Petya Ransomware Locks the Hard Drive
Posted by: Timothy Weaver on 03/26/2016 09:36 AM
[
Comments
]
A new form of ransomware is making the rounds and this new breed does more than just encrypt your files.
This form of ransomware is designed to infect companies rather than individuals. It is distributed via a Dropbox download link to an alleged job application portfolio, included in an email sent to human resources departments.
The payload is designed to crash the computer with a blue screen and then on a reboot the malware manipulates the Master Boot Record (MBR) in order to take over the reboot process.
You can see the operation of the malware in the below video:
In addition to informing users they have been compromised, the ransom note provides them with details on how they can obtain a decryption key and how they can pay for it.
Source: SecurityWeek
This form of ransomware is designed to infect companies rather than individuals. It is distributed via a Dropbox download link to an alleged job application portfolio, included in an email sent to human resources departments.
The payload is designed to crash the computer with a blue screen and then on a reboot the malware manipulates the Master Boot Record (MBR) in order to take over the reboot process.
You can see the operation of the malware in the below video:
In addition to informing users they have been compromised, the ransom note provides them with details on how they can obtain a decryption key and how they can pay for it.
Source: SecurityWeek
Comments
