← Back to malware index
Petya / NotPetya
Attributions are based on open-source threat reports. A family appearing here means at least one syscall record cites it; absence does not imply non-use.
2 syscalls cited
- NtRaiseHardError
Raises a 'hard error' that the kernel routes to CSRSS for UI prompting — or, with SeShutdownPrivilege and FATAL severity, triggers an immediate bugcheck (BSOD).
- NtSetVolumeInformationFile
Modifies writable volume properties — primarily the volume label — for the volume backing a file handle.