. Petya Ransomware Locks the Hard Drive - MajorGeeks

MajorGeeks.com - The Anti-Social Social Site since 2002

All In One Tweaks

Antivirus & Malware

Drives (SSD, HDD, USB)

Graphics & Photos

MajorGeeks Windows Tweaks

Office & Productivity

· How To and Tutorials
· Life Hacks and Reviews
· Way Off Base
· MajorGeeks Deals
· News
· Off Base
· Reviews

· YouTube
· Facebook
· Instagram
· Twitter
· Pintrest
· RSS/XML Feeds

· News Blur
· Yahoo
· Symbaloo

· Top Freeware Picks
· Malware Removal
· Geektionary
· Useful Links
· About Us

· Copyright
· Privacy
· Terms of Service
· How to Uninstall

1. Smart Defrag

2. Macrium Reflect FREE Edition

3. Visual C++ Redistributable Runtimes AIO Repack

4. K-Lite Mega Codec Pack

6. Microsoft Expression Web

7. Mozilla Firefox

8. Sergei Strelec's WinPE

9. Visual C++ Runtime Installer (All-In-One)

10. McAfee Removal Tool (MCPR)

What is a WebP Image?

How to Manage Virtual Memory (Pagefile) in Windows 10 /11

Enable, Disable, Manage, Delete or Create a System Restore Point

Backing Up Your Data Effectively: A Geek's Guide

How to Properly Use Microsoft System File Checker in Windows 11 and 10

Show Your Support for MajorGeeks a Donation

Resolving Strange PC Errors: The Role of RAM in System Performance

How to Fix Critical Process Died in Windows 10/11

Every Known Windows Terminal, Command Prompt and PowerShell Command

How to Get Dark Mode Back in Google Chrome and Improve it

Petya Ransomware Locks the Hard Drive

Posted by: Timothy Weaver on 03/26/2016 09:36 AM [ Comments ]

A new form of ransomware is making the rounds and this new breed does more than just encrypt your files.

Petya ransomware encrypts entire hard drives, an unusual behavior compared to that of other malware families such as Locky, CryptoWall or TeslaCrypt, which encrypt individual files.

This form of ransomware is designed to infect companies rather than individuals. It is distributed via a Dropbox download link to an alleged job application portfolio, included in an email sent to human resources departments.

The payload is designed to crash the computer with a blue screen and then on a reboot the malware manipulates the Master Boot Record (MBR) in order to take over the reboot process.

You can see the operation of the malware in the below video:

In addition to informing users they have been compromised, the ransom note provides them with details on how they can obtain a decryption key and how they can pay for it.

Source: SecurityWeek

Comments

comments powered by Disqus

© 2000-2024 MajorGeeks.com

Powered by Contentteller® Business Edition