MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


WeedHack


Vendor detections: 7


Intelligence 7 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d
SHA3-384 hash: d1c63c24e61411b297537083e297fd6528f4b4d0372fd1115d4e072b8236466f10ca2f7683b4ce1472453f9ecb03ea53
SHA1 hash: 79ff871666f9f25878f8179607e168bd7890da06
MD5 hash: 42052eb2e7eade25f0596c17e4799a9d
humanhash: eighteen-artist-arkansas-connecticut
File name:spawnerdupe-1.0.0.jar
Download: download sample
Signature WeedHack
Create hunting rule
File size:156'077 bytes
First seen:2026-05-15 10:18:57 UTC
Last seen:Never
File type:Java file jar
MIME type:application/java-archive
ssdeep 3072:9o2cWvvJVljyplsDKLPndk04rejwqsZTUQZ7:9YEjyplsWLngmITUa7
TLSH T18CE31A85F946E4BCF0035070166C61376F1F9184960AE92FBCDB9E3A0C76E5B0B9BD86
TrID 77.1% (.JAR) Java Archive (13500/1/2)
22.8% (.ZIP) ZIP compressed archive (4000/1)
Magika jar
Reporter burger
Tags:jar WeedHack

Intelligence

File Origin
# of uploads :
1
# of downloads :
88
Origin country :
US US
Vendor Threat Intelligence
No detections
Malware family:
n/a
ID:
1
File name:
_dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d.zip
Verdict:
Malicious activity
Analysis date:
2026-05-15 10:20:36 UTC
Tags:
stealer weedhack evasion auto-sch auto-reg etherhiding
Link:
https://app.any.run/tasks/d1cad849-7169-41a3-9ba9-7a52772a9087

Note:
ANY.RUN is an interactive sandbox that analyzes all user actions rather than an uploaded sample
Detection:
n/a
Link:
https://www.capesandbox.com/analysis/66025/
Verdict:
Clean
Score:
89.3%
Link:
https://cyber-fortress.com/docs/result/index.php?id=6a06f33b46d6967b3d9077cf
Tags:
n/a
Verdict:
Unknown
Threat level:
  2.5/10
Confidence:
100%
Link:
https://www.filescan.io/uploads/6a06f333df14f1cb2ad73c6e/reports/9b39e5f5-c1b0-4893-9e1a-780ee848d9e3/overview
Verdict:
Unknown
Link:
https://www.hybrid-analysis.com/sample/dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d
Result
Verdict:
UNKNOWN
Link:
https://labs.inquest.net/dfi/sha256/dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d
Verdict:
Malicious
File Type:
jar
First seen:
2026-05-15T07:21:00Z UTC
Last seen:
2026-05-16T03:44:00Z UTC
Hits:
~10
Detections:
HEUR:Trojan.Java.Generic
Link:
https://opentip.kaspersky.com/dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d/results?tab=lookup
Result
Threat name:
n/a
Detection:
suspicious
Classification:
n/a
Score:
22 / 100
Link:
https://www.joesandbox.com/analysis/1913948
Signature
Joe Sandbox ML detected suspicious sample
Behaviour
Behavior Graph:
Download SVG
behaviorgraph top1 signatures2 2 Behavior Graph ID: 1913948 Sample: spawnerdupe-1.0.0.jar Startdate: 15/05/2026 Architecture: WINDOWS Score: 22 12 Joe Sandbox ML detected suspicious sample 2->12 6 cmd.exe 2 2->6         started        process3 process4 8 java.exe 3 6->8         started        10 conhost.exe 6->10         started       
Score:
0%
Verdict:
Benign
File Type:
ARCHIVE
Link:
https://malprob.io/report/dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d/
Verdict:
Malicious
Threat:
Family.WEEDHACK
Link:
https://tip.neiki.dev/file/dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d
Threat name:
Binary.Trojan.Generic
Create hunting rule
Status:
Suspicious
First seen:
2026-05-15 10:19:44 UTC
File Type:
Binary (Archive)
Extracted files:
315
AV detection:
3 of 24 (12.50%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=3pf4ymaok5w6ibnr3lmgg6s77ja5ahd2kgkduaoob4vib5qnueoq._file
Gathering data
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Suspicious File
Score:
0.35
Link:
https://yomi.yoroi.company/submissions/dbcbcc300e576de405b1dad8637a5ffa41d01c7a51943a01ce0f2a80f60da11d

File information

The table below shows additional information about this malware sample such as delivery method and external references.

  
Link
https://jlab.threat.rip/report/1affcdc6-62b7-4ab9-adec-120bd374cbb9
Cape
Cape
https://www.capesandbox.com/analysis/66025/

Comments