General

  • Target

    58f129c6868a275b098014fb0a585f25be3b3d7dc61a835e07325bf89e74c0fc

  • Size

    1.5MB

  • Sample

    220508-t97vdaffdr

  • MD5

    3cbfc1855ee4a693bc964f49cb9f2259

  • SHA1

    4afae1a87391636e61dcdae287f83f8587ed4eb6

  • SHA256

    58f129c6868a275b098014fb0a585f25be3b3d7dc61a835e07325bf89e74c0fc

  • SHA512

    3cafc441ee7f3fbd94083ace5182de939cbf2f15b5e058b1cf59c2e2ee079c7703173cfd06a989540bb35557a31dc20335a7eface1bc9b0d68de52cd1420e7de

Malware Config

Extracted

Family

fickerstealer

C2

intros.top:80

Targets

    • Target

      58f129c6868a275b098014fb0a585f25be3b3d7dc61a835e07325bf89e74c0fc

    • Size

      1.5MB

    • MD5

      3cbfc1855ee4a693bc964f49cb9f2259

    • SHA1

      4afae1a87391636e61dcdae287f83f8587ed4eb6

    • SHA256

      58f129c6868a275b098014fb0a585f25be3b3d7dc61a835e07325bf89e74c0fc

    • SHA512

      3cafc441ee7f3fbd94083ace5182de939cbf2f15b5e058b1cf59c2e2ee079c7703173cfd06a989540bb35557a31dc20335a7eface1bc9b0d68de52cd1420e7de

    • Fickerstealer

      Ficker is an infostealer written in Rust and ASM.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks