NotPetya Ransomware: Another “WannaCry” Is Spreading Globally and strikes more than '2,000 organisations'

'NOTPETYA' RANSOMWAREoutbreak spreads globally and strikes more than '2,000 organisations'

'NOTPETYA' RANSOMWARE- After WannaCry, a new ransomware named Petya is here to annoy your computers. It has already influenced a large number of countries, including Ukraine, Russia, Poland, Germany, etc. This new threat is spreading globally and strikes more than 2000+ Organisations which includes Govt. and Private Sectors. This malware uses the NSA’s Eternal Blue exploit,  which was leaked by the "Shadow Brokers" demanding $300 in bitcoins as ransom.
[lock]

Is Petya Ransomware another Wannacry?

As we already know that recently in Some weeks ago, the WannaCry ransomware spread at a fast pace and infected millions of computers all across the world. Now, another ransomware is causing havoc around the world. The new attack has seen in Ukraine banks offline, resulting in the locking of computer systems in government offices and  This ransomware attack has also affected the Chernobyl nuclear plant as well as Ukraine’s electricity supplier. It has also affected the Danish shipping company Maersk, Russian oil company Rosneft. Striking pharmaceutical companies, Chernobyl radiation detection systems, and, er, a chocolate factory.


According to the reports @ Kaspersky’s Costin Raiu, about 70% infections have been recorded in Ukraine, followed by 30% in Russian country. The other major countries which are affected by this Petya threat are USA, Poland, Germany, UK, and France.


Petya ransomware demands $300 in Bitcoins:

NotPetya Ransomware

The Petya ransomware is demanding $300 in form of Bitcoins, in which this malware is associated with it for decryption. So far, according to Kaspersky, 7 payments have been done with this ransomware. According to Symantec, the number of payments is now increased to 9.

How does the Ransomware spread?

Ransomware is coded to capture credentials for spreading, the ransomware uses custom tools, a la Mimikatz. These extract credentials from the file lsass.exe. After extraction, credentials are passed to PsExec tools or WMIC for distribution inside a network.

What does the Ransomware do?

This malware affects targets ur PC and it will wait for 10-60 minutes after the infection to reboot the system.Reboot is scheduled using system facilities with “at” or “schtasks” and “shutdown.exe” tools.Once it reboots, it starts to encrypt the MFT table in NTFS partitions, overwriting the MBR with a customized loader with a ransom note.

What is Petya ransomware?


Kaspersky’s earlier report suggested that the new threat is a variant of the older Petya ransomware. However, the company later clarified that it’s an entirely new infection; that’s why they called it “NotPetya.”Avira and Symantec have confirmed that Petya is using the "Eternal Blue exploit", the tool just like WannaCry.

[/lock]

COMMENTS

Name

android,32,apple,11,application,42,baahubali2,3,billgates,1,car,1,entertainment,3,facebook,7,google,26,HBO,2,how-to,26,internet,92,iphone,3,iphone 4S,1,iphone 8,1,jio,3,Microsoft,2,news,45,nokia,4,prabhas,4,reviews,11,samsung,4,science,12,security,23,sony,2,sports,1,tech,113,telegram,1,top-list,9,vpn,1,whatsapp,4,windows10,5,youtube,1,
ltr
item
TechApis | All Tech Blog: NotPetya Ransomware: Another “WannaCry” Is Spreading Globally and strikes more than '2,000 organisations'
NotPetya Ransomware: Another “WannaCry” Is Spreading Globally and strikes more than '2,000 organisations'
'NOTPETYA' RANSOMWAREoutbreak spreads globally and strikes more than '2,000 organisations'
https://3.bp.blogspot.com/-T4TSsK2EEOw/WVPVukD6GzI/AAAAAAAAGlc/wrWug1Sf_gYpSzsKi16K_YkxKUVrz8eEgCLcBGAs/s1600/NotPetya-Ransomware.jpg
https://3.bp.blogspot.com/-T4TSsK2EEOw/WVPVukD6GzI/AAAAAAAAGlc/wrWug1Sf_gYpSzsKi16K_YkxKUVrz8eEgCLcBGAs/s72-c/NotPetya-Ransomware.jpg
TechApis | All Tech Blog
http://www.techapis.com/2017/06/petya-ransomware.html
http://www.techapis.com/
http://www.techapis.com/
http://www.techapis.com/2017/06/petya-ransomware.html
true
593753531860090012
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS CONTENT IS PREMIUM Please share to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy