Here is quick post for a CVE-2012-5076 sample (from Cool pack, as described by Kafeine here Cool EK : "Hello my friend..." CVE-2012-5076 )
CVE #
CVE-2012-5076 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JAX-WS.
CVE-2012-5076 Java Applet JAX-WS Remote Code Execution Metasploit Demo
Download
Download 327a1cbf1e1e06df765f959ad5b05089 new.jar (contact me if you need the password)(password fixed, redownload if you tried it before Nov 14 3:30pm EST)
Automatic scan
SHA256: 0d813ce9782e3df9ee56999531add7fee23ac1d30c9d1920665e78d098e7178f
SHA1: 76bac76730283b298fe67c5e301cf3f32d968e0a
MD5: 327a1cbf1e1e06df765f959ad5b05089
File size: 9.8 KB ( 10049 bytes )
File name: medianewjar
File type: JAR
Tags: cve-2012-5067 cve-2012-5074 exploit jar cve-2012-5076
Detection ratio: 11 / 42
Analysis date: 2012-11-13 17:52:33 UTC ( 13 hours, 5 minutes ago )
AntiVir EXP/Java.JAX-WS.A 20121113
Antiy-AVL - 20121113
Avast Java:CVE-2012-5076-A [Expl] 20121113
F-Secure Exploit:Java/CVE-2012-5076.A 20121113
GData Java:CVE-2012-5076-A 20121113
Kaspersky UDS:DangerousObject.Multi.Generic 20121113
Norman CVE_2012_5076.A 20121112
PCTools Trojan.Maljava 20121113
Sophos Troj/Java-LJ 20121113
Symantec Trojan.Maljava 20121113
TrendMicro-HouseCall TROJ_GEN.RCBH1KC 20121113
ViRobot JAVA.S.CVE-2012-5076.10049 20121113