Petya Ransomware

iFargle · Mar 28, 2016

As you can tell I'm a fan of it. :tongue:

1etherer · Mar 29, 2016

carnageX said:
So basically only use UNC paths and don't map to a drive letter and you're good against most of the attacks .

Yes lol

I'm sure their trying to work out a way to find UNC paths, wont be easy! BUT if/when they do, then were doomed! as there would be no stopping it!!! (unless you detected it whilst it is in the process)...

Scary sh#t

MidnightShadow · Mar 29, 2016

rulezero said:
The reg keys and scripts it runs basically just searches for mapped drives and in alphabetical order e.g. C:, D:, O:, U: encrypts the data (if the victim user has permission to files in the locations).

So its safe to have AND should have network backups as long as they are not mapped!

That's what I typed.

MidnightShadow said:
It's automated and it's not mapped, so the infection shouldn't spread.

Although, to be fair, I didn't mention it earlier in the paragraph. I know it has to be mapped, though.

carnageX · Apr 13, 2016

Heads up:
Petya ransomware encryption system cracked - BBC News

Petya has been cracked. Gotta love the guys at BleepingComputer.

MidnightShadow · Apr 13, 2016

carnageX said:
Heads up:
Petya ransomware encryption system cracked - BBC News

Petya has been cracked. Gotta love the guys at BleepingComputer.

I don't know that I would use such an endearing term like "love" for them, but I do applaud them. I saw that Monday and forgot to post it up. Thanks!

carnageX · Apr 13, 2016

I would say "love"

. They do a lot of security stuff over there. Some of the best malware pros over there.

Petya Ransomware

iFargle

Linux / HPC / K8s SME

1etherer

Fully Optimized

MidnightShadow

Night Ninja

carnageX

Private Joker,

MidnightShadow

Night Ninja

carnageX

Private Joker,

Similar threads