Extracted

• • Target

    59a6c1ed3330380a2e3c7671029777e5.exe

  • Size

    375KB

  • MD5

    59a6c1ed3330380a2e3c7671029777e5

  • SHA1

    71cc876b0003c55b548f9de7fde38c14a33e7a74

  • SHA256

    3b9208447ad1e6a191918e6e2b71d26566ec3dd62ed3e2c1145c7bbdc786da3d

  • SHA512

    2a7412bd5fdefb11852dba39db00491f9ee97a896b58e810691509782cc065d2e08564036e28b0b9fcda9410feb3c753364b3aad61026d2c3fcffad0069a1c8f

  • SSDEEP

    6144:ztcTLgoQG1PuXv5OAikSItDFXF4SOsCXxMlgEi:ztkkoQG1uf5OALtlF0JXxMGEi

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2