← Back to Ransomware Chk

Mountlocker

Inactive
MountLocker operated as a ransomware-as-a-service from July 2020, using a standard developer/affiliate revenue split and leveraging compromised RDP credentials for initial access, propagating laterally via Windows Active Directory APIs and targeting over 2,600 file extensions.
18 Victims
Feb 6, 2021 First Discovered
Feb 8, 2022 Last Discovered
1545 Days Inactive
0% Infostealer
0/1 Sites Online
Top Sectors
Manufacturing 9
Construction 3
Transportation/Logistics 2
Consumer Services 1
Healthcare 1
Business Services 1
Financial Services 1
Known Locations (1)
mountnewsokhwilx.onion
Tools Used
Exfiltration
MEGA, PrivatLab
Victims (18)
Dassault Falcon Jet
Manufacturing Discovered: Feb 8, 2022 · Attack est.: Feb 8, 2022
Memry Corporation
Manufacturing Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
ThyssenKrupp System Engineering
Manufacturing Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Century 3, Inc.
Manufacturing Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Amey plc
Construction Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Transtar1
Transportation/Logistics Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Wasserstorm
Consumer Services Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
MERSEN
Manufacturing Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Geotech Engineering and Testing
Construction Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Laboratorios SMA S.A.C.
Healthcare Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Makalot
Manufacturing Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Gunnebo AB
Manufacturing Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Enerstar Rentals & Services
Business Services Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Forrester Construction
Construction Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Homeland Title
Financial Services Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
FAPS Inc.
Manufacturing Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
Nachi America Inc.
Manufacturing Discovered: Sep 9, 2021 · Attack est.: Sep 9, 2021
ECU Worldwide
Transportation/Logistics Discovered: Feb 6, 2021 · Attack est.: Feb 6, 2021
Source: Ransomware.live | Data cached and served by Digital Checkmark IT Services | Ransomware Chk