FinFisher/CC57BE53
Inhaltsverzeichnis
- 1 CC57BE53
- 1.1 Licenses
- 1.2 Support-Requests
- 1.2.1 05D29AC5
- 1.2.2 0A70DAF5
- 1.2.3 0AD8C94B
- 1.2.4 0C81F6CB
- 1.2.5 0CD01B0D
- 1.2.6 1176EB01
- 1.2.7 14476C79
- 1.2.8 284C0819
- 1.2.9 368C72A3
- 1.2.10 3779CFC9
- 1.2.11 3D71EF3F
- 1.2.12 411A08F3
- 1.2.13 41DFB04C
- 1.2.14 439750B4
- 1.2.15 43D8CA21
- 1.2.16 4C282C96
- 1.2.17 4E66199F
- 1.2.18 56FE8D65
- 1.2.19 5741416B
- 1.2.20 58B8F177
- 1.2.21 5F02C478
- 1.2.22 5F8B6ABF
- 1.2.23 7256ED61
- 1.2.24 7F299240
- 1.2.25 830421F9
- 1.2.26 90ECB4B8
- 1.2.27 97BD9032
- 1.2.28 9A867948
- 1.2.29 A9A5F04A
- 1.2.30 AA970B9C
- 1.2.31 ABCA70E1
- 1.2.32 BE05E483
- 1.2.33 C0CED1D4
- 1.2.34 CA351241
- 1.2.35 D6BCD7A9
- 1.2.36 DEA028AD
- 1.2.37 E7601045
- 1.2.38 F8958539
CC57BE53
Licenses
LicenseID | MachineUID | SoftwareUID | SoftwareName | VersionMajor | NotBefore | ValidityStart | NotAfter | ValidityEnd | InstallationDate | LicenseFile | LicenseContents | Status | CustomerID | ProductID | Deleted | UserID | DataEntryDate | LastUpdated |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
649 | 88:B9:8A:55:E2:AA:C3:14 | 00:1E:00:0A | FinSpyV2 | 4 | 1377907200 | 2013-08-31 02:00:00 | 1410566400 | 2014-09-13 02:00:00 | 2013-09-05 14:35:09 | License.txt | MACHINE UID
88:B9:8A:55:E2:AA:C3:14 CUSTOMER UID CC57BE53 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 3 TARGETS MAX NUMBER 10 NOT BEFORE 1377907200 NOT AFTER 1410566400 MOBILE NOT BEFORE 1377907200 MOBILE NOT AFTER 1410566400 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Activated | 88 | 1 | 1 | 5 | 2013-09-05 14:35:09 | 2014-05-21 13:29:07 |
650 | 88:B9:8A:55:E2:AA:C3:14 | 00:1E:00:0A | FinSpyV2 | 4 | 1377907200 | 2013-08-31 02:00:00 | 1410566400 | 2014-09-13 02:00:00 | 2013-09-05 14:36:34 | License.txt | MACHINE UID
88:B9:8A:55:E2:AA:C3:14 CUSTOMER UID CC57BE53 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 3 TARGETS MAX NUMBER 10 NOT BEFORE 1377907200 NOT AFTER 1410566400 MOBILE NOT BEFORE 1377907200 MOBILE NOT AFTER 1410566400 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Activated | 88 | 14 | 1 | 5 | 2013-09-05 14:36:34 | 2014-05-21 13:29:02 |
651 | 39:9D:89:EC:8D:C8:EB:BC | 00:1C:00:0A | FinUSB | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2013-09-19 15:08:54 | License.txt | MACHINE UID
39:9D:89:EC:8D:C8:EB:BC CUSTOMER UID CC57BE53 SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 3 | 1 | 5 | 2013-09-19 15:08:54 | 2014-05-21 13:29:17 |
652 | 39:9D:89:EC:8D:C8:EB:BC | 00:1C:00:0A | FinUSB | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2013-09-19 15:09:15 | License.txt | MACHINE UID
39:9D:89:EC:8D:C8:EB:BC CUSTOMER UID CC57BE53 SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 3 | 1 | 5 | 2013-09-19 15:09:15 | 2014-05-21 13:29:20 |
653 | 0C:8E:7E:CC:7C:4B:CC:1C | 00:2A:00:0A | FinIntrusion-Kit | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2013-09-19 15:09:42 | License.txt | MACHINE UID
0C:8E:7E:CC:7C:4B:CC:1C CUSTOMER UID CC57BE53 SOFTWARE UID 00:2A:00:0A SOFTWARE NAME FinIntrusion-Kit VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 5 | 1 | 5 | 2013-09-19 15:09:42 | 2014-05-21 13:29:24 |
