MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 ad23881012757bcd2dd9b08eff33412df9ad0b0bf93c62d57a5ae21a41c28573. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry



IcedID


Vendor detections: 2


Intelligence 2 IOCs YARA File information Comments

SHA256 hash: ad23881012757bcd2dd9b08eff33412df9ad0b0bf93c62d57a5ae21a41c28573
SHA3-384 hash: 92378c27f3d2cdf12a1a591fb8dab174cfb8c674785bd47590e07afdd5e7782bfeca345deb044546a8792032bf6355a3
SHA1 hash: ba154d0897020af17fa5f6902dbd37b022bc84f3
MD5 hash: aae263aad5e6269305f55ef6ad5d7c58
humanhash: sink-jig-chicken-pasta
File name:attholding_invoice_09.14.2022.zip
Download: download sample
Signature IcedID
File size:1'262'712 bytes
First seen:2022-09-14 19:59:17 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 24576:bwJOYvFnLFoMHgWw6h17CxVctrGDNTPkmKJEehcMS/lJvPwHkUu9TTU:UZhFPHgWw4i+tr+Pk4G8HIEUu9E
TLSH T1B345332F98BC79DA8CAAC475FC01CAFA50F581EC710DB6A2D0595C3C4A569336D97133
TrID 80.0% (.ZIP) ZIP compressed archive (4000/1)
20.0% (.PG/BIN) PrintFox/Pagefox bitmap (640x800) (1000/1)
Reporter @0xToxin
Tags:809191839 allozelkot.com IcedID office080822 zip

Intelligence


File Origin
# of uploads :
1
# of downloads :
2'390
Origin country :
IL IL
Mail intelligence
No data
Vendor Threat Intelligence
Gathering data
Gathering data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Malspam

IcedID

zip ad23881012757bcd2dd9b08eff33412df9ad0b0bf93c62d57a5ae21a41c28573

(this sample)

  
Delivery method
Distributed via e-mail attachment

Comments