1fc4cfdc4a304464d33ff5c224bb8f497ac68928bd8cac90d4ab581cf90fa8bc

Submit
Reports

Overview

overview

Static

static

証拠/gon...er.pdf

windows7-x64

証拠/gon...er.pdf

windows10-2004-x64

証拠/gon...er.pdf

windows7-x64

証拠/gon...er.pdf

windows10-2004-x64

証拠/gon...er.pdf

windows7-x64

証拠/gon...er.pdf

windows10-2004-x64

証拠/gon...er.pdf

windows7-x64

証拠/gon...er.pdf

windows10-2004-x64

証拠/mor...��.pdf

windows7-x64

証拠/mor...��.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...��.pdf

windows7-x64

証拠/mor...��.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...��.pdf

windows7-x64

証拠/mor...��.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

証拠/mor...er.pdf

windows7-x64

証拠/mor...er.pdf

windows10-2004-x64

Analysis

max time kernel
150s
max time network
49s
platform
windows7_x64
resource
win7-20220812-en
resource tags

arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
submitted
26-10-2022 16:50

Sharing

Copy URL

Twitter E-mail

Static task

static1

pdf link

1 signatures

Behavioral task

behavioral1

Sample

証拠/gontamorin/もるごん (@gontamorin) _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

証拠/gontamorin/もるごん (@gontamorin) _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral3

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「こいつ頭悪すぎ」 _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「こいつ頭悪すぎ」 _ Twitter.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral5

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「こいつ頭悪すぎだろ」 _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「こいつ頭悪すぎだろ」 _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral7

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「無能発見」 _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

証拠/gontamorin/もるごんさんはTwitterを使っています_ 「無能発見」 _ Twitter.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral9

Sample

証拠/morigoooo2/ごんもり on Twitter_ _いやこいつ普通見たら予想つくだろ。頭��.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

証拠/morigoooo2/ごんもり on Twitter_ _いやこいつ普通見たら予想つくだろ。頭��.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral11

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつガイジだわ。_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつガイジだわ。_ _ Twitter.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral13

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつサイコパスやん_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつサイコパスやん_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral15

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつ結局野球見たいだけやん。人間と�.pdf

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつ結局野球見たいだけやん。人間と�.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral17

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつ頭悪そうやなwww_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こいつ頭悪そうやなwww_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral19

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴がいつか人とか轢くんだろうな〜_ _ Twitter.pdf

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴がいつか人とか轢くんだろうな〜_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral21

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴が犯罪犯すんだよな〜_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴が犯罪犯すんだよな〜_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral23

Sample

証拠/morigoooo2/ごんもり on Twitter_ _すぐ離婚する奴って人間性に問題がある��.pdf

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

証拠/morigoooo2/ごんもり on Twitter_ _すぐ離婚する奴って人間性に問題がある��.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral25

Sample

証拠/morigoooo2/ごんもり on Twitter_ _ほんまに雑魚やな https___t.co_NruQ9p4L2U_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral26

Sample

証拠/morigoooo2/ごんもり on Twitter_ _ほんまに雑魚やな https___t.co_NruQ9p4L2U_ _ Twitter.pdf

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral27

Sample

証拠/morigoooo2/ごんもり on Twitter_ _また被害妄想ですか......_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

証拠/morigoooo2/ごんもり on Twitter_ _また被害妄想ですか......_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral29

Sample

証拠/morigoooo2/ごんもり on Twitter_ _やったぜ_ _ Twitter.pdf

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

証拠/morigoooo2/ごんもり on Twitter_ _やったぜ_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral31

Sample

証拠/morigoooo2/ごんもり on Twitter_ _リプ制限のクソ野郎_ _ Twitter.pdf

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral32

Sample

証拠/morigoooo2/ごんもり on Twitter_ _リプ制限のクソ野郎_ _ Twitter.pdf

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Report Analysis Logs

General

Target

証拠/morigoooo2/ごんもり on Twitter_ _こういう奴が犯罪犯すんだよな〜_ _ Twitter.pdf
Size

285KB
MD5

83e109c936c975051d2d4b7d68966d74
SHA1

d3877e2d03acb9806cd8909f63bb7199144b4c5d
SHA256

b8645406d26221a1bc8e62c1acbfc19e6dbc353f0a70066b9156a5f8480ebf45
SHA512

2deed30fe9e2b660471b8c7eb59c6f90f2d3cb3944511d196ee5db6a09838d72dce389e618bb3eb10cbb57e86e85d6477d21a1260119f2288b48d161028dff39
SSDEEP

3072:Mgu1nr8x/uF9mckn7MPTBGdLvQtoNqe6SodYdOLy/VJdikNgfQWBX+g:moJuF9jGZIoRsYKEVJXNgfQ6

Score

1^/10

Malware Config

Signatures

Suspicious use of SetWindowsHookEx 4 IoCs

Processes:

AcroRd32.exe

pid process

2012 AcroRd32.exe
2012 AcroRd32.exe
2012 AcroRd32.exe
2012 AcroRd32.exe

pid	process
2012	AcroRd32.exe
2012	AcroRd32.exe
2012	AcroRd32.exe
2012	AcroRd32.exe

Processes

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\証拠\morigoooo2\ごんもり on Twitter_ _こういう奴が犯罪犯すんだよな〜_ _ Twitter.pdf"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2012-54-0x0000000075BA1000-0x0000000075BA3000-memory.dmp

Filesize
8KB

Download