654 | 0C:8E:7E:CC:7C:4B:CC:1C | 00:2A:00:0A | FinIntrusion-Kit | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2013-09-19 15:09:54 | License.txt | MACHINE UID
0C:8E:7E:CC:7C:4B:CC:1C CUSTOMER UID CC57BE53 SOFTWARE UID 00:2A:00:0A SOFTWARE NAME FinIntrusion-Kit VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 5 | 1 | 5 | 2013-09-19 15:09:54 | 2014-05-21 13:29:27 |
655 | 0C:8E:7E:CC:7C:4B:CC:1C | 00:1A:00:0A | FinFly-LAN | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2013-09-19 15:10:17 | License.txt | MACHINE UID
0C:8E:7E:CC:7C:4B:CC:1C CUSTOMER UID CC57BE53 SOFTWARE UID 00:1A:00:0A SOFTWARE NAME FinFly-LAN VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 2 | 1 | 5 | 2013-09-19 15:10:17 | 2014-05-21 13:29:30 |
656 | 0C:8E:7E:CC:7C:4B:CC:1C | 00:1A:00:0A | FinFly-LAN | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2013-09-19 15:10:30 | License.txt | MACHINE UID
0C:8E:7E:CC:7C:4B:CC:1C CUSTOMER UID CC57BE53 SOFTWARE UID 00:1A:00:0A SOFTWARE NAME FinFly-LAN VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 2 | 1 | 5 | 2013-09-19 15:10:30 | 2014-05-21 13:29:32 |
658 | E2:70:4B:AB:B1:B0:F8:B8 | 00:1B:00:0A | FinFly-Web | 4 | 1381190400 | 2013-10-08 02:00:00 | 1476230400 | 2016-10-12 02:00:00 | 2013-10-10 13:10:21 | License.txt | MACHINE UID
E2:70:4B:AB:B1:B0:F8:B8 CUSTOMER UID CC57BE53 SOFTWARE UID 00:1B:00:0A SOFTWARE NAME FinFly-Web VERSION MAJOR 4 NOT BEFORE 1381190400 NOT AFTER 1476230400 DEMO 0 |
Activated | 88 | 13 | 1 | 10 | 2013-10-10 13:10:21 | 2014-05-21 13:29:40 |
813 | 88:B9:8A:55:E2:AA:C3:14 | 00:1E:00:0A | FinSpyV2 | 4 | 1377907200 | 2013-08-31 02:00:00 | 1473724800 | 2016-09-13 02:00:00 | 2014-05-21 15:26:08 | License.txt | MACHINE UID
88:B9:8A:55:E2:AA:C3:14 CUSTOMER UID CC57BE53 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 3 TARGETS MAX NUMBER 10 NOT BEFORE 1377907200 NOT AFTER 1473724800 MOBILE NOT BEFORE 1377907200 MOBILE NOT AFTER 1473724800 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Activated | 88 | 1 | 0 | 5 | 2014-05-21 15:26:08 | 2014-05-21 13:26:08 |
814 | 88:B9:8A:55:E2:AA:C3:14 | 00:1E:00:0A | FinSpyV2 | 4 | 1377907200 | 2013-08-31 02:00:00 | 1473724800 | 2016-09-13 02:00:00 | 2014-05-21 15:26:23 | License.txt | MACHINE UID
88:B9:8A:55:E2:AA:C3:14 CUSTOMER UID CC57BE53 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 3 TARGETS MAX NUMBER 10 NOT BEFORE 1377907200 NOT AFTER 1473724800 MOBILE NOT BEFORE 1377907200 MOBILE NOT AFTER 1473724800 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Activated | 88 | 14 | 0 | 5 | 2014-05-21 15:26:23 | 2014-05-21 13:26:23 |
815 | 7F:29:27:C1:30:E1:2F:38 | 00:1C:00:0A | FinUSB | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2014-05-21 15:26:43 | License.txt | MACHINE UID
7F:29:27:C1:30:E1:2F:38 CUSTOMER UID CC57BE53 SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 3 | 0 | 5 | 2014-05-21 15:26:43 | 2014-05-21 13:26:43 |
816 | 7F:29:27:C1:30:E1:2F:38 | 00:1C:00:0A | FinUSB | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2014-05-21 15:27:01 | License.txt | MACHINE UID
