CVE-2014-9162 has been patched on 2014-12-09. It's Affecting Flash Player 15.0.0.242 and below.
Angler EK :
2015-01-15 <- It seems.
Angler EK was really rare those days (since december). I saw many delivery path migrating to Nuclear, Neutrino or Sweet Orange. The Flash exploit did not rotate between 2014-12-24 and yesterday (when it's usually rotating every 3-4 days). It seems they are now back from vacation with a new exploit which has been identified as CVE-2014-9162 by Kaspersky (thanks !)
 |
| CVE-2014-9162 successfully exploited by Angler EK on Flash 15.0.0.223 2015-01-16 |
Landing after first pass of debofuscation : http://pastebin.com/KPasYHkY
(nothing specific to that CVE here)
Sample: eeb243bb918464dedc29a6a36a25a638
Another one spotted by EKWatcher yesterday : eba97461a4ebda24c5183f66b810ea7e
And a fiddler pushed to VT.
That's all for now !