FinFisher/B206FF8C

Aus Piratenwiki
Wechseln zu: Navigation, Suche

B206FF8C

Licenses

customer_license
LicenseID MachineUID SoftwareUID SoftwareName VersionMajor NotBefore ValidityStart NotAfter ValidityEnd InstallationDate LicenseFile LicenseContents Status CustomerID ProductID Deleted UserID DataEntryDate LastUpdated
436 8D:FC:51:C6:AC:C0:6E:13 00:1C:00:0A FinUSB 4 1349395200 2012-10-05 02:00:00 1381104000 2013-10-07 02:00:00 2012-10-10 13:09:11 License.txt MACHINE UID

8D:FC:51:C6:AC:C0:6E:13 CUSTOMER UID B206FF8C SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1349395200 NOT AFTER 1381104000 DEMO 0

Expired 69 3 1 5 2012-10-10 13:09:11 2013-11-26 13:24:47
437 4C:67:D0:1D:B4:EF:22:F1 00:2A:00:0A FinIntrusion-Kit 4 1345507200 2012-08-21 02:00:00 1377216000 2013-08-23 02:00:00 2012-10-10 13:09:39 License.txt MACHINE UID

4C:67:D0:1D:B4:EF:22:F1 CUSTOMER UID B206FF8C SOFTWARE UID 00:2A:00:0A SOFTWARE NAME FinIntrusion-Kit VERSION MAJOR 4 NOT BEFORE 1345507200 NOT AFTER 1377216000 DEMO 0

Activated 69 5 1 5 2012-10-10 13:09:39 2012-12-03 13:18:17
438 D2:74:BE:24:A7:B4:81:7B 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1381104000 2013-10-07 02:00:00 2012-10-10 13:09:57 License.txt MACHINE UID

D2:74:BE:24:A7:B4:81:7B CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 1 TARGETS MAX NUMBER 10 NOT BEFORE 1349395200 NOT AFTER 1381104000 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 1 1 5 2012-10-10 13:09:57 2013-02-12 16:35:35
439 4D:84:C5:CB:0D:EE:70:B2 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1381104000 2013-10-07 02:00:00 2012-10-10 13:10:24 License.txt MACHINE UID

4D:84:C5:CB:0D:EE:70:B2 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 5 TARGETS MAX NUMBER 150 NOT BEFORE 1349395200 NOT AFTER 1381104000 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 1 1 5 2012-10-10 13:10:24 2013-02-12 16:35:28
440 4D:84:C5:CB:0D:EE:70:B2 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1381104000 2013-10-07 02:00:00 2012-10-10 13:10:50 License.txt MACHINE UID

4D:84:C5:CB:0D:EE:70:B2 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 5 TARGETS MAX NUMBER 150 NOT BEFORE 1349395200 NOT AFTER 1381104000 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 16 1 5 2012-10-10 13:10:50 2013-02-12 16:35:41
456 4C:67:D0:1D:B4:EF:22:F1 00:2A:00:0A FinIntrusion-Kit 4 1353974400 2012-11-27 01:00:00 1385769600 2013-11-30 01:00:00 2012-12-03 14:17:49 License1.txt MACHINE UID

4C:67:D0:1D:B4:EF:22:F1 CUSTOMER UID B206FF8C SOFTWARE UID 00:2A:00:0A SOFTWARE NAME FinIntrusion-Kit VERSION MAJOR 4 NOT BEFORE 1353974400 NOT AFTER 1385769600 DEMO 0

Activated 69 5 1 5 2012-12-03 14:17:49 2013-11-26 13:24:43
494 FE:85:18:DA:6C:6D:F7:32 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1390435200 2014-01-23 01:00:00 2013-02-12 17:34:32 License.txt MACHINE UID

FE:85:18:DA:6C:6D:F7:32 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 5 TARGETS MAX NUMBER 150 NOT BEFORE 1349395200 NOT AFTER 1390435200 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 1 1 5 2013-02-12 17:34:32 2013-11-26 13:24:38
495 55:AA:C4:32:D5:90:7F:D5 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1390435200 2014-01-23 01:00:00 2013-02-12 17:35:17 License.txt MACHINE UID

