MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


WeedHack


Vendor detections: 10


Intelligence 10 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046
SHA3-384 hash: f16f7bee2ed2f43e9c964fbac89860c66fa5b150d927529a544b1e3fc0a0529900bb4c7dc5fb280c884e4964991c090b
SHA1 hash: 1d5057dfaaf23339ada4b89d9ecf06e1631b9ec0
MD5 hash: cfa4099d42f87a980374026e1cfbe8a9
humanhash: skylark-green-steak-river
File name:Elevator.jar
Download: download sample
Signature WeedHack
Create hunting rule
File size:7'016'308 bytes
First seen:2026-04-16 11:49:23 UTC
Last seen:Never
File type:Java file jar
MIME type:application/zip
ssdeep 98304:pMXLjtQ5CryByCcMSaiKMAqcoArxoBx8JosjeYHrTg9hRtAdijORhHF1RLQ1eNRd:42LyCcMbhM1d+HjemMjf8iUHySR
TLSH T1E566F112FDC6CA2BDA6780B3E1C68267502A27D9B80AD03F47A02D855D75D4A43D3FED
TrID 77.1% (.JAR) Java Archive (13500/1/2)
22.8% (.ZIP) ZIP compressed archive (4000/1)
Magika jar
Reporter burger
Tags:jar WeedHack

Intelligence

File Origin
# of uploads :
1
# of downloads :
99
Origin country :
US US
Vendor Threat Intelligence
No detections
Detection:
n/a
Link:
https://www.capesandbox.com/analysis/61864/
Verdict:
Malicious
Score:
70%
Link:
https://cyber-fortress.com/docs/result/index.php?id=69e0ccfbf68adfe1003a5d97
Tags:
malware
Verdict:
Likely Malicious
Threat level:
  7.5/10
Confidence:
100%
Tags:
anti-debug anti-vm base64 lolbin macros-on-close obfuscated runonce
Link:
https://www.filescan.io/uploads/69e0ccf65ea31bc68a30c169/reports/bb062fcf-b59a-4317-b586-a5baf0f3b58d/overview
Verdict:
Malicious
Labled as:
Trojan.Generic
Link:
https://www.hybrid-analysis.com/sample/202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046
Result
Verdict:
SUSPICIOUS
Link:
https://labs.inquest.net/dfi/sha256/202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046
Verdict:
Malicious
File Type:
jar
First seen:
2026-04-12T21:12:00Z UTC
Last seen:
2026-04-18T07:55:00Z UTC
Hits:
~100
Detections:
Trojan.Java.Agent.vu
Link:
https://opentip.kaspersky.com/202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046/results?tab=lookup
Result
Threat name:
n/a
Detection:
malicious
Classification:
n/a
Score:
52 / 100
Link:
https://www.joesandbox.com/analysis/1899415
Signature
Joe Sandbox ML detected suspicious sample
Multi AV Scanner detection for submitted file
Behaviour
Behavior Graph:
Download SVG
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1899415 Sample: Elevator.jar Startdate: 16/04/2026 Architecture: WINDOWS Score: 52 12 Multi AV Scanner detection for submitted file 2->12 14 Joe Sandbox ML detected suspicious sample 2->14 6 cmd.exe 2 2->6         started        process3 process4 8 java.exe 3 6->8         started        10 conhost.exe 6->10         started       
Score:
0%
Verdict:
Benign
File Type:
ARCHIVE
Link:
https://malprob.io/report/202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046/
Verdict:
Malicious
Threat:
Trojan.Java.Agent
Link:
https://tip.neiki.dev/file/202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046
Threat name:
Package.Trojan.Generic
Create hunting rule
Status:
Suspicious
First seen:
2026-04-13 12:27:06 UTC
AV detection:
7 of 24 (29.17%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=eaqflxar6en3qhqfdz5tcttegm4z3a4go2ac7lcht7skfm4sibda._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
n/a
Link:
https://tria.ge/reports/260416-nzs1ksgz8w/
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Suspicious File
Score:
0.35
Link:
https://yomi.yoroi.company/submissions/202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Web download

WeedHack

Java file jar 202055dc11f11bb81e051e7b314e6433399d838676802fac479fe4a2b3924046

(this sample)

Cape
Cape
https://www.capesandbox.com/analysis/61864/
  
URLhaus
https://urlhaus.abuse.ch/url/3806100/
  
Delivery method
Distributed via web download
  
URLhaus
https://urlhaus.abuse.ch/url/3806099/
  
URLhaus
https://urlhaus.abuse.ch/url/3822432/
  
URLhaus
https://urlhaus.abuse.ch/url/3822433/
  
URLhaus
https://urlhaus.abuse.ch/url/3823263/
  
URLhaus
https://urlhaus.abuse.ch/url/3823264/
  
URLhaus
https://urlhaus.abuse.ch/url/3823629/
  
URLhaus
https://urlhaus.abuse.ch/url/3823630/

Comments