Menu

Petya ransomware and NotPetya malware

In the last three years, thousands of personal computers were attacked by Petya and NotPetya. After targeting the networks, they encrypt the hardware of these computers. Notpetya and Petya are two different things, but they do share many standard features. Notpetya is more potent as it helps to spread and infect computer easily, whereas Petya is a type of ransomware that makes a quick Bitcoin from the victim. 

 

What is Petya?

 

Petya is a form of malware, which infects the targeted computer, encrypts the data on it, and keeps a message for the victim on how to get back the data. They ask them to pay in bitcoin to get the key to getting back the data. 

 

The Petya malware was started in March 2016. The malware was attached to an email purporting to be a job applicant resume. It consisted of two files, one was an image of the applicant and other was an executable file. After opening that file, the malware spread in the window. 

 

Difference between Petya and Notpetya

 

The Notpetya virus resembles Petya in different ways. Petya after encrypting the file or data they flash up a request to pay a Bitcoin ransom to get access to the data. Notpetya is more dangerous and powerful. 

 

A Notpetya spreads in a computer by its own while a Petya requires the victim to open the file and download it. The Petya usually come with an attachment to an email and enters the computers once it is opened. Notpetya doesn’t require the intervention of human being to exploit. 

 

As Notpetya is more powerful, it encrypts everything and goes beyond the Petya trick to encrypt the data. It goes after numbers of files to screw the hardware of the computer. 

 

Notpetya is not ransomware actually, but it keeps information on the screen of the computer that if they pay the bitcoin, they can decrypt their data. In Petya, the message kept on the screen says that they are supposed to send the bitcoin along with a ransom. The cybercriminal uses the code to configure that the victim has paid the amount or not. In Notpetya the attackers don’t use the number of identifying anything, and it is generated randomly.

 

The damage made by a Petya can be decrypted, whereas the damage caused by a Notpetya is not repairable despite paying the amount.