55:AA:C4:32:D5:90:7F:D5 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 1 TARGETS MAX NUMBER 10 NOT BEFORE 1349395200 NOT AFTER 1390435200 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 1 1 5 2013-02-12 17:35:17 2013-11-26 13:24:34
496 55:AA:C4:32:D5:90:7F:D5 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1390435200 2014-01-23 01:00:00 2013-02-12 17:35:58 License.txt MACHINE UID

55:AA:C4:32:D5:90:7F:D5 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 1 TARGETS MAX NUMBER 10 NOT BEFORE 1349395200 NOT AFTER 1390435200 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 16 1 5 2013-02-12 17:35:58 2013-11-26 13:24:28
680 8D:FC:51:C6:AC:C0:6E:13 00:1C:00:0A FinUSB 4 1349395200 2012-10-05 02:00:00 1393545600 2014-02-28 01:00:00 2013-11-26 14:22:19 License.txt MACHINE UID

8D:FC:51:C6:AC:C0:6E:13 CUSTOMER UID B206FF8C SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1349395200 NOT AFTER 1393545600 DEMO 0

Activated 69 3 1 5 2013-11-26 14:22:19 2014-02-19 16:09:11
681 8D:FC:51:C6:AC:C0:6E:13 00:1C:00:0A FinUSB 4 1349395200 2012-10-05 02:00:00 1393545600 2014-02-28 01:00:00 2013-11-26 14:22:50 License.txt MACHINE UID

8D:FC:51:C6:AC:C0:6E:13 CUSTOMER UID B206FF8C SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1349395200 NOT AFTER 1393545600 DEMO 0

Activated 69 5 1 5 2013-11-26 14:22:50 2014-02-19 16:09:14
682 55:AA:C4:32:D5:90:7F:D5 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1393545600 2014-02-28 01:00:00 2013-11-26 14:23:19 License.txt MACHINE UID

55:AA:C4:32:D5:90:7F:D5 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 1 TARGETS MAX NUMBER 10 NOT BEFORE 1349395200 NOT AFTER 1393545600 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 1 1 5 2013-11-26 14:23:19 2014-02-19 16:09:18
683 55:AA:C4:32:D5:90:7F:D5 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1393545600 2014-02-28 01:00:00 2013-11-26 14:23:32 License.txt MACHINE UID

55:AA:C4:32:D5:90:7F:D5 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 1 TARGETS MAX NUMBER 10 NOT BEFORE 1349395200 NOT AFTER 1393545600 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 1 1 5 2013-11-26 14:23:32 2014-02-19 16:09:21
752 8D:FC:51:C6:AC:C0:6E:13 00:1C:00:0A FinUSB 4 1349395200 2012-10-05 02:00:00 1551398400 2019-03-01 01:00:00 2014-02-19 17:07:34 License.txt MACHINE UID

8D:FC:51:C6:AC:C0:6E:13 CUSTOMER UID B206FF8C SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1349395200 NOT AFTER 1551398400 DEMO 0

Activated 69 3 1 5 2014-02-19 17:07:35 2014-02-21 10:43:25
753 4C:67:D0:1D:B4:EF:22:F1 00:2A:00:0A FinIntrusion-Kit 4 1353974400 2012-11-27 01:00:00 1551398400 2019-03-01 01:00:00 2014-02-19 17:08:02 License.txt MACHINE UID

4C:67:D0:1D:B4:EF:22:F1 CUSTOMER UID B206FF8C SOFTWARE UID 00:2A:00:0A SOFTWARE NAME FinIntrusion-Kit VERSION MAJOR 4 NOT BEFORE 1353974400 NOT AFTER 1551398400 DEMO 0

Activated 69 5 1 5 2014-02-19 17:08:02 2014-02-21 10:43:14
754 55:AA:C4:32:D5:90:7F:D5 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1551398400 2019-03-01 01:00:00 2014-02-19 17:08:31 License.txt MACHINE UID

55:AA:C4:32:D5:90:7F:D5 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 1 TARGETS MAX NUMBER 10 NOT BEFORE 1349395200 NOT AFTER 1551398400 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 1 0 5 2014-02-19 17:08:31 2014-02-19 16:08:31
755 FE:85:18:DA:6C:6D:F7:32 00:1E:00:0A FinSpyV2 4 1349395200 2012-10-05 02:00:00 1551398400 2019-03-01 01:00:00 2014-02-19 17:08:54 License.txt MACHINE UID