7F:29:27:C1:30:E1:2F:38 CUSTOMER UID CC57BE53 SOFTWARE UID 00:1C:00:0A SOFTWARE NAME FinUSB VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 3 | 0 | 5 | 2014-05-21 15:27:01 | 2014-05-21 13:27:01 |
817 | 0C:8E:7E:CC:7C:4B:CC:1C | 00:2A:00:0A | FinIntrusion-Kit | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2014-05-21 15:27:19 | License.txt | MACHINE UID
0C:8E:7E:CC:7C:4B:CC:1C CUSTOMER UID CC57BE53 SOFTWARE UID 00:2A:00:0A SOFTWARE NAME FinIntrusion-Kit VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 5 | 0 | 5 | 2014-05-21 15:27:19 | 2014-05-21 13:27:19 |
818 | 0C:8E:7E:CC:7C:4B:CC:1C | 00:1A:00:0A | FinFly-LAN | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2014-05-21 15:27:36 | License.txt | MACHINE UID
0C:8E:7E:CC:7C:4B:CC:1C CUSTOMER UID CC57BE53 SOFTWARE UID 00:1A:00:0A SOFTWARE NAME FinFly-LAN VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 2 | 0 | 5 | 2014-05-21 15:27:36 | 2014-05-21 13:27:36 |
819 | 0C:8E:7E:CC:7C:4B:CC:1C | 00:1A:00:0A | FinFly-LAN | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2014-05-21 15:27:55 | License.txt | MACHINE UID
0C:8E:7E:CC:7C:4B:CC:1C CUSTOMER UID CC57BE53 SOFTWARE UID 00:1A:00:0A SOFTWARE NAME FinFly-LAN VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 5 | 0 | 5 | 2014-05-21 15:27:55 | 2014-05-21 13:27:55 |
820 | 0C:8E:7E:CC:7C:4B:CC:1C | 00:1A:00:0A | FinFly-LAN | 4 | 1379116800 | 2013-09-14 02:00:00 | 1474329600 | 2016-09-20 02:00:00 | 2014-05-21 15:28:12 | License.txt | MACHINE UID
0C:8E:7E:CC:7C:4B:CC:1C CUSTOMER UID CC57BE53 SOFTWARE UID 00:1A:00:0A SOFTWARE NAME FinFly-LAN VERSION MAJOR 4 NOT BEFORE 1379116800 NOT AFTER 1474329600 DEMO 0 |
Activated | 88 | 2 | 0 | 5 | 2014-05-21 15:28:12 | 2014-05-21 13:28:12 |
821 | E2:70:4B:AB:B1:B0:F8:B8 | 00:1B:00:0A | FinFly-Web | 4 | 1381190400 | 2013-10-08 02:00:00 | 1476230400 | 2016-10-12 02:00:00 | 2014-05-21 15:28:40 | License.txt | MACHINE UID
E2:70:4B:AB:B1:B0:F8:B8 CUSTOMER UID CC57BE53 SOFTWARE UID 00:1B:00:0A SOFTWARE NAME FinFly-Web VERSION MAJOR 4 NOT BEFORE 1381190400 NOT AFTER 1476230400 DEMO 0 |
Activated | 88 | 13 | 0 | 5 | 2014-05-21 15:28:40 | 2014-05-21 13:28:40 |
Support-Requests
05D29AC5
TrackingID: "05D29AC5"
Summary: "Symbian - GEO location"
Description: "GEO References of Device when given to Server differed between Live Tracking and Target History displays even though GEO source was the same\r\n"
ProductID: 14
TypeID: 2
FileName: "05D29AC5"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 11:56:01"
LastUpdated: "2013-10-16 11:50:34"
0A70DAF5
TrackingID: "0A70DAF5"
Summary: "Multiple Scheduled Tasks"
Description: "A way of creating many Scheduled Tasks easier by using some Copy and Paste method or having multiple time input capability Functions in the Wizard\r\n\r\nComment:\r\nDoing Multiple Tasks can be very time consuming. Issue here was creating files offline that where of a managable size for transport, so many small tasks had to be created\r\n"
ProductID: 1
TypeID: 5
FileName: "0A70DAF5"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 12:22:05"
LastUpdated: "2013-10-16 11:48:45"
0AD8C94B
TrackingID: "0AD8C94B"
Summary: "improve configuration list of dongle"
