sweet Orange - 2012-08-30 - MDNC - Kafeine Sweet Orange
  • CVE-2012-5076 - Massively adopted - Blackhole update to 2.0.1 - 2012-11-17 - MDNC - Kafeine CVE-2012-5076 BlackHole Sweet Orange Sakura Redkit
  • YouTube Ads Lead To Exploit Kits, Hit US Victims - 2014-10-14 - Trendmicro - Joseph C. Chen Kovter KovCoreG Sweet Orange
  • CVE-2014-0569 (Flash Player) integrating Exploit Kit - 2014-10-21 - MDNC - Kafeine CVE-2014-0569 Chthonic Fiesta Angler Astrum Sweet Orange FlashPack RIG Magnitude KovCoreG Kovter
  • Major malvertising campaign spreads Kovter Ad Fraud malware - 2015-01-08 - Malwarebytes - Jérôme Segura KovCoreG Kovter Sweet Orange
  • Threat Actor Profile: KovCoreG, The Kovter Saga - 2017-11-01 - Proofpoint - Kafeine Kovter KovCoreG Angler Sweet Orange Nuclear Sakura BlackHole Neutrino Fiesta Styx EITest