FE:85:18:DA:6C:6D:F7:32 CUSTOMER UID B206FF8C SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 5 TARGETS MAX NUMBER 150 NOT BEFORE 1349395200 NOT AFTER 1551398400 MOBILE NOT BEFORE 0 MOBILE NOT AFTER 0 MOBILE TARGETS MAX NUMBER 0 VERSION MAJOR 4 DEMO 0

Activated 69 1 0 5 2014-02-19 17:08:54 2014-02-19 16:08:54
756 8D:FC:51:C6:AC:C0:6E:13 00:1C:00:0A FinUSB 4 1349395200 2012-10-05 02:00:00 1456790400 2016-03-01 01:00:00 2014-02-21 11:38:57 License.txt MACHINE UID

8D:FC:51:C6:AC:C0:6E:13 CUSTOMER UID B206FF8C SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1349395200 NOT AFTER 1456790400 DEMO 0

Activated 69 3 0 5 2014-02-21 11:38:57 2014-02-21 10:38:57
757 4C:67:D0:1D:B4:EF:22:F1 00:2A:00:0A FinIntrusion-Kit 4 1353974400 2012-11-27 01:00:00 1456790400 2016-03-01 01:00:00 2014-02-21 11:39:32 License.txt MACHINE UID

4C:67:D0:1D:B4:EF:22:F1 CUSTOMER UID B206FF8C SOFTWARE UID 00:2A:00:0A SOFTWARE NAME FinIntrusion-Kit VERSION MAJOR 4 NOT BEFORE 1353974400 NOT AFTER 1456790400 DEMO 0

Activated 69 5 0 5 2014-02-21 11:39:32 2014-02-21 10:39:32

Support-Requests

03B8149F

TrackingID: "03B8149F"

Summary: "FinIntrusion Kit issues and enquiries"

Description: "1. Sometimes after running some task, eg. scanning of wireless network, I am not able to do other task. I will give the error message :The current selected wireless adapter is blocked by another wireless process. Please stop the process or select a different wireless adapted. Even though the current process has completed, but I am not able to run other task.\r\n\r\n2. I am able to jam client but not wireless access point. Tried on a few wireless access point, but not able to jammed them.\r\n\r\n3. For the Fake AP, does it support WPA? Or is it just purely for WEP? I only saw the WEP field but not WPA.\r\n\r\n4. Understand that the current intrusion kit version has a major change over the years, is there any user manual/guide?\r\n\r\n5. I input the license file on the Intrusion Kit that I have setup on the Kali OS, there is no issue or error. But the next time when I launch the intrusion kit application with the Alfa USB wireless device connected, the license information show wrong machine UID error. Is it normal?"

ProductID: 5

TypeID: 2

FileName: "03B8149F"

StatusNotification: 1

SupportComments: "

An corresponding email has been sent.

"

StatusID: 2

CustomerID: 69

Language: "en"

CreationDate: "2014-01-15 04:38:56"

LastUpdated: "2014-01-15 11:01:40"

0471A44D

TrackingID: "0471A44D"

Summary: "Close ticket for 5D14C9B0"

Description: "Please close the ticket for 5D14C9B0."

ProductID: 1

TypeID: 3

FileName: "0471A44D"

StatusNotification: 1

SupportComments: "

An corresponding email has been sent.

"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-09-24 10:31:38"

LastUpdated: "2013-09-27 06:37:29"

0AACC8B6

TrackingID: "0AACC8B6"

Summary: "Data retrieval in the event of server mainboard failure"

Description: "Would like to check in the event of the server mainboard failure, how can we retrieve back the data from the encrypted hard disk?"

ProductID: 1

TypeID: 3

FileName: "0AACC8B6"

StatusNotification: 1

SupportComments: ""

StatusID: 2

CustomerID: 69

Language: "en"

CreationDate: "2013-09-24 10:44:45"

LastUpdated: "2013-10-16 11:47:26"

18ADFB30

TrackingID: "18ADFB30"

Summary: "Target not able to be infected if they are on LAN"

Description: "If my target laptop is connected to the Internet through 3G dongle, there is no issue on infection and data exfiltration. However, if my target laptop is connected to the Internet through ADSL, my target laptop is not able to be infected and no data is send back. The FinSpy Agent is not able to see the target. On the target laptop, I opened a wireshark to see the traffic and saw that target did successfully completed the http 3 way handshake, but after the 3 way handshake, there is an bad data request error. How do we resolve this?"

