MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 1de8b101cf9f0fabc9f086bddb662c89d92c903c5db107910b3898537d4aa8e7. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry



IcedID


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments 2

SHA256 hash: 1de8b101cf9f0fabc9f086bddb662c89d92c903c5db107910b3898537d4aa8e7
SHA3-384 hash: 3ca66b54fc1570b029a68dea5524b04baeace931a61f3ec5babbffa35baecf5e109c341451074c143bc6ca721f955d54
SHA1 hash: 287f00b634c2d24a9731ebb52c4d1c1067abf864
MD5 hash: d79b38f4eeec42a014c9337f48ba3f2b
humanhash: pluto-bravo-cat-magnesium
File name:license.dat
Download: download sample
Signature IcedID
File size:342'218 bytes
First seen:2022-08-11 22:27:16 UTC
Last seen:2022-08-23 23:20:17 UTC
File type:
MIME type:application/octet-stream
ssdeep 6144:yOanrw8uZ+iZN1CCtDRiDwqIC5QpzXEYbvC2NFnIuJxCJiSRNDTdsHB2eT:yOkw8R5CtDMEuW0UvC23nIuJx2iKpu
TLSH T1F77423C5E752D0A2DCBF2563264506FD62DF85E4A70D3B31AB6BE25B10E7017C9270C2
Reporter @malware_traffic
Tags:BokBot dat data data_binary IcedID license.dat

Intelligence


File Origin
# of uploads :
2
# of downloads :
251
Origin country :
US US
Mail intelligence
No data
Vendor Threat Intelligence

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Comments



Avatar
Brad commented on 2022-08-23 23:26:06 UTC

Data binary used to run persistent DLL for IcedID infections

Avatar
Brad commented on 2022-08-23 23:25:41 UTC

First submitted to VirusTotal on 2022-07-15