Threat Actor

Qilin (or the Agenda ransomware group) offers affiliates options to customize configurable binary payloads for each victim, including details such as company ID, RSA key, and processes and services to kill before the data encryption. Additionally, the ransom amount requested is different per company, ranging from US$50,000 to US$800,000.