ProductID: 1

TypeID: 1

FileName: "18ADFB30"

StatusNotification: 1

StatusID: 1

CustomerID: 69

Language: "en"

CreationDate: "2013-10-23 19:15:05"

LastUpdated: "2013-10-23 17:15:05"

29D6412F

TrackingID: "29D6412F"

Summary: "Enquiry on openssl and heartbleed vulnerability"

Description: "On the FinSpy Agent laptop, there is an openssl software installed. Would like to what is it for? Also recently there is this heartbleed vulnerability, would like to check are the agent laptop, relay server and finspy server vulnerable to this heartbleed vulnerability?"

ProductID: 1

TypeID: 3

FileName: "29D6412F"

StatusNotification: 1

SupportComments: "

\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.

\r\n\r\n\r\n\r\n\r\n"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2014-04-11 08:11:13"

LastUpdated: "2014-04-23 08:12:32"

2EDB11BA

TrackingID: "2EDB11BA"

Summary: "Target data did not call back after upgrading from 4.50 to 4.51"

Description: "After I upgrade to 4.51, my old and new target did come online. But it only shows Data available on target. Did not see any data coming in. Even I click analyse data, there is no data. If I do a live session, there is no issue. But I am not able to see normal data like keylogger. The only change I did on the server is upgrade to 4.51 and also remove the software win32openssl software on my agent desktop.\r\n\r\nCheck that the relay hash value of 4.50 and 4.51 are the same. Did not upgrade the relay to 4.51. Do I need to upgrade the relay from 4.50 to 4.51?\r\n\r\nIf I want to test again whether the issue is 4.51, by reinstalling 4.50 ggi on the master and proxy server, will that work? Will that downgrade to 4.50?"

ProductID: 1

TypeID: 3

FileName: "2EDB11BA"

StatusNotification: 1

SupportComments: "

\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.

\r\n\r\n\r\n\r\n\r\n"

StatusID: 2

CustomerID: 69

Language: "en"

CreationDate: "2014-04-15 15:22:13"

LastUpdated: "2014-04-17 07:17:43"

313A45C2

TrackingID: "313A45C2"

Summary: "Request for relay software without branding"

Description: "Would like to request to have a version of the relay software without branding, eg, Gamma, Finspy, relay, ffrelay. The logging should not have the branding as well.\r\n\r\nReason is that if there is any investigation or researchers is trying to gather information, they would not track down that the hosting relay server is using FinSpy."

ProductID: 1

TypeID: 4

FileName: "313A45C2"

StatusNotification: 1

SupportComments: "There is no branding in the relay software anymore."

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-04-01 04:41:24"

LastUpdated: "2013-06-21 11:32:50"

3EB89798

TrackingID: "3EB89798"

Summary: "Request for softcopy of latest user manual"

Description: "Would like to request for the latest softcopy of the FinSpy user manual"

ProductID: 1

TypeID: 3

FileName: "3EB89798"

StatusNotification: 1

SupportComments: "

\r\n<pre>\r\n<pre>An corresponding email has been sent.

\r\n\r\n"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2014-02-18 04:50:00"

LastUpdated: "2014-02-18 10:30:16"

407C3B0E

TrackingID: "407C3B0E"

Summary: "4.3.1 HTTP Tunnelling support"

Description: "If our relay server is not using gamma relay server software, our relay server is using normal linux iptables forwarding which forward all packet fronm the target to the proxy server, upon our proxy server updating to 4.3.1 which provide HTTP Tunnelling support, will the proxy server be able to accept packet from the relay server since the relay server does not have HTTP Tunnelling?"

ProductID: 1

TypeID: 3

FileName: "407C3B0E"

StatusNotification: 1

SupportComments: "An mail has been send with the information that they are able to use the system without our relay software."

