Malicious File Detection

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

Nessus detected malicious files on the remote host.

Description :

The MD5 checksum (md5sum) of one or more files on the remote Windows
host matches known malware.

Note that Nessus has only scanned files with the following
extensions :

.application, .asp, .bat, .chm, .class, .cmd, .com, .cp, .csh, .dl,
.doc, .docx, .drv, .exe, .gadget, .hta, .inf, .ins, .inx, .isu, .jar,
.job, .jpeg, .jpg, .js, .jse, .jse, .jsp, .lnk, .msc, .msi, .msp,
.mst, .paf, .pdf, .php, .pif, .ppt, .pptx, .ps1, .ps1xm, .ps2, .ps2xm,
.psc1, .psc2, .reg, .rgs, .scf, .scr, .sct, .shb, .shs, .swf, .sys,
.u3p, .vb, .vbe, .vbs, .vbscript, .ws, .wsf, .xls, .xls

See also :

https://en.wikipedia.org/wiki/MD5

Solution :

n/a

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Windows

Nessus Plugin ID: 88961 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now