Petya Ransomware Overwrites MBR Then Encrypts Hard Drive

Channel:
United Kingdom Britec09
Subscribers:
870,000
Published on ● Video Link: https://www.youtube.com/watch?v=b-0a14ssLOs


Duration: 9:11
24,619 views
480

Petya Ransomware Overwrites MBR Then Encrypts Hard Drive

If getting infected with crypto ransomware was not bad enough, now cyber criminals created a new Petya ransomware which overwrites the master boot record (MBR) of the infected computer, this of course leaves the computer in an unbootable state.
Even if you repair the MBR the data on that hard disk will be encrypted.

Petya is delivered via spam emails which targets businesses in particular, the ransomware email is linked to a shared Dropbox folder which contains a self-extracting archive, these are generally a curriculum vitae CV. If this CV is download and executed, the Petya ransomware is installed on that computer, changing then MBR to display a fake BSOD Blue Screen of Death, which then executes a fake chkdsk. While the fake scan is happening, Petya ransomware is actually encrypting the master file table (MFT)
Petya does not encrypt the file data itself, instead it encrypts the MFT, which makes the data invisible to the operating system. If you have the RED Petya Ransom, there is a chance you can retrieve your data. Information will be listed below.

https://petya-pay-no-ransom.herokuapp.com/

https://github.com/leo-stone/hack-petya

Here is some useful information on Petya Ransomware created by Malwarebytes
https://blog.malwarebytes.com/threat-analysis/2016/04/petya-ransomware/

Sadly there is no decryption method for the new GREEN Petya Ransom at this time.



Other Videos By Britec09


2016-09-14What Kind of Memory Does My Computer Have Installed
2016-09-12Why is My Computer Running Hot
2016-09-10Backup and Restore all Outlook 2013 Data Files
2016-09-09How to Export and Import Outlook Account Settings
2016-09-06Nexbox A5 Android 6.0 4k Media Player
2016-09-06Recover Lost Data after you Upgrade System to Windows 10
2016-09-03Create Great Digital Art on a Budget
2016-09-02How to Stay Protected Against Ransomware
2016-08-31Watch out! New ransomware is on the loose
2016-08-30How to Disable Cortana in Windows 10 Anniversary Update
2016-08-26Petya Ransomware Overwrites MBR Then Encrypts Hard Drive
2016-08-26Be Prepared for Ransomware
2016-08-25How to Get Free Technical Help in Windows 10
2016-08-24Beware Ransomware Called Venus Locker
2016-08-22Fix Webcam Not Working Issue After Windows 10 Anniversary Update
2016-08-22Fix Quick Access and File Explorer Not Working in Windows 10
2016-08-19How to Downgrade from Windows 10 to Previous Windows
2016-08-17Ransomware is on the Rise
2016-08-15Permanently Erase Data Without 3rd Party Tool
2016-08-12Delete Windows.old via the Command Prompt
2016-08-12How to Delete Windows.old After Windows 10 Upgrade


Tags:
Petya
Ransomware
MBR
Overwrites
Encrypts
Hard Drive
Petya Ransomware
Ransom
crypto ransomware
unbootable
encrypted
email
spam
Blue Screen of Death
fake BSOD
MFT
fake chkdsk
RED Petya Ransom
Britec
malware
Removal
Decrypt Data
Decrypt
Files
retrieve your data
decryption
Windows
Computer
Virus
Cyber Crime