APT_MuddyWater_MalDoc_Feb20_1

Rule Info

Name
APT_MuddyWater_MalDoc_Feb20_1
Author
Florian Roth
Description
Detects weaponized Office documents used by MuddyWater
Score
75
Reference
Internal Research
Date
2020-02-13
Minimum Yara
1.7
Rule Hash
7929376ad2ff686c017bd92fa2e2daa8
Tags
['APT', 'T1566_001', 'T1203', 'G0069', 'FILE', 'OFFICE']
Required Modules
[]
Virustotal Matches
https://www.virustotal.com/gui/search/apt_muddywater_maldoc_feb20_1/comments

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
2013
Suspicious (< 10 engines)
83
Clean (0 engines)
3

Rule Matches

Timestamp
Positives
Total
Hash
VT
2025-03-04 20:45:00
0
63
b5523c449c1efb10f18fc84b5e3dfedb91763efed79f19e7ca26f24470f43c2f
2025-03-04 20:38:37
0
64
1855fcd8d6d20b438fe006c9b37fb8d295ce7e2d048618259c68148b57a5a97b
2024-12-26 13:48:26
40
61
ed95f918f254d4df75d67118f3554c4dc694ff6f5971b9eeb9c9612e4972c0cb
2024-12-14 06:13:13
41
61
71a126a1b37dc0d8c4301aa1d12550e740560b2de0d7fc5ccf34bba109a45a2d
2024-12-14 05:59:18
41
62
3383cdaa10412f3828faeca323e0c7a840d11fff1825c4c390165337ac441232
2024-12-14 05:51:37
39
62
0a29db82c94704214d764e02a2d172ee9919e77962536e47b0a13632d310c98c
2024-12-14 05:51:19
40
61
066810dc0cd730e72f910c0af351781342e3a6ec7548196a4a6c48b6ab00ef7e
2024-12-14 05:39:51
41
62
ca121839e4ea1fed278bb8e31c04de86e2ce8b7885a7f0be0f8050ccc89ccce2
2024-12-14 05:26:00
41
61
57762ddb314f9e77711bf7b07686813a036051025b3aa4afb5c4ac041ac7a3ec
2024-12-14 05:25:55
41
62
9be1ee713afa3e14f75df92447c4dc2c66d2f4c2133f4c629f83f0c62b9102ba
2024-12-14 05:24:03
41
62
a39db9ae7f17835753d512a1fdc33b2a9efb4eb98ded8b50d1f14f534209c368
2024-12-14 05:20:21
41
62
b38e64df646638d5c9b38ab6a095943e9ce461022e3645d9c362a7c2f3526faa
2024-12-14 05:19:12
40
61
eb120a18a8bc234029f1a369221072b417a8a7814c29d156a5fff7607c6915dc
2024-12-14 05:17:07
41
62
4f9a2f60252c79dfca446a1d379071c115de68fd80fe3aca4f093446d119d732
2024-12-14 05:16:48
39
62
c19754679244cfd3b2e18a54cf3109a74c5cea7406964f8a72e7ed27a666ac38
2024-12-14 05:15:47
41
62
9e261b2ec0c7e3d780b7514ab3dfa1eb11e843a3d84cc4546f92f6e333bb649b
2024-12-14 05:13:12
41
61
c44a05d17b67dab48cc0cf44dbded3ca2729c52e6d385fe1a2b02fd7cfa6c361
2024-12-14 05:12:56
40
61
d8a0d0afb7071a410fd7d58d16aeb9560f41b49e954156285d422d37e3a31ef6
2024-12-14 05:11:40
40
61
2a58af054da44bff4b456824be808d47e67431652b2cdcd163a1cbb376bc2234
2024-12-14 05:11:24
40
61
4103f7c0dd39c9de95307042b3c08d5ebf43bc6e8f93e7e78ed85320feeace59
2024-12-14 05:11:24
41
62
