MS17-010-Nessus[.]exe

General

Target

MS17-010-Nessus.exe
Size

25KB
MD5

b14238e0eba273afe97365317e00e7f4
SHA1

fa6114bb9031b78c58a632229f94ce223e64cd34
SHA256

27c73abab36613fbb048a0b4531f0049dfb763573fd93ee968931dc0fe59ee26
SHA512

3b4c9a12c2038f25f1dd20e9fbd30941c16eaa92fcb92a239c132a6771ef691067273d929a4a5db9eabd9a7eb954688f349a2f361592c5981f32c69d8cf73ca1
SSDEEP

768:57zg454xYaCcCljZedyGWY62oWSY4oqGT/1xIzroF7SQ1ZsTff:57zg454xYgIZedyGWY62oWSY4oqGT9xi

Score

N/A

Malware Config

Signatures

Files

MS17-010-Nessus.exe
.exe windows x86

24faf497b73c08160c79db40c2d300c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

send
recv
socket
setsockopt
bind
ioctlsocket
connect
WSAGetLastError
select
__WSAFDIsSet
getaddrinfo
inet_addr
freeaddrinfo
closesocket
WSAStartup
htons
ntohl
ntohs
htonl
WSACleanup

msvcr100

_fileno
__iob_func
exit
calloc
free
memset
_strdup
strcpy
_setmode
toupper
_snprintf
strcmp
wcslen
vfprintf
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
__initenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_invoke_watson
_controlfp_s
fprintf
strlen
tolower
strtoul
printf
fopen
sprintf
_beginthread
_errno
fgets
strtok
fclose
memcpy

kernel32

GetSystemTimeAsFileTime
DecodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EncodePointer
HeapSetInformation
InterlockedCompareExchange
Sleep
InterlockedExchange
WideCharToMultiByte
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
GetProcessHeap
HeapFree
GetTickCount
GetCurrentProcessId
QueryPerformanceCounter
InterlockedIncrement
FormatMessageA
LocalFree
InitializeCriticalSection
SetConsoleCtrlHandler
GetLastError
CreateSemaphoreA
WaitForSingleObject
ReleaseSemaphore
CloseHandle
DeleteCriticalSection
GetCurrentThreadId

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24faf497b73c08160c79db40c2d300c0

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

msvcr100

kernel32

Sections

.text Size: 19KB - Virtual size: 19KB

.data Size: 3KB - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 19KB

.data
Size: 3KB - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB