Hi, On Tue, Jun 27, 2017 at 1:51 PM, Pedro David Marco <[email protected]> wrote: > Hi everybody... > > just bothering you to share this: > > We are detecting Petya2 inside attached PDFs... (not detected by many AV) > > has anyone seen it into any MS OFFICE attachment? or maybe any .js dropper?
How are you detecting them? Tips for blocking, if the AVs aren't catching them yet? Have you submitted to sanesecurity?
