Win32/Petya
Microsoft Defender Antivirus detects and removes this threat.
This ransomware can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker.
Our ransomware page has more information on this type of threat.
Note: On June 27, 2017, a new variant of Ransom:Win32/Petya was observed spreading in several countries. The new variant added a worm-like capability that allows it to spread across affected networks. Read about the Petya outbreak here:
Ransom:Win32/Petya
Microsoft Defender Antivirus detects and removes this threat.
This ransomware can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker.
This ransomware has worm-like capabilities that allows it spread across infected networks. It's spreading capabilities include:
- Lateral movement using credential theft and impersonation
- Lateral movement using the EternalBlue and EternalRomance exploits
For more information on this threat, which caused an outbreak on Jun 27, 2017, read these blog posts on the Windows Security blog:
- Windows 10 platform resilience against the Petya ransomware attack
- New ransomware, old techniques: Petya adds worm capabilities
Our ransomware page has more information on this type of threat.
Trojan:Win32/Petya.G
Microsoft Defender Antivirus detects and removes this threat.
This ransomware can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker.
It may be installed by malicious documents with embedded macro, such as Trojan:O97M/Goldeneye.A.
Our ransomware page has more information on this type of threat.
Note: On June 27, 2017, a new variant of Ransom:Win32/Petya was observed spreading in several countries. The new variant added a worm-like capability that allows it to spread across affected networks. Read about the Petya outbreak here:
Ransom:Win32/Petya.B
Microsoft Defender Antivirus detects and removes this threat.
This ransomware can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker.
This ransomware has worm-like capabilities that allows it spread across infected networks. It's spreading capabilities include:
- Lateral movement using credential theft and impersonation
- Lateral movement using the EternalBlue and EternalRomance exploits
For more information on this threat, which caused an outbreak on Jun 27, 2017, read these blog posts on the Windows Security blog:
- Windows 10 platform resilience against the Petya ransomware attack
- New ransomware, old techniques: Petya adds worm capabilities
Our ransomware page has more information on this type of threat.
Ransom:Win32/Petya.A
Microsoft Defender Antivirus detects and removes this threat.
This ransomware can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker.
Our ransomware page has more information on this type of threat.
Note: On June 27, 2017, a new variant of Ransom:Win32/Petya was observed spreading in several countries. The new variant added a worm-like capability that allows it to spread across affected networks. Read about the Petya outbreak here: