Extracted

• • Target

    fde86687975a5ad9475f7a794077bcb8e2404cc70e1662930be15384d3a6edda

  • Size

    277KB

  • MD5

    605db2ba5163b547c8a3fbc3eda9300d

  • SHA1

    b356fa386bb6ca5816429189bb7d687121dfb131

  • SHA256

    fde86687975a5ad9475f7a794077bcb8e2404cc70e1662930be15384d3a6edda

  • SHA512

    48444f4d53ebccc13e7d0627b7ff01ebb2bbf1fcfab8cf5fc3577608c1f6426cdde68850e2fad6f6394eb7b94f79d079e2f82483158ab541694acd33d60e38a8

  • SSDEEP

    6144:f8bcvL/PEIbNj0jgorXqtK4FxLXhngbN81xtt:f+cvzPEIb2jgor6IWdXVf

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2