Which ransomware targets Linux devices with AES encryption on QNAP NAS?

Ransomware families sometimes specialize in the platforms they attack. The one known for encrypting files on QNAP NAS devices runs on the Linux-based firmware of those devices and uses AES to lock the data. eCh0raix emerged specifically as a threat to QNAP NAS, gaining access to the device and encrypting its files, then demanding payment for decryption. The other options align with different targets or behaviors: Dharma is primarily a Windows-focused ransomware, SamSam targeted Windows servers in enterprises, and “worms” describe a broad class of self-replicating malware rather than a NAS-specific ransomware family. So the ransomware associated with Linux-based QNAP NAS devices using AES encryption is eCh0raix.