create account

NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever by fortified

View this thread on: hive.blogpeakd.comecency.com
security · @fortified · (edited)
$53.61
NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever
### <center> Original Creator Of Petya Ransomware Steps In To Help Victims Unlock Their Computers.  </center>

<center>  </center> 
<center>  </center>

<center> ![Patya-header.jpg](https://steemitimages.com/DQmXLTZ1uE3FpqpvRcnvHPV1U3Cn7rmKJc3uogDLBZJC92j/Patya-header.jpg) </center> 
 
<center>  </center> 
<center>  </center> 

Petya was originally launched in December 2015 by the **Petya Ransomware Project**. At the time of it's release Petya was unique among ransomware viruses because of it's ability to overwrite the MBR (Master Boot Record) as a way to block access to your files and operating system. Then back in March of last year the self described ‘professional cybercriminals’ made Petya and other viruses available to the public through a Ransomware-as-a-Service (RaaS) platform. This was a suite of cyber attack tools anyone could access for a fee to perform ransomware attacks with the owners of the platform receiving a % of any ransom money paid to the user to decrypt locked files. 

### <center> Petya and Mischa for All! The RaaS Boom Expands to Include the Petya/Mischa Combo | [Cylance](https://blog.cylance.com/petya-and-mischa-for-all-the-raas-boom-expands-to-include-the-petya-mischa-combo.html) - 05/19/2017 </center>

<center> http://i.imgur.com/AuB1QFc.png </center> 

<center>  </center> 
<center>  </center> 
# <center> Janus Secretary </center>

<center>  </center> 

Yesterday @JanusSecurity, a Twitter account linked to the original Petya ransomware, tweeted to say they're having a look at the new variant and that it maybe 'crackable with our privkey'.



<center> ![Janus-tweet.jpg](https://steemitimages.com/DQmfTmdg8tEjPBBEpEQhLuFoiCt2jqZqJ5oXH8Cjib7VWPN/Janus-tweet.jpg) </center> 
<center> [Tweet](https://twitter.com/JanusSecretary/status/880156466115743744) </center> 

This gives hope to many people who have fallen fowl to theses cyber criminals and I would very much like it to be true but recent research suggests otherwise. Although widely reported this new ransomware is in fact not a Petya variant according to Kaspersky Lab:

 
<center> http://i.imgur.com/PaovuM1.jpg </center> 

<center>  </center> 
<center>  </center> 

Further research came out by Matt Suiche from Comae Technologies and Secure List that concluded the Petya ransomware isn't even ransomware but is in fact **Wiper Malware**.

<center> ![M-suiche-Wiper.jpg](https://steemitimages.com/DQmPKZkTnaMLbMs5ZMWZtftU8a8R8N43pjxKqtjqAv4mDhX/M-suiche-Wiper.jpg) </center> 

<center> [Tweet](https://twitter.com/msuiche/status/880075102897000448) </center>

### <center> Petya.2017 is a wiper not a ransomware | [Comae.io](https://blog.comae.io/petya-2017-is-a-wiper-not-a-ransomware-9ea1d8961d3b) - 06/28/2017 </center>
> - Ransomware-as-a-service soon to be renamed Lure-as-a-Service
> - TL;DR: The ransomware was a lure for the media, this variant of Petya is a disguised wiper.


If this new research turns out to be true it would mean there was never a chance of retrieving your files in the first place even if you did paid the ransom. The person or group behind this recent attack are either in it for the*lulz* or they have an ulterior motive. Either way these latest revelations tell us that these attacks aren't going to stop anytime soon.


<center>  </center> 
<center>  </center> 






<center> --- </center> 

</sup>
</sup>
### Related post:
</sup>
- <sup>  [The Shadow Brokers to NSA Equation Group: We is Gots Yo Sheeat, Pay Up or Done Get Doxed](https://steemit.com/shadowbrokers/@v4vapid/the-shadow-brokers-to-nsa-equation-group-we-is-gots-yo-sheeat-pay-up-or-done-get-doxed) | Steemit - @v4vapid - 06/27/2017 </sup>

- <sup> [VAULT 7 | New Release - 'Outlaw Country' Targets Linux](https://steemit.com/wikileaks/@fortified/vault-7-or-outlaw-country-targets-linux) | Steemit - @Fortified - 05/30/2017 </sup>