Description: "FinUSB  Dongle Setting  Email  deselect all email clients  configure dongle  collect data from target  import data into HQ  view report  check configuration \r\n \r\n \r\n\r\n IF a feature is selected or not will be shown by a small “dot†in front of a listed feature  customer was really confused and doesn’t trust our configuration before he didn’t made a couple of tests by themselves, because even “unselected†software is listed only “the dot†was missing\r\n\r\n Two solutions are possible: don’t list features which are not selected or use self explained icons like\r\n"
ProductID: 3
TypeID: 4
FileName: "0AD8C94B"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:12:56"
LastUpdated: "2013-10-16 11:44:35"
0C81F6CB
TrackingID: "0C81F6CB"
Summary: "Possibility of removing Collected Data from the Target"
Description: "Possibility of removing Collected Data from the Target before transfer to Server\r\n\r\nComment:\r\nThis is incase too much information has been gathered on Target and transfer would highlight infection"
ProductID: 1
TypeID: 5
FileName: "0C81F6CB"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 12:16:09"
LastUpdated: "2013-10-16 11:49:15"
0CD01B0D
TrackingID: "0CD01B0D"
Summary: "recover broken FinUSB dongle through HQ"
Description: "FinUSB Dongle format or delete hidden “System†folder will make the dongle unusable for FinUSB HQ anymore. “Recover destroyed†USB dongle feature inside the HQ is missing…."
ProductID: 3
TypeID: 5
FileName: "0CD01B0D"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:19:57"
LastUpdated: "2013-10-16 11:41:49"
1176EB01
TrackingID: "1176EB01"
Summary: "modify netmask through FITK GUI"
Description: "Netmask can be changed too. Necessary, because Network Scan based on netmask. E.g. only a class c-net of a 10.0.0.0 network is used, but netmask is 255.0.0.0  class A net will be scanned instead of a class C net"
ProductID: 5
TypeID: 5
FileName: "1176EB01"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:20:41"
LastUpdated: "2013-10-16 11:40:47"
14476C79
TrackingID: "14476C79"
Summary: "Credential HTTP will not be listed, other credentials were listed."
Description: "Credential HTTP will not be listed, other credentials were listed."
ProductID: 5
TypeID: 2
FileName: "14476C79"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:09:15"
LastUpdated: "2013-10-16 11:44:48"
284C0819
TrackingID: "284C0819"
Summary: "Update of user mod infection not working"
Description: "Hello,\r\n\r\nI upgraded from version 4.50 to 4.51. There was no problem on FinSpy server, and relay server.\r\n\r\nLast step was test upgrade process of user mode infection on my computer. Upgrade process on client was successful. But after target go offline and after some time online, I turned off and turnet on my computer there is still old version! Computer is Windows 7 Ultimate with installed service pack 1 and 64 bit version updated do 3.march 2014\r\n\r\nI try to remove all modules and make update process again. Still with the same result.\r\n\r\nThanks for you reply"
ProductID: 1
TypeID: 1
FileName: "284C0819"
StatusNotification: 0
SupportComments: "
\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.
