SYMBOLCOMMON_NAMEaka. SYNONYMS
elf.red_alert (Back to overview)

RedAlert Ransomware

aka: N13V

Ransomware that targets Linux VMware ESXi servers. Encryption procedure uses the NTRUEncrypt public-key encryption algorithm.

References
2022-09-28vmwareGiovanni Vigna
ESXi-Targeting Ransomware: The Threats That Are After Your Virtual Machines (Part 1)
Avoslocker Babuk Black Basta BlackCat BlackMatter Conti DarkSide HelloKitty Hive LockBit Luna RansomEXX RedAlert Ransomware REvil
2022-07-12cybleCyble Research Labs
New Ransomware Groups On The Rise: “RedAlert,” LILITH And 0mega Leading A Wave Of Ransomware Campaigns
RedAlert Ransomware Lilith
2022-07-05Bleeping ComputerLawrence Abrams
New RedAlert Ransomware targets Windows, Linux VMware ESXi servers
RedAlert Ransomware

There is no Yara-Signature yet.