from Understanding Java Code and Malware | Malwarebytes Unpacked
Ransomware is a serious threat we deal with everyday and a lot of our posts focus on analyzing the technical details of this threat.
It’s not everyday, however, that we get a chance to take apart ransomware that is still in its early stages of development. Satana, a new Petya-like ransomware, was discovered by our malware hunters and has been torn apart to show you the intricate details of how it works, why it’s not done and what we can expect moving forward.
Satana Lock Screen:
Here is a little bit of history, most malware in the wild today is just a copy of another malware family that already exists. In the case of Satana, it’s obvious that Petya was the inspiration for a new family of malware to be developed, utilizing many of the same tricks but built in a different way.
Petya Lock Screen:
We see these copycats all the time and usually they don’t deviate too far from the original malware family they are based on.
However, one out of a bunch of copycats might shine brighter than the original inspiration, if you want to think of PC Cyborg as the Great-Grandfather of Ransomware, you can say that all modern Ransomware is based on that, you could also say that Cryptolocker spawned the rush of encrypting ransomware we see today.
Will Satana become that family that stands out from all the others and start its own new generation of ransomware or just vanish into obscurity?
Malwarebytes Anti-Malware detects Satana as Ransom.Satana and our Anti-Ransomware BETA also blocks this threat, but please don’t use it in a production environment.
Read the analysis here and let us know what you think!
Thanks for reading and safe surfing!
RELATED ARTICLES
April 30, 2012 - Malwarebytes Anti-Malware is under constant attack. 24 hours per day, 7 days per week, 365 days per year. If you read my recent blog post about the development of Malwarebytes Chameleon, you know that we at Malwarebytes have big red ‘X’s on our chests; the bad guys are always out to get us. Malwarebytes Anti-Malware...
April 24, 2012 - The fight against malware is a cat-and-mouse game. It is constant and constantly escalating. They make a move, you counter it, they counter your counter, lather, rinse, repeat. What’s more: malware almost always has the advantage. Our software Malwarebytes Anti-Malware earned a reputation for having a high success rate in combating new in-the-wild malware infections:...
May 7, 2012 - From the outside looking in, it may appear that the press regularly reports stories when a company’s website, database or intellectual property has been hacked, stolen or compromised. The more eye-opening fact of the matter is that the scale and scope of the cybercrime problem is much, much larger and the actual incidences of these...
May 14, 2012 - The recent attack on the Serious Organized Crime Agency (SOCA), most likely in response to the 36 data selling sites shut down a few weeks ago, lead to the admission by high ranking SOCA officials that the Ministry of Defense networks need to “beef up their security.” In response to this we would like to...
June 1, 2012 - The last time I checked with Google News this morning there were over 19,100,000 results for “flame malware”. You may have heard many stories this week about this complex trojan. Here are links to three of my current personal favorite articles on “Flame”. Powerful ‘Flame’ cyberweapon tied to popular Angry Birds game – (Fox News)...
