Extracted

• • Target

    2115fa4a17a9800f76b21e2dc18109d8

  • Size

    492KB

  • MD5

    2115fa4a17a9800f76b21e2dc18109d8

  • SHA1

    f8dc6e5633aadc7ccf12ff0c8f3bb0954049937c

  • SHA256

    76641a0ab4e33d5d69e95991da7d72e88f989b27171c7993d30bbf7a969cfc6f

  • SHA512

    294815ac7e410fc159c035e604b0a97b0fd3382afe010a380d80a73b8b5098aa406c85231ea178954431ee50c93c6f2520cd55fc4cb4d5aff0778fc09364ec78

  • SSDEEP

    6144:81YDRoTY/Ah0Rz5sxBEpbfFsPYPY/3AnRwoOL81vwMW0rLAb56dpLN4XQKJrsu:MQIsAhIdscZiYPYvARwoOaIMW0rwrsu

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2