Qilin Ransomware (Linux) (01a33c16-7eb3-4494-8c05-b163f871b951)

Qilin is a Linux-based ransomware. The malware is technically capable of running on Linux, FreeBSD, and VMware ESXi servers, but researchers have most often observed Qilin being used to encrypt virtual machines. Qilin users can use various flags to customize its capabilities. Qilin operators maintain a website where they threaten to leak data exfiltrated during their attacks, in an attempt to pressure victims into paying a ransom.^{[BleepingComputer 12 3 2023]}

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Qilin Ransomware (Linux) (01a33c16-7eb3-4494-8c05-b163f871b951)	Tidal Software	Qilin Ransomware Actors (e5395df4-59e0-4eb7-b864-335bfd3a9bc2)	Tidal Groups	1