10982215d5bcfa20f6dc5ad2b7e1fd63fce30c90211c4896572845de6f47200c
2024-12-14 05:11:23
40
61
be1aa006c101234b7cb85177b77437d33cc2b69250d9443cd49b6d556424371a
2024-12-14 05:10:28
41
62
4a55121fc0e4d5af6989634ce8befa2b878d7d625ecff52d99c76ae09035bc6b
2024-12-14 05:10:00
41
62
c600ed45c41ec1548f9048b9d9bcb63ce93fe11d8e6f9dda4abee94f8ba80e3c
2024-12-14 04:26:40
41
62
9b7aee1baad26bc06b3c0bb36657f0a5f271e1530c7cf94621b0f0e9a1c5e7f8
2024-12-14 04:24:44
23
43
f2f91d762ae6f24a2e6cfd4de5b781c33ea5ee6fcf52b2df5c395d7cb09ee36c
2024-12-13 03:33:31
2
60
2d8cb49014293e3d8b6ba9dda2a8f802164df7e5ffc8f9315124ac2a61b9f58f
2024-12-12 06:27:19
32
64
8a6c1669e18959ac98aadf946c447238bf11c98c661ae839ec671b07117ab75d
2024-11-30 07:24:33
34
62
ab9c7dfe11869294126725143f0ea8160317e8c2587304362fcb25ea19f07cfd
2024-11-30 07:14:51
34
63
35262513670d37402163598a6cced4ad859d84428b8aea64b228f6e9baa16766
2024-11-30 07:11:38
33
61
6dbb9125a358fad92df2301422d7357d104219c40f276116576604272bf26d57
2024-11-30 07:07:41
34
62
651f572d34fda4f09f0fefbb10db50fc89ac48c15644bf35bbb2492e1a7ac3ef
2024-11-30 07:07:34
34
62
a74d3fd20062a2a33b2f4dacb03816deebff16e69f70e282563c54d1b801f663
2024-11-30 07:05:15
34
63
3fbe4b7b918b1f8fd1ed27b7d158f5d5bcc1954ba1b72752f2679d6dc69874f7
2024-11-30 07:05:04
33
61
3212dc846e3f530350935713d6940cf8e28100148d125ee8f5e2614f021c0d4c
2024-11-30 07:04:44
34
63
66f5cbcd072d07251d46eb13f8445329a531e287009d0eaf15893f6910fed5a6
2024-11-30 07:04:44
34
62
2ae02f0584fd00fbed739c1d67c7217106c871e2c4372311ca2a024466ccdff8
2024-11-30 07:01:48
2
61
11b1ce4e4aec6247de69715a2b7064f862289d3d547111ca688e284e5bfdadc0
2024-11-30 07:01:21
32
61
f9207b02154ec77ff1d88d7504a7aa6efe63a58ec2f6077502eb96e23ff64b75
2024-11-30 07:00:28
34
63
ba32727a104d3354d4e67e03fb150cf9fc8a58d239f4f81c4cea9f4152f6b562
2024-11-30 06:58:46
2
61
2be451b8dc1a5c65a6ec4a51b4dff730febd235a546e4cab62d68b172a2052c8
2024-11-30 06:57:51
28
56
401565b5f623d23bb4aa8bf46ae6897c0dfb4942d506f5a352ec8e7d35ecdc17
2024-11-30 06:55:48
34
62
3064baf4f7a52ebcd1d23e11d29e8021eafecaf0ed386b1ccc2a233a854dcde8
2024-11-30 06:55:20
32
60
8d3e1a70772432118264652a6bb4b6d6dca354a06cc55a5643c4d891b13aa6e4
2024-11-30 06:54:48
33
61
60232c16ee65613aa7bc58eefa83871e2c64b2bbab5419421d9ce7af205d5e87
2024-11-30 06:54:34
34
62
212edbaf8d290b5329b65f9aafc954daa2f83ec3796483c4f23992fafcde4e4c
2024-11-30 06:52:14
34
63
ebc68c9ac5128f2008c6d9ebe94285e1d94fa97c6af9d74e49239e69a3418126
2024-11-30 06:38:16
34
62
7c073e7133fdcf80f70e693aa0fd1303d8301c0e0a221986a611027d2e206dde
