General
-
Target
f62434d2bfd1b9d953618d0be4ba442e3210b821575ae1b1c97ae6aa55ae394a.zip
-
Size
4.0MB
-
Sample
221114-lqjpfabf4y
-
MD5
5626e4f27b8bc49edd195be9a3386a71
-
SHA1
522ae610e78a67391a08bcbb9e7146f3f3417c1f
-
SHA256
562d7366beb4a389ba3551701ffd56ac335f551bc4e48922acffb3140bdcea2e
-
SHA512
9f3b5acce3f8f120df75de5f77328936dd5f429ab2df32d3704d4b45412b99d609a766d9b2bc5469b4aad2f78837c70dbc7ad06dd7f72625ca8985a027720a6f
-
SSDEEP
98304:W4Tgkh8QX7R76vWXnIR7CPy6qEtkTKpPH5TZF1:fBT7gGPHkWnZv
Malware Config
Extracted
fickerstealer
86.107.197.85:80
Targets
-
-
Target
f62434d2bfd1b9d953618d0be4ba442e3210b821575ae1b1c97ae6aa55ae394a.exe
-
Size
4.5MB
-
MD5
7912addad41057e4fd93ca599aef6b22
-
SHA1
6954b0d7afbc34086dda788bd92eb206032b9728
-
SHA256
f62434d2bfd1b9d953618d0be4ba442e3210b821575ae1b1c97ae6aa55ae394a
-
SHA512
aaa38daf119f5d7e269059ca98a3ef1bc3bfd73602b560ff0daed1cbd107fc4bcfa524591fd45de2d3c2088af086bab0c1845f3b517c614b99ad345d39914ef3
-
SSDEEP
98304:57AsIlb8NWY5mIaBJHW++kYal61OGHAwFcfn4mpaM5A1FE/cP:5Ms2KWJ2mrl60HFpP5RkP
Score10/10-
Fickerstealer
Ficker is an infostealer written in Rust and ASM.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-