VMware ESXi
| 23.03.2023 | VIRTUALPIE (VMware ESXi) | VIRTUALPIE is a lightweight backdoor written in Python that spawns a daemonized IPv6 listener on a hardcoded port on a VMware ESXi server. It supports arbitrary command line execution, file transfer capabilities, and reverse shell capabilities. Communications use a custom protocol and are encrypted using RC4. | MALWARE | VMware ESXi |
| 23.03.2023 | VIRTUALPITA (VMware ESXi) | VIRTUALPITA is a 64-bit passive backdoor that creates a listener on a hardcoded port number on a VMware ESXi server. The backdoor often utilizes VMware service names and ports to masquerade as a legitimate service. It supports arbitrary command execution, file upload and download, and the ability to start and stop vmsyslogd. | MALWARE | VMware ESXi |