Petya malware family

URI: https://gptkb.org/entity/Petya_malware_family
GPTKB entity
Statements (42)
Predicate Object
gptkbp:instanceOf malware
gptkbp:alsoKnownAs gptkb:NotPetya
gptkb:Petya_ransomware
gptkbp:category cybercrime
gptkbp:discoveredBy gptkb:Malwarebytes
gptkb:Kaspersky_Lab
gptkbp:diseaseVector gptkb:EternalBlue_exploit
phishing emails
malicious attachments
gptkbp:encryption encrypts Master File Table (MFT)
gptkbp:exploits gptkb:EternalBlue
gptkb:EternalRomance
gptkbp:firstAppearance 2016
https://www.w3.org/2000/01/rdf-schema#label Petya malware family
gptkbp:mitigatedBy backing up data
disabling SMBv1
patching Windows vulnerabilities
gptkbp:notableBattle gptkb:2017_Ukraine_cyberattack
gptkbp:notableFeature disguised as ransomware but acts as wiper (NotPetya variant)
overwrites MBR
spreads laterally in networks
gptkbp:notableFor 2017
gptkbp:notableVariant gptkb:GoldenEye
gptkb:NotPetya
gptkbp:payload data encryption
data destruction
gptkbp:platform gptkb:Microsoft_Windows
gptkbp:ransomDemanded gptkb:Bitcoin
gptkbp:relatedTo gptkb:WannaCry_ransomware
gptkbp:spreadTo M.E.Doc software update
gptkbp:supportsLanguage gptkb:Russian
English
gptkbp:target gptkb:Parliament_of_the_United_Kingdom
gptkb:Chernobyl_Nuclear_Power_Plant
gptkb:Rosneft
gptkb:Maersk
gptkbp:usesMalware malware
wiper
gptkbp:vulnerableTo gptkb:CVE-2017-0145
gptkb:CVE-2017-0144
gptkbp:bfsParent gptkb:Nyetya
gptkbp:bfsLayer 7