General

  • Target

    Setup.exe

  • Size

    743.9MB

  • Sample

    221231-mcdfyahd93

  • MD5

    bf8b03a867ada1f6ce71fb0234797eed

  • SHA1

    5f2baa0f711de5fdff12d2bd41455aa8a21706e4

  • SHA256

    1df26d725e27638fdb64cc5c9295af5000bf8a6eddf4b5e8bda3d405306e4efd

  • SHA512

    a39251c92bb61b8041fb2f42153f77cf8c517020cc20255de18754e45f09f021b84f893a7f63687d4669ccf737df4dadd4d993566b00bc8ec4fe04d5472d9ca2

  • SSDEEP

    49152:5GTvQrvJ881wXZKJsbWNYIkssb7Iorsrpk47YbA:5G0jJ88OTKhors1p7k

Malware Config

Targets

    • Target

      Setup.exe

    • Size

      743.9MB

    • MD5

      bf8b03a867ada1f6ce71fb0234797eed

    • SHA1

      5f2baa0f711de5fdff12d2bd41455aa8a21706e4

    • SHA256

      1df26d725e27638fdb64cc5c9295af5000bf8a6eddf4b5e8bda3d405306e4efd

    • SHA512

      a39251c92bb61b8041fb2f42153f77cf8c517020cc20255de18754e45f09f021b84f893a7f63687d4669ccf737df4dadd4d993566b00bc8ec4fe04d5472d9ca2

    • SSDEEP

      49152:5GTvQrvJ881wXZKJsbWNYIkssb7Iorsrpk47YbA:5G0jJ88OTKhors1p7k

    • Fickerstealer

      Ficker is an infostealer written in Rust and ASM.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v6

Tasks