The Luna ransomware was discovered in June 2022; it is developed in the Rust programming language, preventing the group from being easily detected because the malware’s code does not remain static. This variation is capable of operating on multiplatforms, which allows the ransomware to attack on more than one operating system at the same time, including Windows, Linux, and ESXi.
To encrypt its victims, Luna uses a combination of unpopular algorithms, the Diffie-Hellman x25519 key exchange and the AES encryption standard. After being executed, the files are given a so far unknown extension, which blocks access to the data.
During investigations it was discovered that the Luna ransomware was fully adapted to the Russian language, indicating that the group’s targets are probably not part of the former USSR (Union of Soviet Socialist Republics).
Another point that reinforces this idea is the fact that the Luna ransom notes are written in American English, containing spelling errors, pointing out that the note was translated from another language.
Despite the complex information, the ransomware is relatively simple compared to others, and its resources are limited.
Recover files encrypted by Luna ransomware
It is clear that one of the biggest risks for businesses today is ransomware. That’s why Digital Recovery specializes in the recovery of data encrypted by ransomware. We have been developing unique solutions in the recovery field for more than 23 years.
Ransomware attacks create huge losses for their victims, so we are ready to provide fast and efficient solutions in our services. Our team of specialists is able to operate most cases 100% remotely.
In urgent cases, our engineers devote 24×7 special attention to the encrypted companies.
Aware of the importance of data confidentiality, we at Digital Recovery have developed our own confidentiality agreement (NDA).
For more information, contact one of our specialists and perform a diagnosis right now.