- <sup> [THE SHADOW BROKERS | Cashing Out Of Bitcoin And Into Zcash For "TheShadowBrokers Data Dump of the Month" Service](https://steemit.com/bitcoin/@fortified/the-shadow-brokers-or-cashing-out-of-bitcoin-and-into-zcash-for-theshadowbrokers-data-dump-of-the-month-service) | Steemit - @Fortified - 06/29/2017 </sup>

---------------------------------------------------------

<center> http://i.imgur.com/7SGKH70.jpg </center>
### <center> FORTIFIED </center>
<center> **[Steemit](https://steemit.com/@fortified)  |  [Gab](https://gab.ai/fortified)** </center>
# <center> **THANK YOU FOR READING** </center>
<center> <sup> - If You Would Like To Help Me Make More Great Original Content Please Consider Up-Voting and Re-Steeming - </sup> </center>
👍  , , , , , ,
properties (23)
authorfortified
permlinknot-petya-or-either-master-decryption-key-availiable-within-days-or-your-files-lost-forever
categorysecurity
json_metadata{"tags":["security","news","technology","shadowbrokers","ransomware"],"users":["janussecurity","v4vapid","fortified"],"image":["https://steemitimages.com/DQmXLTZ1uE3FpqpvRcnvHPV1U3Cn7rmKJc3uogDLBZJC92j/Patya-header.jpg","http://i.imgur.com/AuB1QFc.png","https://steemitimages.com/DQmfTmdg8tEjPBBEpEQhLuFoiCt2jqZqJ5oXH8Cjib7VWPN/Janus-tweet.jpg","http://i.imgur.com/PaovuM1.jpg","https://steemitimages.com/DQmPKZkTnaMLbMs5ZMWZtftU8a8R8N43pjxKqtjqAv4mDhX/M-suiche-Wiper.jpg","http://i.imgur.com/7SGKH70.jpg"],"links":["https://blog.cylance.com/petya-and-mischa-for-all-the-raas-boom-expands-to-include-the-petya-mischa-combo.html","https://twitter.com/JanusSecretary/status/880156466115743744","https://twitter.com/msuiche/status/880075102897000448","https://blog.comae.io/petya-2017-is-a-wiper-not-a-ransomware-9ea1d8961d3b","https://steemit.com/shadowbrokers/@v4vapid/the-shadow-brokers-to-nsa-equation-group-we-is-gots-yo-sheeat-pay-up-or-done-get-doxed","https://steemit.com/wikileaks/@fortified/vault-7-or-outlaw-country-targets-linux","https://steemit.com/bitcoin/@fortified/the-shadow-brokers-or-cashing-out-of-bitcoin-and-into-zcash-for-theshadowbrokers-data-dump-of-the-month-service","https://steemit.com/@fortified","https://gab.ai/fortified"],"app":"steemit/0.1","format":"markdown"}
created2017-06-29 21:46:42
last_update2017-07-01 21:40:12
depth0
children14
last_payout2017-07-06 21:46:42
cashout_time1969-12-31 23:59:59
total_payout_value41.872 HBD
curator_payout_value11.739 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length4,588
author_reputation38,014,334,194,654
root_title"NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id6,681,376
net_rshares6,119,330,657,947
author_curate_reward""
vote details (7)
@novaatebatman · 
And the rabbit hole just gets deeper.

Great post!
properties (22)
authornovaatebatman
permlinkre-fortified-not-petya-or-either-master-decryption-key-availiable-within-days-or-your-files-lost-forever-20170629t221149754z
categorysecurity
json_metadata{"tags":["security"],"app":"steemit/0.1"}
created2017-06-29 22:11:48
last_update2017-06-29 22:11:48
depth1
children4
last_payout2017-07-06 22:11:48
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length50
author_reputation2,771,271,242,560
root_title"NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id6,683,939
net_rshares0
@fortified · (edited)
I don't think it's much of  rabbit hole any more, more of an open pit mine.

<center> http://i.imgur.com/KF4u7lx.jpg </center>

Edit: Thank You
properties (22)
authorfortified
permlinkre-novaatebatman-re-fortified-not-petya-or-either-master-decryption-key-availiable-within-days-or-your-files-lost-forever-20170630t013215200z
categorysecurity
json_metadata{"tags":["security"],"image":["http://i.imgur.com/KF4u7lx.jpg"],"app":"steemit/0.1"}
created2017-06-30 01:32:18
last_update2017-06-30 01:32:42
depth2
children3
last_payout2017-07-07 01:32:18
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length143
author_reputation38,014,334,194,654
root_title"NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id6,701,656
net_rshares0
@novaatebatman · 
Perhaps a pit mine with a bunch of rabbit holes to fall down into?