\r\n\r\n\r\n\r\n\r\n\r\n\r\n"
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2014-05-20 14:50:36"
LastUpdated: "2014-05-21 11:31:38"
368C72A3
TrackingID: "368C72A3"
Summary: "parallel target infection with FFWeb payload failed"
Description: "Multiple parallel Target infection with Web payload doesn’t work reliable. Most of the time only one target will jump “under infection†and the other targets stays in “ARP poisoned†modus. Download infection seems to be more stable and reliable, but should also be heavily re-tested again."
ProductID: 2
TypeID: 2
FileName: "368C72A3"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-14 12:09:18"
LastUpdated: "2013-10-16 11:39:24"
3779CFC9
TrackingID: "3779CFC9"
Summary: "Download Speed Issues"
Description: "Download Speed Setting on Trojan seems to be inaccurate\r\n\r\nComments:\r\nIssue raised with Munich"
ProductID: 1
TypeID: 2
FileName: "3779CFC9"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 11:53:48"
LastUpdated: "2013-10-16 11:50:44"
3D71EF3F
TrackingID: "3D71EF3F"
Summary: "Use low characters as MAC address for MAC spoofing will trigger an error."
Description: "Use low characters as MAC address for MAC spoofing will trigger an error."
ProductID: 5
TypeID: 2
FileName: "3D71EF3F"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:08:20"
LastUpdated: "2013-10-16 11:44:58"
411A08F3
TrackingID: "411A08F3"
Summary: "Inquiry - Support"
Description: "Is there a way of recreating the capability of Zipping Images of Screenshots collected during live session to be available for Scheduled tasks and automatic recording\r\n"
ProductID: 1
TypeID: 5
FileName: "411A08F3"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 12:26:17"
LastUpdated: "2013-10-16 11:48:20"
41DFB04C
TrackingID: "41DFB04C"
Summary: "Demo"
Description: "just to explain the customer the procedure... - done by pk -"
ProductID: 1
TypeID: 5
FileName: "41DFB04C"
StatusNotification: 1
SupportComments: "This was a test from PK."
StatusID: 4
CustomerID: 88
Language: "en"
CreationDate: "2013-09-17 10:03:26"
LastUpdated: "2013-09-19 08:24:35"
439750B4
TrackingID: "439750B4"
Summary: "Blackberry - HTTP Tunneling Issues"
Description: "Unable to fully test http tunneling due to Network Issue, Customer has a special network setup which caused a challange to test this.\r\n\r\nComment: \r\nPlease check what is possible"
ProductID: 14
TypeID: 5
FileName: "439750B4"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 12:03:57"
LastUpdated: "2013-10-16 11:50:20"
43D8CA21
TrackingID: "43D8CA21"
Summary: "Size indication on target - how much is available to download"
Description: "Possibility of Server indicating how much information on the target is available for transfer to Server\r\n\r\nComment:\r\nThis is incase too much information has been gathered on Target and transfer would highlight infection"
ProductID: 1
TypeID: 5
FileName: "43D8CA21"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 12:15:18"
LastUpdated: "2013-10-16 11:49:23"
4C282C96
TrackingID: "4C282C96"
Summary: "Offline Trojan v.1"
Description: "To be added to previous request:\r\n\r\nMethod of Transfering Offline obtained Data from the Target to the Server\r\n\r\nComment:\r\nIn case target rarely goes online\r\n\r\n"
ProductID: 1
TypeID: 5
FileName: "4C282C96"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 12:20:43"
LastUpdated: "2013-10-16 11:48:54"
4E66199F
TrackingID: "4E66199F"
Summary: "Specs for release 3.6 are outdated"
Description: "Specs for version 3.6 are not updated or incomplete:\r\n- HW List old laptop is listed, \r\n- Target List W2K is still listed, Windows 8 is missing,\r\n- Client Software is listed without any version number e.g. Outlook Express, Firefox, Chrome, IE etc.\r\n"
ProductID: 3
TypeID: 4
