fickerstealer | 94e60de577c84625da69f785ffe7e24c889bfa6923dc7b017c21e8a313e4e8e1 | Triage

Submit
Reports

Overview

overview

Static

static

6hjusfd8.exe

windows7-x64

6hjusfd8.exe

windows10-2004-x64

Sharing

General

Target

6hjusfd8.exe
Size

267KB
Sample

240327-cgkeyaaa25
MD5

77be0dd6570301acac3634801676b5d7
SHA1

7394632d8cfc00c35570d219e49de63076294b6b
SHA256

94e60de577c84625da69f785ffe7e24c889bfa6923dc7b017c21e8a313e4e8e1
SHA512

4ca6db741c01f32f168c0d496494f8f46402885922074c010cd3085f8271bd374f5a3b07ec0717eb6fa9fe11f9c74de6d22a75690359381d08ecb6853150d07c
SSDEEP

6144:VMWdTMYHqhElscw4liVM1LDtG8esyh3hNn+:TdTJqWrEVcDYxN+

Score

10^/10

fickerstealer infostealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

6hjusfd8.exe

Resource

win7-20240221-en

fickerstealer infostealer

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

6hjusfd8.exe

Resource

win10v2004-20240226-en

fickerstealer infostealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

fickerstealer

C2

sweyblidian.com:80

Targets

- Target
  
  6hjusfd8.exe
- Size
  
  267KB
- MD5
  
  77be0dd6570301acac3634801676b5d7
- SHA1
  
  7394632d8cfc00c35570d219e49de63076294b6b
- SHA256
  
  94e60de577c84625da69f785ffe7e24c889bfa6923dc7b017c21e8a313e4e8e1
- SHA512
  
  4ca6db741c01f32f168c0d496494f8f46402885922074c010cd3085f8271bd374f5a3b07ec0717eb6fa9fe11f9c74de6d22a75690359381d08ecb6853150d07c
- SSDEEP
  
  6144:VMWdTMYHqhElscw4liVM1LDtG8esyh3hNn+:TdTJqWrEVcDYxN+
Score

10^/10

fickerstealer infostealer
- Fickerstealer
  Ficker is an infostealer written in Rust and ASM.
  infostealer fickerstealer
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

fickerstealerinfostealer

behavioral2

fickerstealerinfostealer

© 2018-2024

Terms | Privacy