Skip to main content

WannaCry’s EternalBlue Exploit Ported To Windows 10


eternalblue on windows 10
WannaCry ransomware, which targetted tons of unpatched older versions of Windows, used the leaked EternalBlue and DoublePulsar exploits. Now, a team of white hat researchers has ported the EternalBlue exploit to Windows 10. This module is a smaller
version that can be ported to unpatched Windows 10 and used to deliver payloads. In the research report, many technical details have been omitted to stop black hats from replicating it.
Over the course of last few weeks, WannaCry has been making prominent headlines in the security world. Powered by NSA’s EternalBlue and DoublePulsar exploit, WannaCry wrecked havoc on unpatched Windows 7 and XP PCs. This exploit didn’t affect Windows 10.
But, in the latest development, the security experts at RiskSense have ported WannaCry’s EternalBlue exploit to Windows 10. They’ve created a Metasploit module based on the hack with many improvements. One should also note that installing MS17-010 patch fully protects Windows 10 users from this port.
The Windows 10 EternalBlue exploit has been refined for lower network traffic, along with the removal of the DoublePulsar backdoor. They also reduced the exploit’s code by up to 20%.
eternalblue on windows 10
Image: RiskSense
This proof-of-concept has been in works since the ShadowBrokers’ leak of hacking tools. The researchers have published a report to showcase what’s needed for the port. In the paper, the team has analyzed how using wrong-sized CPU registers leads to a miscalculation.
“This causes a chain reaction domino effect ultimately culminating in code execution, making ETERNALBLUE one of the most complex exploits ever written,” the report adds.
This port has been made to benefit the white hat security industry and increase the awareness of these exploits.
Please note that this Windows 10 EternalBlue port works only on Windows 10 versions before Redstone 1. As expected, the paper avoids mentioning the technical details that would help hackers create their own Windows 10 port. However, it does come with information to help the researchers and companies deal with EternalBlue.
Did you find this update on WannaCry and EternalBlue exploit helpful? Don’t forget to share your views.

Comments

WHAT'S HOT

Fappening 2.0 Continues: Modern Family Actress Sarah Hyland Has Become The Latest Victim Of Notorious Hackers [Private Photos, Video Leaked]

Modern Family actress Sarah Hyland has become the latest victim of notorious hackers. Her private pictures and video have been posted online on infamous website Celeb Jihad. According to media sources, Sarah’s lawyers are planning to take legal action against the websites who choose to publish the leaked material. Meanwhile, the actual powers behind the leak are unknown.

Samsung Overtakes Fitbit In Wearable Sales For First Time

Fitbit has been a top competitor on the global wearable market for a long time, but the South Korea giant Samsung managed to steal the silver crown of the wearable market from Fitbit. According to Strategy Analytics, Samsung gained the

Supermassive Black Holes Found Orbiting Each Other For The First Time

Image Credit: UCR Researchers from Stanford University have identified super-massive binary black holes at the center of Galaxy 0402+379 about 750 billion light years away. The two of the black holes are just 24 light years apart and one of them is orbiting the other. This is the first

Owners Of The Samsung Gear S3 In The United Kingdom Have Finally Received A Software Update That Enables Support For Samsung Pay

Owners of the Samsung Gear S3 in the United Kingdom have finally received a software update that enables support for Samsung Pay. Starting today, users will be able to use the Gear S3 smartwatch to make payments on all contactless