No. The exploit targets specific windowsXP vulnerabilities to obtain root priveliges. Then uses xp disk encryption utilities installed by default to encrypt the disk.
On Mon, May 15, 2017 at 8:21 AM, jitendra jituviju@gmail.com wrote:
Hi
Someone on twitter claimed that the malware is able to run in wine. So one needs to be careful when running windows programs under wine.
wine access is restricted to a specific directory. It cannot access anything outside that directory. The encryption utility will not be able to read a linux filesystem in anycase.
On Mon, May 15, 2017 at 6:42 PM, Raghavendra Kamath < raghavendr.raghu@gmail.com> wrote:
Hi
Someone on twitter claimed that the malware is able to run in wine. So one needs to be careful when running windows programs under wine.
-- Raghavendra Kamath Illustrator raghukamath.com -- http://mm.ilug-bom.org.in/mailman/listinfo/linuxers
Hi
On 2017 May 15 22:56:41, J T Dsouza wrote:
wine access is restricted to a specific directory. It cannot access anything outside that directory. The encryption utility will not be able to read a linux filesystem in anycase.
I think the '/' (root directory) gets mapped to 'Z' drive in wine, that way it is accessible. I don't know the specific details about the permissions it has. But the Wine FAQs themselves suggest that wine is not immune to malware or viruses as mentioned here -> https://wiki.winehq.org/FAQ#Is_Wine_malware-compatible.3F
And as far as I understand, if wine is run as user, it can acces user files and can alter your personal files, which is what the malware targets.
On Mon, 2017-05-15 at 23:29 +0530, Raghavendra Kamath wrote:
I don't know the specific details about the permissions it has. But the Wine FAQs themselves suggest that wine is not immune to malware or viruses as mentioned here -> https://wiki.winehq.org/FAQ#Is_Wine_malware-compatible.3F
This is the case where an infected executable is run by Wine.
In the case of wannacry, the malware is deployed on a target machine over the network, by exploiting an smbv1 bug specific to windows.
However, if wannacry is manually installed and executed in Wine, then yes, it can affect you.
On Mon, 2017-05-15 at 18:42 +0530, Raghavendra Kamath wrote:
Someone on twitter claimed that the malware is able to run in wine. So one needs to be careful when running windows programs under wine.
I am assuming we are talking about the recent "wannacry". Wannacry exploits a remote-code-execution bug in smbv1. Wine does not implement smbv1. It only provides a library/environment for windows applications to run.
On വ്യാഴം 18 മെയ് 2017 01:59 വൈകു, Joe Steeve wrote:
On Mon, 2017-05-15 at 18:42 +0530, Raghavendra Kamath wrote:
Someone on twitter claimed that the malware is able to run in wine. So one needs to be careful when running windows programs under wine.
I am assuming we are talking about the recent "wannacry". Wannacry exploits a remote-code-execution bug in smbv1. Wine does not implement smbv1. It only provides a library/environment for windows applications to run.
smbv1 is used only to spread the malware. If someone gets an exe as attachment and they run it with wine, it can affect them.
On Thu, 2017-05-18 at 14:06 +0530, Pirate Praveen wrote:
smbv1 is used only to spread the malware. If someone gets an exe as attachment and they run it with wine, it can affect them.
Yes, thats correct.
-
J T Dsouza -
jitendra -
Joe Steeve -
Pirate Praveen -
Raghavendra Kamath