FileName: "4E66199F"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:14:05"
LastUpdated: "2013-10-16 11:42:54"
56FE8D65
TrackingID: "56FE8D65"
Summary: "Strange behaviour on Infected Android Device"
Description: "Strange behaviour on Infected Android Device, like Target giving error message about Android Update when Android received a Phone Call, and also some encrypted texts where visible in inbox of Android that were sent from the Server.\r\n\r\nComment:\r\nSimilar Android Device sent to Munich for analysis"
ProductID: 14
TypeID: 2
FileName: "56FE8D65"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 11:50:49"
LastUpdated: "2013-10-16 11:50:59"
5741416B
TrackingID: "5741416B"
Summary: "Jam dedicated WLAN client will jam all clients"
Description: "wireless -- network -- select AP + select connected client should jam only selected WLAN client but is jamming all clients from AP\r\n\r\ncurrently it is only working in mass jammer"
ProductID: 5
TypeID: 2
FileName: "5741416B"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:52:37"
LastUpdated: "2013-10-16 11:40:26"
58B8F177
TrackingID: "58B8F177"
Summary: "Agent GUI - Crashed"
Description: "Crashed when Agent activated Emergency Configuration for Android Device\r\n\r\nComment:\r\nIssue raised with Munich"
ProductID: 14
TypeID: 2
FileName: "58B8F177"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 11:52:37"
LastUpdated: "2013-10-16 11:50:51"
5F02C478
TrackingID: "5F02C478"
Summary: "ClamAV blocked Webinfection"
Description: "Tested Target had ClamAV installed, which silently were blocking our injected Javascript Code.\r\nas soon as the AV was disabled, the injected code was executed. \r\n\r\nGamma have to test FFWeb with against common AVs. if it is blocked, Gamma should try to find a way to bypass the AV with modified Javascript Code."
ProductID: 13
TypeID: 2
FileName: "5F02C478"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-14 12:11:28"
LastUpdated: "2013-10-16 11:39:14"
5F8B6ABF
TrackingID: "5F8B6ABF"
Summary: "Target Removal Indication on server"
Description: "A way of indicating on the Server that the removal of the Trojan on the Target has been successful\r\n"
ProductID: 1
TypeID: 5
FileName: "5F8B6ABF"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 12:23:34"
LastUpdated: "2013-10-16 11:48:31"
7256ED61
TrackingID: "7256ED61"
Summary: "Windows Logon Bypass CD crashing target system"
Description: "“Windows Logon Bypass†CD aka “Konboot†is too old and was crashing some systems blue screen – e.g. Lenovo T500 / W7/32bit/Enterprise. Tested with newer version and the blue screen disappear and we were able to unlock the system! "
ProductID: 3
TypeID: 2
FileName: "7256ED61"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:07:14"
LastUpdated: "2013-10-16 11:45:48"
7F299240
TrackingID: "7F299240"
Summary: "export connected wireless client list"
Description: "export connected wireless client list e.g. for black/white list for mass jammer"
ProductID: 5
TypeID: 5
FileName: "7F299240"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 10:22:58"
LastUpdated: "2013-10-16 11:40:04"
830421F9
TrackingID: "830421F9"
Summary: "Offline Trojan"
Description: "Possibility of Gathering Data from Target offline using a Tactical Device like USB or other transfer method\r\n\r\nComment:\r\nIn case target rarely goes online and physical access is available"
ProductID: 1
TypeID: 5
FileName: "830421F9"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-09-23 12:17:21"
LastUpdated: "2013-10-16 11:49:03"
90ECB4B8
TrackingID: "90ECB4B8"
Summary: "selected monitoring mode in status message + log file"
Description: "Network  “Monitor†Status Message should also contains the monitoring mode e.g. “non-ssl / https emulation / ssl-mim†etc."
