Overview

overview

6

Static

static

3

sketchyori...eTswap

ubuntu-18.04-amd64

6

sketchyori...eTswap

debian-9-armhf

1

sketchyori...eTswap

debian-9-mips

sketchyori...eTswap

debian-9-mipsel

sketchyori...ty.lnk

windows7-x64

3

sketchyori...ty.lnk

windows10-2004-x64

3

sketchyori...et.lnk

windows7-x64

3

sketchyori...et.lnk

windows10-2004-x64

3

sketchyori...ll.lnk

windows7-x64

3

sketchyori...ll.lnk

windows10-2004-x64

3

sketchyori...ls.lnk

windows7-x64

3

sketchyori...ls.lnk

windows10-2004-x64

3

sketchyori...ip.lnk

windows7-x64

3

sketchyori...ip.lnk

windows10-2004-x64

3

sketchyori...og.lnk

windows7-x64

3

sketchyori...og.lnk

windows10-2004-x64

3

sketchyori...11.lnk

windows7-x64

1

sketchyori...11.lnk

windows10-2004-x64

1

sketchyori...allpkg

ubuntu-18.04-amd64

6

sketchyori...allpkg

debian-9-armhf

1

sketchyori...allpkg

debian-9-mips

sketchyori...allpkg

debian-9-mipsel

sketchyori...sm.pdf

windows7-x64

1

sketchyori...sm.pdf

windows10-2004-x64

1

sketchyori...rg.pdf

windows7-x64

1

sketchyori...rg.pdf

windows10-2004-x64

1

sketchyori...js.pdf

windows7-x64

1

sketchyori...js.pdf

windows10-2004-x64

1

sketchyori...js.pdf

windows7-x64

1

sketchyori...js.pdf

windows10-2004-x64

1

sketchyori...js.pdf

windows7-x64

1

sketchyori...js.pdf

windows10-2004-x64

1

Resubmissions

12/06/2024, 17:05

240612-vmcamasdqh 6

12/06/2024, 16:56

240612-vft7vsscma 7

12/06/2024, 16:50

240612-vcjxqasbna 6

12/06/2024, 16:40

240612-t6wb6swank 6

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    12/06/2024, 16:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sketchyorignorant-main/jar file ___usr_lib_firefox_omni.ja!_chrome_toolkit_res_messaging-system_targeting_Targeting.sys.mjs.pdf

  • Size

    17KB

  • MD5

    8673bb9a54bed9e0f3bdb97fe356366f

  • SHA1

    3d878ac19f81abf6208869a31c8ff35297e99526

  • SHA256

    fcd925c1808511fa706c0bd8183f75c37bc2ff4efb3c5ce1d6e53af0f79142e8

  • SHA512

    bf0e84dc8d4a0297ffdc03b8ba3e943cca396db9ff6e21959cfe8d8c8992b7604a55c93a2c51a6fac32638856f19d8e3ad8b5d1d4e373141ce55653433c5d191

  • SSDEEP

    384:G+Jd+UtgyixUeFtN4roD1UbXDB2wgja0b:G+JUU3mNN4roD1MDSb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\sketchyorignorant-main\jar file ___usr_lib_firefox_omni.ja!_chrome_toolkit_res_messaging-system_targeting_Targeting.sys.mjs.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2080

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    99c55c685a09a572ca4bd0a468cb4b2b

    SHA1

    4aa66fc1675c3e6de93ce8b02b86984667378ada

    SHA256

    d5bce02fc4be9cffdb5e7e103bb21d74425b1fde60a3a69aa6a72ac782d068b6

    SHA512

    2073faef8caed4f932ceaddddba9c9ce60a9871374f960113d5957e8ba6fd20acda59fe0e3e8930be5df6c9129c333149725f64655c827ef580dba77800624bb

    Download Submit