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-05-20 03:08:05"

LastUpdated: "2013-06-04 08:22:35"

4A3BC1CB

TrackingID: "4A3BC1CB"

Summary: "Unable to create bootable iso image and bootable infection dongle"

Description: "During the creation of Trojan, we tried both bootable iso image and bootable infection dongle, application exception error occur and the finspy agent is terminated. Attached is the screenshot of the error for both bootable iso image and bootable infection dongle."

ProductID: 1

TypeID: 3

FileName: "4A3BC1CB.docx"

StatusNotification: 1

SupportComments: "

An corresponding email has been send. The ticket is closed.

"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-11-13 03:35:32"

LastUpdated: "2013-11-15 11:24:37"

4BE740B2

TrackingID: "4BE740B2"

Summary: "Re-infection fail on Win7 32-bit virtual machine"

Description: "After removing infection from agent and target moves to archive list, virtual machine is shut down and restarted. Attempts to re-infect fails - Target does not appear on Master."

ProductID: 1

TypeID: 2

FileName: "4BE740B2"

StatusNotification: 1

SupportComments: ""

StatusID: 2

CustomerID: 69

Language: "en"

CreationDate: "2012-10-12 09:48:37"

LastUpdated: "2012-10-15 11:31:09"

50EB2496

TrackingID: "50EB2496"

Summary: "Target with mbr infection did not go online after reinstalling windows"

Description: "I infected a target running windows 7 ultimate 32 bit using MBR infection. The target appears online. After that we perform a reinstallation of windows. The reinstallation of windows did not delete or recreate any windows partition. However, the target is not able to come online after reinstallation of windows."

ProductID: 1

TypeID: 2

FileName: "50EB2496"

StatusNotification: 1

SupportComments: "

A suitable mail has been sent with the information, that there is unfortunately nothing we can do because on an reinstallation and on an upgrade of Windows the MBR section will be reinstalled too.

"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-11-07 08:01:04"

LastUpdated: "2014-04-23 09:27:14"

561199B6

TrackingID: "561199B6"

Summary: "how does fwd relay choose which nic IP to use for the forwarding"

Description: "My fwd relay server have 2 nic ip address. Would like to check how does the fwd relay determine which ip address will be use for the forwarding? Also is there any way which we can set it to use a particular ip for the forwarding?"

ProductID: 1

TypeID: 3

FileName: "561199B6"

StatusNotification: 1

SupportComments: "The required configuration parameter has been sent by mail"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-08-16 05:30:17"

LastUpdated: "2013-08-26 14:34:47"

588B45BA

TrackingID: "588B45BA"

Summary: "Target infected via MBR infection fails after Switch User"

Description: "When a Vista 32-bit virtual machine is infected via MBR infection and Switch User is used, the agent does not work until target is rebooted. The agent is shown as online on Master but no data is returned."

ProductID: 1

TypeID: 2

FileName: "588B45BA"

StatusNotification: 1

SupportComments: ""

StatusID: 2

CustomerID: 69

Language: "en"

CreationDate: "2012-10-12 09:53:29"

LastUpdated: "2012-10-15 11:31:18"

5AC972CF

TrackingID: "5AC972CF"

Summary: "4.50 AV list"

Description: "Would like to request the antivirus list result for FinSpy version 4.50."

ProductID: 1

TypeID: 3

FileName: "5AC972CF"

StatusNotification: 1

SupportComments: "

\r\n<pre>\r\n<pre>An corresponding email has been sent.

\r\n\r\n"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2014-02-18 04:11:29"

LastUpdated: "2014-02-18 10:30:28"

5D14C9B0

TrackingID: "5D14C9B0"

Summary: "Target is not able to come online after upgrading to 4.40"

Description: "I have just upgraded my FinSpy on my testing environment to 4.40. I tested by infecting a new laptop, the target appear online on the agent laptop. Shortly after a few minutes, the target went offline even though the target laptop is still up. If I do a reboot or restart the networking services on the master server, the target will goes back online. But after a few minutes, it went back offline again. Additional info: The relay server is up and it did sent syn packet to the server. On the master server, the status using netstat is sync_received. From Finspy master log: \r\n\r\nINFO: TIO: target 0x666A106C comes online Trojan: test345 Comp-Name: USER01-PC Inst-Mode: Kernel\r\n\r\nINFO: Unable to add new entry for Trojan 37236673 to Crypto Key List: there is already an entry\r\n\r\nWARNING: Unknown Meta-data 0xFE3A80 from target 0x666A106C\r\nINFO: TIO: Timeout, Master hasnt got heart beats from target 0x666A196C for longer than 32 seconds, set it to offline"

ProductID: 1

TypeID: 1

FileName: "5D14C9B0"

StatusNotification: 1

SupportComments: "After consultation with the customer over mail, this ticket can be closed."