2024-11-30 06:38:10
34
63
64be2cca01b7c0e927e1019adbd0e62902562bcc459de6dea758de8843d7bf99
2024-11-30 06:37:48
34
63
7d00d46cf87d9d745964765a0102b318f99a49893a04dcc2a869ce94b74065b3
2024-11-30 06:37:48
34
63
32e705ea9870394ab0fdd40c6aad93ca109cd36869947d22e7a27a2188c0bd14
2024-11-30 06:32:23
34
63
b20cee44f797411a53fcece0bdbab945ab1e72098130fec11fa6654b61899c79
2024-11-30 06:32:22
34
63
01fb0ead83dc1bb39a50bfb25db46debc6b985a88df9ff402e8ebc620aa1719e
2024-11-30 06:27:35
34
63
08491da1eeef22411535bcafaf74a5023fba5d3d77283b3bb95770ae4bf0b7b0
2024-11-30 06:27:30
34
63
2aab48d64ad7bb7b54ce694883361b3a1c935fd3db83ea5a471c63c13be33dff
2024-11-30 06:27:03
32
63
6c61b974a8023deca4a0a91bdfec15f17672ee7868829dc750f8c7e8f77a53c8
2024-11-30 06:06:58
28
55
cc8af3a19ec7c772704587bdbbc866125fb810a7bd2869b95f27a040f893d67b
2024-11-30 06:04:47
34
62
d71155764b790af5f4cf0fb66a2aeb6dedf29cdc8f81bd1a9a71eaacd6cf8af6
2024-11-30 06:03:19
33
61
d3d829d0866476504f716268bfcff5acc4564d551b4046e90d2dd4374f5ff1c9
2024-11-30 06:03:09
34
63
04dd60424882570077329a6647100e1ae8b96752b832925b0057bdec59b57030
2024-11-30 06:01:52
32
62
9014b237682938451a69e46c9cbc5c795a2598071f8395588a0100e2d90df52d
2024-11-30 05:56:12
34
63
d64f0ce86d61fd2bd9998562395191aafcf4ef5773279c78267c7e55b554d4ba
2024-11-30 05:56:02
34
62
0269b6ec7140e9d532e46ebe8b47b737608a30899f56bcfe02d77510ee9c3846
2024-11-30 05:55:57
32
63
67fe960d0fa3ebc19780a773fb27b49039a4635614723bff79550128de3cd99f
2024-11-30 05:55:05
33
62
1702705f6d2881e0290bb22be96e3cbb1709fbe03848bbfe14eb71affd0efcab
2024-11-30 05:51:53
34
63
a9f7a9c1497adf8b758dd31c0181784886ca830ee50d75d03d6d7637f49f0942
2024-11-30 05:51:48
30
58
7bff398ab12222217634cd5dd995437e9cb9dec13d5fbc4f29809297f5bded72
2024-11-30 05:43:39
33
62
0ae8cbba0506926fffd7766ecc414faf411ab9a7ac07cac22706402aea703fd5
2024-11-30 05:29:33
34
62
5b83fe2c42097a908ba92cf0e9f409fa12a5e55f42897af8e27684f8d5fe0469
2024-11-30 05:24:28
33
62
a0dc4a273c13b298528d474709382e50fe81c2ce2506893e4cdf3160385ec001
2024-11-30 04:14:40
34
63
df2ff0acd8afe5f889a087774f7d13051464f99be25379177d863f43220d1832
2024-11-30 04:14:40
34
62
9eefb9bf332779ee34445fdf11b37dbe93fcf75a99a34fbc3635fe9e1eb87bbf
2024-11-30 04:13:16
31
59
0508dc8d4f8e673746d48afa8d59a3601c1e0a27d8670140422e8d1b88095736
2024-11-30 04:09:38
23
53
12dbeca4290f1d0d309af98b3a8b9cd1595872efcc465c9a0f024cc273a32cfd
2024-11-30 04:07:54
34
63
65f23f8390727b2c85a0a32e96447910dbba050c988a84d26471870bf35a1255
2024-11-30 04:07:49
34
62
