Extracted

• • Target

    acdf311254205936c662238f582e45b9

  • Size

    533KB

  • MD5

    acdf311254205936c662238f582e45b9

  • SHA1

    a6ec86ee54499b138de1ea3378b6613f32fed790

  • SHA256

    c5b240ee2ceb15cabe11ec1d630aeab71a436eb508dbcc0506bf5d15e58e5cfe

  • SHA512

    ccd0e7cefc79162a32eb852f0e231967582121dd8c320f96a5631bc58676d67c56ffb22eeb92596ea717a7ce2ba71d34b50a436ea18ff4cf465aba785d7ad48d

  • SSDEEP

    6144:501vOeAJVSO2MzD729B4iiG2IhEsGLKzNZrNVfs8VSMW0rLAb56dpLN4XQKJrsu:50dONJ9z29B4tGJh9VN2TMW0rwrsu

  Score

  10^/10

  fickerstealerinfostealer

  • Fickerstealer

    Ficker is an infostealer written in Rust and ASM.

    infostealerfickerstealer

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2