mountlocker | 43064ebb9fccce989e8a8ebe2e8ee5df154b55f7b94d933e0cf7dba6ac765f00 | Triage

Submit
Reports

Overview

overview

Static

static

43064ebb9f...00.exe

windows7_x64

43064ebb9f...00.exe

windows10_x64

8

Resubmissions

21-04-2021 05:57

210421-6629fr1gja 10

20-04-2021 23:42

210420-mt2kpcnwbx 10

20-04-2021 23:39

210420-4kmcwg1k3a 10

Sharing

General

Target

43064ebb9fccce989e8a8ebe2e8ee5df154b55f7b94d933e0cf7dba6ac765f00.exe
Size

4.5MB
Sample

210420-4kmcwg1k3a
MD5

787d10a041bd8d2654b6f14467f123d7
SHA1

0dc98264957990391bd375a3e9ce9f0e047c1075
SHA256

43064ebb9fccce989e8a8ebe2e8ee5df154b55f7b94d933e0cf7dba6ac765f00
SHA512

dbb450db73b030531b57fb5809b22b60730e13445ff02a032be5abb3668285122564cc1792fc3f44520a434b48656de7a22e931cc35d762a0704078f7021686f

Score

10^/10

mountlocker ransomware

Static task

static1

Behavioral task

behavioral1

Sample

43064ebb9fccce989e8a8ebe2e8ee5df154b55f7b94d933e0cf7dba6ac765f00.exe

Resource

win7v20210408

mountlocker ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

43064ebb9fccce989e8a8ebe2e8ee5df154b55f7b94d933e0cf7dba6ac765f00.exe

Resource

win10v20210408

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  43064ebb9fccce989e8a8ebe2e8ee5df154b55f7b94d933e0cf7dba6ac765f00.exe
- Size
  
  4.5MB
- MD5
  
  787d10a041bd8d2654b6f14467f123d7
- SHA1
  
  0dc98264957990391bd375a3e9ce9f0e047c1075
- SHA256
  
  43064ebb9fccce989e8a8ebe2e8ee5df154b55f7b94d933e0cf7dba6ac765f00
- SHA512
  
  dbb450db73b030531b57fb5809b22b60730e13445ff02a032be5abb3668285122564cc1792fc3f44520a434b48656de7a22e931cc35d762a0704078f7021686f
Score

10^/10

mountlocker ransomware
- MountLocker Ransomware
  Ransomware family first seen in late 2020, which threatens to leak files if ransom is not paid.
  ransomware mountlocker
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Executes dropped EXE
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

File Deletion

Hidden Files and Directories

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

behavioral1

mountlockerransomware

behavioral2

© 2018-2025

Terms | Privacy