dca705d638b423dd15e436c1c2655bfd061037b24c2c8e6ae3658960010e2979
2024-11-30 04:07:05
25
53
f2de8b56b29909ad9ef954f1c9c83f594cdf41a2e51f20def36fc3631edb908b
2024-11-30 03:59:16
31
60
b6e780bd87bbebe3a9454c9544b52c0641e136e21b521be29b8e2d7c7ff0ff2a
2024-11-30 03:55:21
32
59
015165ab758e93f63fcdfa9df61913e6ba2075340eabbd036353fe80698a69c9
2024-11-30 03:55:05
32
59
89f26e7bc38755e4bb3b9228e782f421e740a79e441521281a65d9543cf05aa1
2024-11-30 03:53:04
34
62
b36eaeda5f39004cea0ed20b51794ba6fae6f2b14056425130c24777966a33ca
2024-11-30 03:52:55
27
56
7ff914783128a0bf98f2ffa1f4410918c1ac61520cdb19e53cf962c9a1672a0a
2024-11-30 03:52:24
34
63
5f4a07f22ec8f0e278cf3dfeb2acc965007da678e131538a7aed1961c01eb44a
2024-11-30 03:52:24
32
62
488cf480213da4882b5a8cbfa339d69e6f1745ae801a843bed81752b67a484d3
2024-11-30 03:52:18
34
62
ee943d642d20a0a90d967b40fa5ef816a5bcecf8bc2d8ce2c5cc578effae0e04
2024-11-30 03:51:27
34
62
bd7d7d8a8b0768e82f6e2b26b3c84d7ee5f08d736e6838898cf0aba5df9f9883
2024-11-30 03:51:23
34
62
57554187f48109cde51fcb1e487724250db602c06d666e50c31abb8f7f2ec12a
2024-11-30 03:48:56
34
62
e6829597e8e65e0f4fa65ef76d8a8edcb365048f9af9f0b89e19579f131e2306
2024-11-30 03:48:22
34
63
aef8434f7c6b2b7d2af17856cdde7fa52b9a6359f6c79a1e5d778c2d863536a6
2024-11-30 03:48:17
34
63
e5f1ae5f37545dd640cb31176da0d5fc1709506fd1b469567b4d3b93debded36
2024-11-30 03:41:56
32
63
ed8483a323177ce49181c324583546e5d2fc81222a41523d8a096c4a77e11bf0
2024-11-30 03:41:56
34
62
4d78267b6a2aa705116920e9632d8ee7a7abe607cedd8c66d587b07b53542adc
2024-11-30 03:41:12
33
62
fcd3e7fc6d05f4c609be651395e518a07b3501621ba71934cf709a1d03e7ebfe
2024-11-30 03:40:50
34
62
767176c4f2bc867bde50438f14188e3943f26eb73fe64d1acc937b40610f6c75
2024-11-30 03:40:50
34
63
14c283c8f49497c6cd725d8845794088207da6931d8edf6d806291a0cd58b82f
2024-11-30 03:40:42
34
63
41fced8145b9fe087b73d39bdd67a94e46460171cca72c8f575221695d940b37
2024-11-30 03:36:59
2
62
f3760d3a3100192d3cf61d6a50c61050b8ad8d08b1a7475bc6fd0a37597d6410
2024-11-30 03:35:50
34
63
efd62573029bbb5d9054b5c8b76f2e0aca661daba9ccdab26bf0f9ce5e56f61a
2024-11-30 03:34:33
34
63
56133a12917dc52d8df3ac581e2ff0926ee5692e0bbf669009bdecb195f86638
2024-11-30 03:30:31
2
62
828ff14d31a3ea82844fd5c3832a7079c005a91895750ed86b199f11d43409d2
2024-11-30 03:29:27
34
63
d8f8d17b307174664ed003742fae9794ef81cd96a90573042332cea43760fe9e
2024-11-30 03:28:33
28
54
11b6c88360450b47dfcfcb4f5fcf259bae483055d666505b0f42dac36bf59c88
2024-11-30 03:28:33
34
62
fb338f68dbb38ef29177674cc8901987ca47aeed3c6e6fd6118f63dedb592539
