Says hello to another (lame) kit...
Coded by 'Oakley' the advert look like a HF crap:
We got warned hours later by MDL on Twitter
The kit itself is pretty lame and vulnerable (lol, what an irony), Malekal took some screenshot from the inside with a lame tricks.
Quick view of the folders:
A month ago on the same private forum, a new exploit kit appeared named 'AlphaPack'
Even this thread have turned on HF faggotry
(Funny things it's they flame hackforum inside, the admin have even started a thread to make them stop this shit)
As i see from AlphaPack there is Metasploit behind.
When 18.104.22.168/adutaiml/adm/login.php was up i've got a quick view but take no screenshots and shits... sorry guys :)
I've just took note of these folders...
Kahu Security and others exploit pack guys will probably investigate these new craps better.
Ah and about the malware loaded on the Serenity Kit, for the love of god.. stop using lame hf crypters who execute the decrypted copy from memory, it's dumpable in two mins.
For thoses who wonder what's the payload it's Tofsee.F (a spam and traffic relay)
Unixfreakjp have did investigation on the file: https://dl.dropbox.com/u/32230830/MalwareMustDie-20121117-01.txt
Looks like they have problem with their urls: http://host-tracker.com/check_res_ajx/11605033-0/
Edit 2: http://www.youtube.com/watch?v=2AtB9g5zjsg