Extracted

• • Target

    92fbec26fdd3d15c1b50b670ee321f87

  • Size

    460KB

  • MD5

    92fbec26fdd3d15c1b50b670ee321f87

  • SHA1

    f561e738540e40321de33d6fb121ed6c28cae291

  • SHA256

    acb0f1bf13c90fa01b172ef9d046d6f9078a2d986842772fe97b95c952b18714

  • SHA512

    cc092b16feeb8bb57928a36ce8bc02f799b2cea51b37b0a929b5ea86b0a7efbe4120917a3817f51bb3f9460169fb9626158dab1acbcef7a51c8113558cfcbc68

  • SSDEEP

    6144:v2U5I9yN0ZhInWAzNSa041dMrzNIqJ99sLiSX+qAY6RwoOL8MW0rLAb56dpLN4X7:vLFNB9zrQX629GWKp8woOIMW0rwrsu

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2