2024-11-30 03:27:19
34
63
5ed959f6e6bf7841fa329a83fc5de8591ac52f05313cfaf33aef0b34d35b49d1
2024-11-30 03:27:19
34
62
5d1424221f4a0b81be39abf930aa35c9c374b65a9eda495cc1f5fbb13c4c4db0
2024-11-30 03:27:03
32
60
16b98ee035950e4882c9dd83412d47633d6d549501292e41f4ce4aa8c4f776da
2024-11-30 03:26:57
29
58
6d4d4fc3c5ee38c3471d9ff84bfaee219eb44a3dfe79116947ee1753f08e7e5b
2024-11-30 03:25:36
34
63
424089d48ca652b3faaa53fd47f5736ebde167322b319c6182150f13187e12e7
2024-11-30 03:25:31
29
59
55dc7d8e8b60dc156df288288fc9e0ad3b477750a9dc75ca3744f0bed0b15589
2024-11-30 03:21:27
33
61
e4970547a8a1d9c76ab2d7acf033466328454a6fd91ed4504c82ea276bc9cf87
2024-11-30 03:21:19
34
63
ef00ee7360811cb4c19484873df6f21d921df1e9e462a249e1ecf860b35d898e
2024-11-29 15:56:08
40
62
05abd2c4270c29b936033abd9c9eb7d868ae209bc576f6c295529c524f7e2123
2024-11-29 08:10:04
39
63
75f99c3873672c9581cc1a00f0b9e1a1a03d691da2db46183ef8452fa345ad80
2024-11-29 08:03:12
41
63
6954066beb1e94bf6a1a737dffe521803fe941c7a79773ee1d9965adbcb87492
2024-11-29 07:55:31
39
63
7f9bdadc164139edc48c0130658d4b5b4ce7768f57822876447c31e42c3bee25
2024-11-29 07:44:43
39
62
0c9db1a3e5cda1141df8aadc8d331f3de8c380555d80969f16689b428f34ef3d
2024-11-29 07:43:41
41
63
547d017b0f3732094aa7bed1eb86f5a1e9de727c1ada466bbca03638865a65ca
2024-11-29 07:41:14
41
63
038bd957a58c048734867cc1ed0604c00b607547cac67b2bf7965bef7bc03f3e
2024-11-29 07:37:17
41
63
b308119faea003950e5d0488bf74f6bad5ec267ab2391fa9fce679780ba876be
2024-11-29 07:35:44
41
63
3f0de43c10aa97dca978d910f5716d06ceff432d324b1da07a3ea506273cf93d
2024-11-29 07:31:47
41
63
ccb6df5b14bc9cbb6cd4c5dc9bc144ff2c45f898bc86c728f0abc33be9332aa0
2024-11-29 07:28:34
39
61
1a92652b067662ef13da01a1e9414422b36b10fe9b46b81ef6596e710895803f
2024-11-29 07:27:35
41
63
6148d461ac376661083519e106084c3d6114b85412c4d8445624956b3c8c3a91
2024-11-29 07:18:21
41
63
86b8d8074dd32342fcf8b443835617c6d4281ad72c1edb900e1073bfaf06e04f
2024-11-29 07:15:34
41
63
304636eff74ac43d2a7d6d5b796a183e54692c75b3de2ce1845f48588f0ae03f
2024-11-29 07:15:28
41
63
f5fb675a51720c831b6886626229a898587e61670fbbe72a6194631e85de86f1
2024-11-29 07:15:28
41
63
acf2a1664aa45f10cba3b159959be8b7146d24def82fc1b842bb125999832b08
2024-11-29 07:13:36
41
63
5cd3adb687c5a42505cafa1fe1e8abaadc02bb5141ceb3547ce5628ebe0ce983
2024-11-29 07:12:18
41
63
c4c780058534fbccb2ca18cc846406f91ccb10bd2b2c0631a4932b46b943a6f8
2024-11-29 07:08:41
40
62
c27fdcebb8e35b11dc6874a7533f0faa3674c14372c9b1f270f140c897dedb29
