Today I was searching on Google and guess what I found? A related post to the KaiXin Exploit Kit article. On twitter. Trying to visit directly gives a 404 error, which means that Twitter deleted it. This is when Google’s Cache saves us. :)

The Tweet

The Tweet

Guess what? The Mediafire link still works. :)

However, scanning it on VirusTotal, I get various Trojan Dropper alerts. Check out the results.

KaiXin Exploit Kit.zip Contents

KaiXin Exploit Kit.zip Contents

So its the real deal and KaiXin was finished around 8-4-12. Interesting.
~!Donovan