One of the most sophisticated and adaptable Linux encryptors to be discovered to date may be the Qilin ransomware gang’s VMware ESXi encryptor sample that was discovered.
Because virtual machines maximize available CPU, memory, and storage, more and more businesses are using them to host their servers.
A Linux ELF64 encryptor used by the Qilin ransomware group was discovered by security researcher MalwareHunterTeam last month, and BleepingComputer was given access to it for analysis.
The encryptor is primarily focused on encrypting virtual machines and removing their snapshots, although it may also be used on Linux, FreeBSD, and VMware ESXi servers.