Extracted

• • Target

    58282e9f63bbec333e8ff303a1373913

  • Size

    589KB

  • MD5

    58282e9f63bbec333e8ff303a1373913

  • SHA1

    15053bc3f597ec65b06bd694f8db0bc9fae7d7e9

  • SHA256

    116f6e59f3240a7a27c2e2ca39fbfb258cbd6f7f13caca8cfab26a72306b831f

  • SHA512

    65b42025723bc6b3c2961f069fba96a97df43de980c41b59d083b15f335d2c712a013bbe1aabe33282f67db40040ae9ccb24387a0e6b3135c0fa72580f816865

  • SSDEEP

    12288:w+gxR4kP2vcaLc/VCHLCN8EGmttjKmSOw7s6ZwvMW0rwrsu:1c2vcak8VmvS7ovh3

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2