2024-11-29 07:01:40
41
62
9ad863a656aca0d4bc23dd53b15100190dbc269ccdb5080f29cd908b7f376a24
2024-11-29 07:01:12
41
63
dbb5692c16e5dcd2f5a2d5b613fc677f53eb7e0ffb60fb494275aaef9d59275f
2024-11-29 06:58:03
41
63
fd5e646c83db75d388e15881a35f70ee37620a067c9d9f793ae78df05490d9aa
2024-11-29 06:57:57
41
63
b677b8ce112c0b62afaf77c57c6a77a9598733c305f5e28746c01fd63e92fceb
2024-11-29 06:56:50
41
62
89b97bb774008bea858f89730db7416255ceefc118f4b814ab2682f7235dcede
2024-11-29 06:56:34
41
63
e5898ffc30cca1247bf43e4cd01b603f82321697b1b16d05fe15c00f85516023
2024-11-29 06:54:14
41
63
78d8b1fffacacef4d4d0d51fa5c3cca52cc754d3308eefe75e1387f3bac9fec5
2024-11-29 06:50:43
41
63
0f5d53647c2b48e049b6a06f11b793c40c7cfddf8f6092821710d23fcd6809ba
2024-11-29 06:49:25
41
63
b6b3433474cd0dab65e8bee749984b71f484b7a516c651baab7df0bcda629412
2024-11-29 06:45:11
41
63
b227478635a17556b16789523f399b0797f912340762e1e7207adfddaea0b8f4
2024-11-29 06:44:49
41
63
896ef4278fcc31d634687f90ff8f6cff1fd123323bf4f81b8867d01c0790d91a
2024-11-29 06:42:57
41
63
cb226154e668fb2f94568fcd823c5a5cfd7179aa04abbf6c400d59c40f2b387d
2024-11-29 06:41:17
41
63
9f026181fbbe7fda85467f0c10445d2d5af88f79cf66c6496d6691e6e2c7b2ef
2024-11-29 06:40:56
41
62
966ca07d9f40fc2a9cd03ddce704cc421d4cda22d66d8c2491281a31f071bed0
2024-11-29 06:38:24
41
63
418cb6f8eb08f1917f392447a9653c63eab705d76a1aa2b7f7064e052dbae418
2024-11-29 06:36:55
39
63
576a115b0289ed7258bbf78c1daf77986ea2ab7ad059e9e13a354bf900f46a76
2024-11-29 06:36:28
40
62
61a5017f1fc06dc67112da92162209696b5ade0266a7ee05c1eee4e1002674ba
2024-11-29 06:34:06
39
62
c6a5ad4896e1c972535c6bba79613fa87b0aa194585a862e732061ec60eb206a
2024-11-29 06:31:09
40
62
ef9314b7fb21c20b55a903d6fe4720efd59c3e9e6e4a9c74dc3b07ac1461c852
2024-11-29 06:30:16
41
63
1215663076273f46a76450ed44bcb1ce754651dceb5aab6a57606c12ea8b39a6
2024-11-29 06:28:15
41
63
d51107a11e1d30b516a3dbe62cbdeccae3e2eb9bd0d9b39150949b543078e796
2024-11-29 06:22:30
41
63
eddf204fefb0682314d59e55a632d57171e956e42e54b42607df1a5ce5b29502
2024-11-29 06:19:35
39
63
1d8f510275b663ab36a1b06e60bc671aa881a077001939e91428976392b14022
2024-11-29 06:19:12
41
63
4831083c839ba7619f7d343ab6b2bc012eafb7876b02054dfeffb0fe98978489
2024-11-29 06:18:21
41
63
e2eda8c0c0b227ad98476a61324cb22fc2cda35b89d9c4e75592947ef3a93a34
2024-11-29 06:17:31
40
62
eee256706186044491e575f59945c033b85f714b67835c6851238a66e72633c6
2024-11-29 06:15:46
41
63
1249cf2417c365803023068cfa4e41516811e47408a4d5b29c4d169ca4d82d0f
2024-11-29 06:14:41
39
63
