http://{BLOCKED}9.236.143/english/cala.exe

 Analysis by: Paul Jayson Tiu

 URL BLOCKING DATE/TIME: 14 Jun 2012 12:35:00 AM GMT-8
 RATING: HIGH
 DOMAIN: 140.109.236.143/
 CATEGORY: Disease Vector
 DESCRIPTION: JS_DLOADER.SMGA connects to this URL to download a malicious file detected as TROJ_AGENT.BCSH. JS_DLOADER.SMGA exploits a CVE-2012-1875 vulnerability in Internet Explorer.