Extracted

• • Target

    29108949012d41570cdf27f0323d5969

  • Size

    594KB

  • MD5

    29108949012d41570cdf27f0323d5969

  • SHA1

    77c61b8c9d35915b6c002c318806dbd15f52e4b4

  • SHA256

    b3fe666403a4cd92cda1e96ddc4b035cc6f384f566d4cf6c34ed92d43a6650e8

  • SHA512

    153a018127b59190260cb08ba6bfe4be7e00e3cd43f68b58dbd8a2712378cafa7c490ac09eaae9847ed4dc2dfbac597dd9ee010e2f3aa8d984fe27e4037c788c

  • SSDEEP

    12288:6uvoig7EUP68iZOnbbONIEVH1KMW0rwrsu:qig7fnbiZVVKh3

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2