ProductID: 5
TypeID: 4
FileName: "90ECB4B8"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:15:49"
LastUpdated: "2013-10-16 11:42:22"
97BD9032
TrackingID: "97BD9032"
Summary: "Active / Passive Target detection "
Description: "Active / Passive Target detection currently we only support active target detection / identification"
ProductID: 5
TypeID: 5
FileName: "97BD9032"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:18:26"
LastUpdated: "2013-10-16 11:42:00"
9A867948
TrackingID: "9A867948"
Summary: "Browser History + Cookies were not collected"
Description: "Which exact browser versions are supported for browser history cookies?\r\n\r\nTested with Firefox 24 and Internet Explorer 10  no history + where collected\r\n"
ProductID: 3
TypeID: 2
FileName: "9A867948"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:06:31"
LastUpdated: "2013-10-16 11:45:57"
A9A5F04A
TrackingID: "A9A5F04A"
Summary: "Use FinUSB with own HW / Dongle"
Description: "Customer wants to use their own USB dongle / hardware. How can they get their USB HW / dongle getting accepted by FinUSB HQ?"
ProductID: 3
TypeID: 5
FileName: "A9A5F04A"
StatusNotification: 1
SupportComments: "A suitable mail has been sent. The ticket was closed"
StatusID: 4
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:19:14"
LastUpdated: "2013-10-16 11:15:48"
AA970B9C
TrackingID: "AA970B9C"
Summary: "Avast Free Antivirus kill Empty VISTA W7 USER Infection"
Description: "In our location, Avast free Antivirus is one of the top used Antivirus solution if not no. 1. So we are not happy about that. We need response from your site what you can do with it. ASAP. \r\n\r\nIn your document from Jan 2014 Anti-Virus-Results-FinSpy-PC-4.50 you inform us that:\r\n\r\nAvast Internet Security 7 when I use Empty VISTA W7 USER Infection and try to install it like a USER then it:\r\n\r\nW732bit pass\r\nW764bit pass\r\nW832bit pass\r\nW864bit pass\r\n\r\nSo, I hope that free product Avast free Antivirus which is based on commercial product Avast Internet Security will work similarly. But not.\r\n\r\nInstall User will FAIL in W764bit, you can see it on attached screenshots.\r\n\r\nOur testing computer:\r\nOS: Windows 7 64 bit SP1 fully updated 3.3.2014\r\nAV: Avast Free version 2014.9.0.2013\r\nAV-DB: 140302.1 3.3.2014, 12:53 CET\r\n\r\nThank you for early responce.\r\nBye"
ProductID: 1
TypeID: 1
FileName: "AA970B9C.png"
StatusNotification: 1
SupportComments: "
\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.
\r\n\r\n\r\n\r\n"
StatusID: 4
CustomerID: 88
Language: "en"
CreationDate: "2014-03-06 11:39:38"
LastUpdated: "2014-05-22 11:28:43"
ABCA70E1
TrackingID: "ABCA70E1"
Summary: "offline cracker"
Description: "load airodump pcap file and no wireless network is listed"
ProductID: 5
TypeID: 2
FileName: "ABCA70E1"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 10:46:29"
LastUpdated: "2013-10-16 11:39:53"
BE05E483
TrackingID: "BE05E483"
Summary: "HTTPS Emulation without SSL fallback option"
Description: "HTTPS Emulation without SSL fallback option  no SSL MiM for HTTPS will automatically be done."
ProductID: 5
TypeID: 4
FileName: "BE05E483"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:14:41"
LastUpdated: "2013-10-16 11:42:35"
C0CED1D4
TrackingID: "C0CED1D4"
Summary: "Problems with ALFA wifi cards."
