Experts from ESET have established a link between the spread of the Petya virus and the hacker group Telebots.

The specialists came to this conclusion on the basis of an analysis of the infrastructure of attackers, as well as a set of tools, schemes and targets of attacks.

"It is not possible to determine who is behind the activities of this group reliably," the company noted..

The specialists also found out that in the office program M. Doc, which caused the infection, contained a complex hidden backdoor. At the same time, the vulnerability was detected in three updates of the program, released in 2017.