MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 7


Intelligence 7 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec
SHA3-384 hash: 57163f2e2245631493ca132199484e7aad3ecd739119848fc3d30c123f8dbb1e63bbb6da41d5ca2a63d0d1bfc798ff01
SHA1 hash: ae221d3033a3e9091b729f2795716d7c6838ffda
MD5 hash: 07a394474f53ebe6ae517a71598c582d
humanhash: happy-spaghetti-william-north
File name:eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec.jar
Download: download sample
File size:35'046 bytes
First seen:2025-12-10 07:15:18 UTC
Last seen:Never
File type:Java file jar
MIME type:application/java-archive
ssdeep 768:2X4g73wYIV9SoU+1zHgNQx4FXO3cMEtLmiacJn3OdVdBGzS81esu:a57gYkZU+Rgu4w3cztLVacJ+Vhj
TLSH T188F2F156FAF56C26FD0E46340C514936334058F696E5763BC49A0BFA062104296FBEF6
TrID 77.1% (.JAR) Java Archive (13500/1/2)
22.8% (.ZIP) ZIP compressed archive (4000/1)
Magika jar
Reporter JAMESWT_WT
Tags:35-185-90-35 jar

Intelligence

File Origin
# of uploads :
1
# of downloads :
108
Origin country :
IT IT
Vendor Threat Intelligence
No detections
Malware family:
n/a
ID:
1
File name:
_eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec.zip
Verdict:
No threats detected
Analysis date:
2025-12-10 07:34:31 UTC
Tags:
java
Link:
https://app.any.run/tasks/de7e915e-7b6d-406f-95df-b7f9551acd00

Note:
ANY.RUN is an interactive sandbox that analyzes all user actions rather than an uploaded sample
Detection:
n/a
Link:
https://www.capesandbox.com/analysis/44093/
Detection(s):
SecuriteInfo.com.Java.Trojan.GenericGB.29743.UNOFFICIAL
Create hunting rule

Verdict:
Malicious
Score:
70%
Link:
https://cyber-fortress.com/docs/result/index.php?id=69391e19a675b653bd0f9e3e
Tags:
malware
Verdict:
Malicious
Labled as:
Trojan.Generic
Link:
https://www.hybrid-analysis.com/sample/eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec
Verdict:
Malicious
File Type:
jar
First seen:
2025-09-12T22:19:00Z UTC
Last seen:
2025-09-16T17:28:00Z UTC
Hits:
~10
Detections:
Trojan-PSW.Win32.Greedy.sb HEUR:Trojan-PSW.Java.Stealer.gen Trojan-PSW.Win32.Stealer.sb Trojan-PSW.Win32.Pycoon.sb
Link:
https://opentip.kaspersky.com/eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec/results?tab=lookup
Score:
0%
Verdict:
Benign
File Type:
ARCHIVE
Link:
https://malprob.io/report/eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec/
Verdict:
Malicious
Threat:
Trojan-PSW.Win32.Stealer
Link:
https://tip.neiki.dev/file/eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec
Threat name:
ByteCode-JAVA.Trojan.Generic
Create hunting rule
Status:
Suspicious
First seen:
2025-08-30 18:58:04 UTC
File Type:
Binary (Archive)
Extracted files:
5
AV detection:
5 of 24 (20.83%)
Threat level:
  5/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=5mgadqys25yms5rzdsas2bdul6ckjuchleyqkl7fmd2vengkv3wa._file
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/251210-h3f8aswldp/
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Suspicious File
Score:
0.35
Link:
https://yomi.yoroi.company/submissions/eb0c01c312d770c976391c812d04745f84a4d0475931052fe560f55234caaeec

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Cape
Cape
https://www.capesandbox.com/analysis/44093/

Comments