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-09-17 15:11:45"

LastUpdated: "2013-09-25 10:24:14"

6582BC63

TrackingID: "6582BC63"

Summary: "Queries on using linux forwarder on relay instead of using Gamma relay software"

Description: "Would like to check that if I configured my relay server to use linux ip forward instead of using the gamma relay software, will there be any issue?"

ProductID: 1

TypeID: 3

FileName: "6582BC63"

StatusNotification: 1

SupportComments: "An special email has been send with detailed Information's."

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-03-25 06:54:58"

LastUpdated: "2013-06-21 11:35:35"

7669D1CD

TrackingID: "7669D1CD"

Summary: "Target display name on agent console for multiple targets with 1 trojan"

Description: "If I create a Trojan name test and I infect it on 2 laptop, the first target will display as test on the agent console, the second target name will appear as what name? Or both the exfiltrated data will be stored under as 1 target name test?"

ProductID: 1

TypeID: 3

FileName: "7669D1CD"

StatusNotification: 1

SupportComments: "

An corresponding email has been send.

"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-09-24 10:53:29"

LastUpdated: "2013-09-27 06:36:03"

86442430

TrackingID: 86442430

Summary: "Enable Http Proxy if configured"

Description: "Would like to check that if we enable http proxy if configured option when creating an Trojan, if the target does not use http proxy but the option is enabled, will the data still be able to send back from the target pc to the finspy proxy?"

ProductID: 1

TypeID: 3

FileName: 86442430

StatusNotification: 1

StatusID: 1

CustomerID: 69

Language: "en"

CreationDate: "2013-10-23 19:02:49"

LastUpdated: "2013-10-23 17:02:49"

8AA32475

TrackingID: "8AA32475"

Summary: "Enquiry on using iptables forwarding for relay"

Description: "Would like to check whether will there be any issues or implications if we were to use iptables forwarding instead of finfisher fwd software for the relay.\r\n\r\nAlso will there be any issues or implications if our relay servers for the different country uses a mixture of iptables forwarding and finfisher fwd software?"

ProductID: 1

TypeID: 3

FileName: "8AA32475"

StatusNotification: 1

SupportComments: "

\r\n<pre>\r\n<pre>An corresponding email has been sent.

\r\n\r\n"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2014-02-20 04:43:27"

LastUpdated: "2014-02-26 14:16:38"

8C4D5177

TrackingID: "8C4D5177"

Summary: "Enquiry on the data file that is stored on the target laptop"

Description: "Would like to enquire the data such as keylogger, screenshot and etc that is to be send back to the master server, is it all the data is stored in a single file or each module data is stored in different file?"

ProductID: 1

TypeID: 3

FileName: "8C4D5177"

StatusNotification: 1

SupportComments: "An corresponding email has been sent."

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-09-24 10:36:25"

LastUpdated: "2013-09-27 06:38:16"

ADEB4E4C

TrackingID: "ADEB4E4C"

Summary: "Self extracting zip executable melted with finspy trojan detected as virus on google drive"

Description: "We melted finspy trojan with a self extracting zip executable and then upload to a google drive. When the file is downloaded from google drive, it is reflected as a virus by the google drive. Would like to check why it is reflected as a virus? Anyway to bypass it?"

ProductID: 1

TypeID: 3

FileName: "ADEB4E4C"

StatusNotification: 1

SupportComments: "An corresponding email has been sent."

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2014-05-27 10:32:39"

LastUpdated: "2014-06-17 09:44:29"

B4C94454

TrackingID: "B4C94454"

Summary: "File access upload"

Description: "Selecting File To Be Uploaded before browsing to a destination will set the default destination to C:\\ which cannot be changed and the upload fails.\r\n\r\nIf the file to be uploaded is re-selected, it refreshes the destination path to the one you chose initially."

