1fc4cfdc4a304464d33ff5c224bb8f497ac68928bd8cac90d4ab581cf90fa8bc

Submit
Reports

Overview

overview

Static

static

証拠/gon...er.pdf

windows7-x64

証拠/gon...er.pdf

windows10-2004-x64

証拠/gon...er.pdf

windows7-x64

証拠/gon...er.pdf

windows10-2004-x64

証拠/gon...er.pdf

windows7-x64

証拠/gon...er.pdf

windows10-2004-x64

証拠/gon...er.pdf

windows7-x64

証拠/gon...er.pdf

windows10-2004-x64

証拠/mor...��.pdf

windows7-x64

証拠/mor...��.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...��.pdf

windows7-x64

証拠/mor...��.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...��.pdf

windows7-x64

証拠/mor...��.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

Analysis

max time kernel
151s
max time network
45s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
26-10-2022 16:50

Sharing

Copy URL

Twitter E-mail

Static task

static1

pdf link

1 signatures

Behavioral task

behavioral1

Sample

証拠/gontamorin/もるごん (@gontamorin) _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

証拠/gontamorin/もるごん (@gontamorin) _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「こいつ頭悪すぎ」 _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「こいつ頭悪すぎ」 _ Twitter.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral5

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「こいつ頭悪すぎだろ」 _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「こいつ頭悪すぎだろ」 _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral7

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「無能発見」 _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「無能発見」 _ Twitter.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral9

Sample

証拠/morigoooo2/ごんもり on Twitter_ _いやこいつ普通見たら予想つくだろ。頭��.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

証拠/morigoooo2/ごんもり on Twitter_ _いやこいつ普通見たら予想つくだろ。頭��.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral11

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつガイジだわ。_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつガイジだわ。_ _ Twitter.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral13

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつサイコパスやん_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつサイコパスやん_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral15

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつ結局野球見たいだけやん。人間と�.pdf

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつ結局野球見たいだけやん。人間と�.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral17

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつ頭悪そうやなwww_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつ頭悪そうやなwww_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral19

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴がいつか人とか轢くんだろうな〜_ _ Twitter.pdf

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴がいつか人とか轢くんだろうな〜_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral21

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴が犯罪犯すんだよな〜_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴が犯罪犯すんだよな〜_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral23

Sample

証拠/morigoooo2/ごんもり on Twitter_ _すぐ離婚する奴って人間性に問題がある��.pdf

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

証拠/morigoooo2/ごんもり on Twitter_ _すぐ離婚する奴って人間性に問題がある��.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral25

Sample

証拠/morigoooo2/ごんもり on Twitter_ _ほんまに雑魚やな https___t.co_NruQ9p4L2U_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

証拠/morigoooo2/ごんもり on Twitter_ _ほんまに雑魚やな https___t.co_NruQ9p4L2U_ _ Twitter.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral27

Sample

証拠/morigoooo2/ごんもり on Twitter_ _また被害妄想ですか......_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

証拠/morigoooo2/ごんもり on Twitter_ _また被害妄想ですか......_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral29

Sample

証拠/morigoooo2/ごんもり on Twitter_ _やったぜ_ _ Twitter.pdf

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

証拠/morigoooo2/ごんもり on Twitter_ _やったぜ_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral31

Sample

証拠/morigoooo2/ごんもり on Twitter_ _リプ制限のクソ野郎_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

証拠/morigoooo2/ごんもり on Twitter_ _リプ制限のクソ野郎_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Report Analysis Logs

General

Target

証拠/morigoooo2/ごんもり on Twitter_ _こいつサイコパスやん_ _ Twitter.pdf
Size

258KB
MD5

545b04993bb7b5bc83844406b3fc1b9a
SHA1

2333a9566b5ac7705ea4196fdd73de4460bf22d1
SHA256

2b3a3c5614c1fd9ecd1a7b1962412b61054ef7009e6dd11d7261f11d1ddb8cd5
SHA512

744ac62c3c498b8747654d3c27f298fe60ab5f7a40be37ce33ba932ec01672d09b066a6c80e3ea2a4a26eb25d9e2bccb2701f7844f637de8671a4a8a111ffb48
SSDEEP

6144:LWs+b4Gzfkc5VFGZIoXjvgfCVxxBY3oQlvTh/:LWsg93siQQ0eos

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

536 AcroRd32.exe
536 AcroRd32.exe
536 AcroRd32.exe
536 AcroRd32.exe

pid	process
536	AcroRd32.exe
536	AcroRd32.exe
536	AcroRd32.exe
536	AcroRd32.exe

Processes

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\証拠\morigoooo2\ごんもり on Twitter_ _こいつサイコパスやん_ _ Twitter.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/536-54-0x0000000076831000-0x0000000076833000-memory.dmp

Filesize
8KB

Download