Extracted

• • Target

    a805ad0e74f9740a16855d75ce422b5b

  • Size

    469KB

  • MD5

    a805ad0e74f9740a16855d75ce422b5b

  • SHA1

    b0aad0de40153ebb88ed374165baad591d75df18

  • SHA256

    509a12684cbe4807cff583c20831617ed823605226c022391e66e50be0227d8d

  • SHA512

    eb5fedd7adb375a637a9dda5ab57db95d3bc8ad1035d96fa3f05bc4211c815447e8b222711bd746c7266cddcb1da7bcb0fe569fc22eb2082c1bc4001ea91a2ab

  • SSDEEP

    6144:nrq0EiwG+9zt0449RZqy6wOZg0AALv21XaW0rLFb56dpLN4XQKJ3:nwiIu99PqtZXAYIXaW0rN3

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2