Extracted

• • Target

    781a5cdfef388bc98d537b65a3df756d

  • Size

    376KB

  • MD5

    781a5cdfef388bc98d537b65a3df756d

  • SHA1

    80fb0082c6e89c4c5b65b56e14f95ee7ff5bed42

  • SHA256

    30a2f8a889552fa0206b73593d8a1b8dd7da3c0cf6d6376e8b9c0ab9cc7d082f

  • SHA512

    919c6f089a121f20b691678b12e1828d6dd2a89c23c9235fe2f9ffaa6bad27885b282ce50372da2aa364756e502b280c1d3fc1671d3b147e3127d1eaad8ba737

  • SSDEEP

    6144:6/KrgKzSIlj4JAi1TmKGdvHDA5Ko6hhhuvxoXIuIvDmstILvSFQ2WTusng:GKrgKzSgjdQyKGdHDA5YhTuvYEDxgKFv

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2