There's a giant hole, yeah, but there seems to be other holes branching off from it.
properties (22)
authornovaatebatman
permlinkre-fortified-re-novaatebatman-re-fortified-not-petya-or-either-master-decryption-key-availiable-within-days-or-your-files-lost-forever-20170630t013356358z
categorysecurity
json_metadata{"tags":["security"],"app":"steemit/0.1"}
created2017-06-30 01:33:57
last_update2017-06-30 01:33:57
depth3
children2
last_payout2017-07-07 01:33:57
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length152
author_reputation2,771,271,242,560
root_title"NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id6,701,774
net_rshares0
@twitterbot · 
### ![msuiche](https://pbs.twimg.com/profile_images/760412031421906944/VyahD-YX_normal.jpg) **[Matthieu Suiche](https://twitter.com/@msuiche/status/880075102897000448)** tweeted @ 28 Jun 2017 - 14:47 UTC

> Ransomwares and hackers are becoming the scapegoats of nation state attackers. Petya is a wiper not a ransomware.
[medium.com/comae/petya-20…](https://t.co/lkrfWMw2Zl)


### ![JanusSecretary](https://pbs.twimg.com/profile_images/750439613425131520/MhgBNQNz_normal.jpg) **[JANUS](https://twitter.com/@JanusSecretary/status/880156466115743744)** tweeted @ 28 Jun 2017 - 20:10 UTC

> we're back havin a look in "notpetya" maybe it's crackable with our privkey [#petya](https://twitter.com/search?q=%23petya) @hasherezade sadly missed ;)


###### *Disclaimer: I am just a bot trying to be helpful.*
properties (22)
authortwitterbot
permlinkre-not-petya-or-either-master-decryption-key-availiable-within-days-or-your-files-lost-forever-20170629t214743
categorysecurity
json_metadata""
created2017-06-29 21:47:42
last_update2017-06-29 21:47:42
depth1
children0
last_payout2017-07-06 21:47:42
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length801
author_reputation2,792,128,643,772
root_title"NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id6,681,485
net_rshares0
@v4vapid · 
This is very cool and we need more good people to step up and help out in this way. Great article @fortified, I was unawares;) !
properties (22)
authorv4vapid
permlinkre-fortified-not-petya-or-either-master-decryption-key-availiable-within-days-or-your-files-lost-forever-20170629t233814693z
categorysecurity
json_metadata{"tags":["security"],"users":["fortified"],"app":"steemit/0.1"}
created2017-06-29 23:38:21
last_update2017-06-29 23:38:21
depth1
children7
last_payout2017-07-06 23:38:21
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length128
author_reputation227,173,587,450,152
root_title"NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id6,692,084
net_rshares0
@fortified ·
$0.08
yes he was the same person that stole the decryption keys for the Chimera ransomware last year from another hacking group and released them to the public. they are an Interesting group to say the least. 

Thanks as always man.
👍  
properties (23)
authorfortified
permlinkre-v4vapid-re-fortified-not-petya-or-either-master-decryption-key-availiable-within-days-or-your-files-lost-forever-20170630t013845600z
categorysecurity
json_metadata{"tags":["security"],"app":"steemit/0.1"}
created2017-06-30 01:38:51
last_update2017-06-30 01:38:51
depth2
children6
last_payout2017-07-07 01:38:51
cashout_time1969-12-31 23:59:59
total_payout_value0.076 HBD
curator_payout_value0.003 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length226
author_reputation38,014,334,194,654
root_title"NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id6,702,182
net_rshares9,301,107,395
author_curate_reward""
vote details (1)
@v4vapid · (edited)
No thank you, I'm introduced to a lot of excellent information in your posts. Keep it coming!
properties (22)
authorv4vapid
permlinkre-fortified-re-v4vapid-re-fortified-not-petya-or-either-master-decryption-key-availiable-within-days-or-your-files-lost-forever-20170630t014511062z
categorysecurity
json_metadata{"tags":["security"],"app":"steemit/0.1"}
created2017-06-30 01:45:18
last_update2017-06-30 01:45:54
depth3
children5
last_payout2017-07-07 01:45:18
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length93
author_reputation227,173,587,450,152
root_title"NOT PETYA | Either Master Decryption Key Available Within Days Or Your Files Lost Forever"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id6,702,712
net_rshares0
Help/Feedback