Description: "If ALFA wifi cards are used for scanning wireless networks FinIntrusion-Kit, Tab Wireless -- Networks, we succesfully find APs and connected clients for first time. When we start search with ALFA wifi cards again without any changes in Configuration Country code, scanning interval etc. options, we found APs but there were no connected clients. After repeating scanning procedures the situacion was the same. But, if we change in Configuration options parameter Country code and started searching again, operation was successful and we saw again APs and connected clients. Then after repeated scanning procedure without changes in Configuration option Country code clients were gone. So if we dont change Country code before we start scanning procedure Networks, we dont find connected clients.\r\n\r\nFor first time, If we start monitoring on terminal with airmon-ng and airodump-ng Note: IntrusionKit is not started after rebooting OS with ALFA wifi card we saw associated clients. But after restarting mon interface airmon-ng stop mon0 airmon-ng start wlan0 and airodump, scanned clients were not associated despite the client was connected to AP. Similar situation as we saw in IntrusionKit. \r\n\r\nNote: If we used ALFA wifi card with other chipset RTL8187, everything was all right. We found APs and clients without changes in Configuration options.\r\n"
ProductID: 5
TypeID: 2
FileName: "C0CED1D4"
StatusNotification: 0
SupportComments: "
\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.
\r\n\r\n\r\n\r\n\r\n"
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2014-04-10 08:46:28"
LastUpdated: "2014-04-17 07:18:45"
CA351241
TrackingID: "CA351241"
Summary: "recover original mac address / undo mac spoofing "
Description: "recover original mac address / undo mac spoofing "
ProductID: 5
TypeID: 5
FileName: "CA351241"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:21:18"
LastUpdated: "2013-10-16 11:40:38"
D6BCD7A9
TrackingID: "D6BCD7A9"
Summary: "Wrong licence expire date on www.finfisher.com of FinSpy and FinSpy Mobile system"
Description: "Hello,\r\n\r\nI get info that my license will expire in this September 2014. But on my system is installed license which expire on September 2016. Pleas update it. I attach screenshot from my Agent PC.\r\n\r\nBye"
ProductID: 1
TypeID: 3
FileName: "D6BCD7A9.png"
StatusNotification: 0
SupportComments: "
\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.
\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n"
StatusID: 4
CustomerID: 88
Language: "en"
CreationDate: "2014-05-20 15:51:41"
LastUpdated: "2014-05-21 13:33:30"
DEA028AD
TrackingID: "DEA028AD"
Summary: "Wireless networks search procedure stop working"
Description: "If IntrusionKit is located on place where is embedded more wifi networks 20 APs and more - We didnt find out exact number of APs, then aproximately after couple of minutes IntrusionKit wasnt working correctly. \r\nAfter search procedure there were no visible APs and clients in Wireless Networks list.\r\n\r\nAfter rebooting, IntrusionKitTab Wireless - Networks was working correctly and then after while a few minutes, cca. 10-15 minutes came the same situation. We didnt see APs and connected clients in Network list Tab Wireless - Networks, only if we reboot operation system. If we run airodump-ng in terminal we see APs and connected clients correctly."
ProductID: 5
TypeID: 2
FileName: "DEA028AD"
StatusNotification: 1
SupportComments: "
\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.
\r\n\r\n\r\n\r\n\r\n"
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2014-04-10 08:45:13"
LastUpdated: "2014-04-17 07:18:58"
E7601045
TrackingID: "E7601045"
Summary: "extend dependency check"
Description: "- Dependency Check  add package name to list  makes it easier for the customer to install the package by themselves"
ProductID: 5
TypeID: 4
FileName: "E7601045"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 09:16:35"
LastUpdated: "2013-10-16 11:42:14"
F8958539
TrackingID: "F8958539"
Summary: "refresh connected wireless clients list"
Description: "select wireless network with connected clients -- select other wireless network -- refresh client list -- all previous lists will be disappear / new initialised\r\n\r\n"
ProductID: 5
TypeID: 2
FileName: "F8958539"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 88
Language: "en"
CreationDate: "2013-10-09 10:18:52"
LastUpdated: "2013-10-16 11:40:14"