1
In Linux, one of the layers of protection against malware is the fact that you need sudo privileges, malware most often would not be able to crack the sudo password, hence it's unable to do what is supposed to do.
So in windows, or any OS, if I password protect a folder, the only one who can remove the password is the admin and the admin account is password protected too. Would the ransomware be able to encrypt the folder and its content or would the filesystem restricts that?