ProductID: 1

TypeID: 2

FileName: "B4C94454"

StatusNotification: 1

SupportComments: ""

StatusID: 2

CustomerID: 69

Language: "en"

CreationDate: "2012-10-12 09:33:22"

LastUpdated: "2012-10-15 11:31:01"

B98E4CB3

TrackingID: "B98E4CB3"

Summary: "How to get the Machine ID on spare server to generate the license"

Description: "Would like to check if my server mainboard fail, and require to activate the spare server, how can I check that the Machine ID of the spare server so that you are able to generate the spare server license? I went into my spare server but in /var/log, it does not have the finspy_master.log file."

ProductID: 1

TypeID: 3

FileName: "B98E4CB3"

StatusNotification: 1

SupportComments: "A suitable mail has been sent. As requested, ticket closed"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-10-08 06:18:18"

LastUpdated: "2013-10-08 08:03:03"

BD28D266

TrackingID: "BD28D266"

Summary: "Enquiry on MBR infection"

Description: "Would like to check if we perform an MBR infection, is it that all the users on the computer will be infected?"

ProductID: 1

TypeID: 3

FileName: "BD28D266"

StatusNotification: 1

SupportComments: "

\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.

\r\n\r\n\r\n"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2014-02-18 04:10:35"

LastUpdated: "2014-02-20 11:01:13"

CE0886EF

TrackingID: "CE0886EF"

Summary: "Request for FinIntrusion kit installer"

Description: "Understand that currently FinIntrusionKit is required to use Kali OS, would like to request the FinIntrusionKit installer so that we can install on the Kali OS. Also do provide us the instruction on how to install the FinIntrusionKit."

ProductID: 5

TypeID: 3

FileName: "CE0886EF"

StatusNotification: 1

SupportComments: "

A corresponding E-Mail has been sent

"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-12-12 08:34:42"

LastUpdated: "2013-12-16 14:44:41"

D461080C

TrackingID: "D461080C"

Summary: "How to infect linux OS"

Description: "Would like to check how do we infect Linux laptop using the Trojan file that is generated from the finspy agent? Is it just by double clicking the Trojan file on the Trojan machine? If the Linux machine does not have GUI, only terminal base, will the Linux machine be infected by running ./Trojan filename command on the Linux terminal?"

ProductID: 1

TypeID: 3

FileName: "D461080C"

StatusNotification: 1

SupportComments: "

\r\n<pre>A suitable mail has been sent.

\r\n"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2013-11-05 08:45:05"

LastUpdated: "2014-04-23 09:28:34"

E6491845

TrackingID: "E6491845"

Summary: "Enquiry on how to copy a executable and run it on an infected computer"

Description: "I have a target which the computer is already infected with finspy. Would like to check is there any way which I could upload an executable to the target computer and then execute it?"

ProductID: 1

TypeID: 3

FileName: "E6491845"

StatusNotification: 1

SupportComments: "

\r\n<pre>An corresponding email has been sent.

\r\n"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2014-02-18 04:56:35"

LastUpdated: "2014-02-18 10:03:45"

EC9CC72F

TrackingID: "EC9CC72F"

Summary: "Screenshot module to return screenshots then a movie"

Description: "After triggering Screenshot or Webcam with Scheduler module, it returns a movie that requires users to break up the movie into screenshots using external software. Suggest the module returns screenshots instead."

ProductID: 1

TypeID: 4

FileName: "EC9CC72F"

StatusNotification: 1

SupportComments: ""

StatusID: 2

CustomerID: 69

Language: "en"

CreationDate: "2012-10-12 09:41:41"

LastUpdated: "2012-10-15 11:30:43"

EDB0ACF2

TrackingID: "EDB0ACF2"

Summary: "Enquiry on bootable CD infection for MAC"

Description: "Would like to check does the bootable CD infection support Mac? Does it support all version of MAC?"

ProductID: 1

TypeID: 3

FileName: "EDB0ACF2"

StatusNotification: 1

SupportComments: "

\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.

\r\n\r\n\r\n\r\n\r\n\r\n"

StatusID: 4

CustomerID: 69

Language: "en"

CreationDate: "2014-04-21 10:43:56"

LastUpdated: "2014-04-22 11:00:14"