SecurityHome.eu Trojan:Win32/Petya.G

Home / malware PDF

Trojan:Win32/Petya.G

First posted on 05 January 2017.
Source: Microsoft
Aliases :
There are no other names known for Trojan:Win32/Petya.G.
Explanation :
This threat may be installed by malicious documents with embedded macro code and distributed via email. We have seen this threat installed by malicious documents detected as Trojan:O97M/Goldeneye.A.

Upon execution, this threat overwrites the Master Boot Record (MBR) with Ransom:DOS/Petya.A, and encrypts system drive sectors.

It then forces the PC to restart, after which you get the following message, which contains instructions to purchase a key to unlock the system.

Analysis by: Andrea Lelli
Last update 05 January 2017

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

Trojan:Win32/Petya.G