Extracted

• • Target

    5d141def0164cbac172d4d0ec12b056b

  • Size

    461KB

  • MD5

    5d141def0164cbac172d4d0ec12b056b

  • SHA1

    a93e6404a88d73cf27ba024db0bbea401b2b8628

  • SHA256

    966b7029a499e60860b0ce95f7c0f2b52447bde4ed8b7539c650b7bd6f8f64ce

  • SHA512

    76af1d057a58a23c9dfdb627fbf9b617d731abdc1fe775ad93ed020fe57641476238914f060e62b48a38023f282cbf51accd27a58ed07517443e5d36de75f72e

  • SSDEEP

    6144:rdL0AVXh/SoYgdcJUNzrx3KXaoC1JhqRLYIxJgLBIlMW0rLAb56dpLN4XQKJrsu:rd48XkgdOUNzrMXO1yR1YLMMW0rwrsu

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2