mountlocker | b26749b17ca691328ba67ee49d4d9997c101966c607ab578afad204459b7bf8f | Triage

Submit
Reports

Overview

overview

Static

static

b26749b17c...in.exe

windows7_x64

b26749b17c...in.exe

windows10_x64

Sharing

General

Target

b26749b17ca691328ba67ee49d4d9997c101966c607ab578afad204459b7bf8f.bin
Size

161KB
Sample

210512-1r4dgm8h36
MD5

7f43257736fa07f70086aefe917096bf
SHA1

09c35d8d7d6d8aca94ad1f7236752ea877e93ecc
SHA256

b26749b17ca691328ba67ee49d4d9997c101966c607ab578afad204459b7bf8f
SHA512

a831267c79980a9cce218a1c670e2b740e87a43b39363202029f06f6a24e18be45ca06732aa4b4e40421843762a453b07c453db271848547539ceea7b12c358e

Score

10^/10

mountlocker ransomware

Static task

static1

Behavioral task

behavioral1

Sample

b26749b17ca691328ba67ee49d4d9997c101966c607ab578afad204459b7bf8f.bin.exe

Resource

win7v20210410

mountlocker ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

b26749b17ca691328ba67ee49d4d9997c101966c607ab578afad204459b7bf8f.bin.exe

Resource

win10v20210410

mountlocker ransomware

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  b26749b17ca691328ba67ee49d4d9997c101966c607ab578afad204459b7bf8f.bin
- Size
  
  161KB
- MD5
  
  7f43257736fa07f70086aefe917096bf
- SHA1
  
  09c35d8d7d6d8aca94ad1f7236752ea877e93ecc
- SHA256
  
  b26749b17ca691328ba67ee49d4d9997c101966c607ab578afad204459b7bf8f
- SHA512
  
  a831267c79980a9cce218a1c670e2b740e87a43b39363202029f06f6a24e18be45ca06732aa4b4e40421843762a453b07c453db271848547539ceea7b12c358e
Score

10^/10

mountlocker ransomware
- MountLocker Ransomware
  Ransomware family first seen in late 2020, which threatens to leak files if ransom is not paid.
  ransomware mountlocker
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Deletes itself
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

mountlockerransomware

behavioral2

mountlockerransomware

© 2018-2024

Terms | Privacy