c4c251d980fc6d357e6bf3895c3bbfce1c51880b8c524f7219ed14662c892c17
2024-11-29 06:13:30
39
63
c471c093ab509344fdb16ce289c85ecbcddf8309aaa3285a554d8898f235364c
2024-11-29 06:10:06
40
61
3cadd9dab292e403237facda86de21d0a355aff8e1d1caa373748ee59503bb62
2024-11-29 06:07:02
41
63
6ed9adcaa998b7b6378dc230a61238725ec85dacc43eff2ee23691bc9be3826e
2024-11-28 09:10:45
41
62
34d7e69579385ab08335053cd6941ad91aa5d141bd29a4a876d50ad867e9feef
2024-11-21 04:46:18
41
63
5a24858cd0408905ca972d151023f27ee40c098d79ed74ae122c8854ae1c22eb
2024-11-20 13:19:52
42
64
bf34f5ab21c609fa10de871b7139a69cbcc9008c988c34f58aac412f3e64e367
2024-11-20 13:18:12
41
62
ea993af26fce52a26d39c3a3abb87aa21d9ae17d0a993c055d5c4f4701792bce
2024-11-20 13:17:30
42
64
eabb8247186ef8d0f5e38af9eba3923f6ca514dc443ab7f0951d52cdee574013
2024-11-20 13:17:30
42
64
ec86d8ec45e32a84818eb15c2883b65053f35628f87ba5877409d9e57e61c254
2024-11-20 13:17:23
42
64
f2814c90dc94cb860950678ce10573a2a778f2cdbbbabb13f5134606c7919a41
2024-11-20 13:17:07
42
64
dd38d45093b8ebd689bc38d42424688bad6e90c35e6f1dd693a97b964dfe7a11
2024-11-20 12:51:25
42
63
72666226bf9e69d3fc78554c457dacc4ae36650602d63676ea94f81e7e1760ec
2024-11-20 12:51:14
42
63
5ef411495f96ac7efdc946e5e3f6727dc381f3896d0cab367c63755a13d777ec
2024-11-19 18:10:08
41
63
f78ff06e7e581c0ba6722f39f7d63e7013246e5be9d174b6342e46fcbf371a4d
2024-11-19 11:36:03
41
62
89b94136e7fdef80f09b45570289196c211372609107884f63fbbda993a4b09e
2024-11-19 06:13:12
39
62
967695fdc052576afaf8190f1ce921912eca98c0f931208613763252f7aa05c1
2024-11-18 03:13:07
37
63
8b9581ad0f209b27733dee57b1d319e9f5d51ccf4505cc2fb4c3c068f0ed351b
2024-11-16 20:21:04
33
64
be065f3860a6e72700476ba644f755669aefd248cab9f18168240c58f4b7820b
2024-11-16 20:20:59
32
61
36191053dcfae646a93b672a1eb0c84739e226346cddb29a997521d35df61631
2024-11-16 20:20:59
33
63
460c20d5cf8c3a3403787419c75caf9ac13c393d2bd9e7a55bd2711ba54cc7cf
2024-11-16 20:17:50
32
61
c0153b11340a55e3b960ae86cbc56b1fa51c1762cec6b2cc4ebd02dcee7934c5
2024-11-16 20:17:42
21
50
627f8f4385e01beb41c3c230281e5763cc363b77b8759f03836203ec64a87e04
2024-11-16 20:17:41
33
64
44adbe258592af16913cb96165ba7580338c0bea3c580c34c568c51eba963a29
2024-11-16 20:17:35
33
64
a2e09bd65551060d899b91a43d6b5c0f00f75b54bd95d025542b3394477b7ffd
2024-11-16 20:17:30
34
64
6e869791338b1f66afff327aebafd34a46adc9822b58b8d489ab589a218f0e49
2024-11-16 20:17:29
32
63
745cc476b272e3d7ed6207f80710360e1ac9b8eb554b8d8a263b3dd978a64ec6
2024-11-16 20:17:02
33
64
145d2513679eb80816c395aa2acb11f07b86a215e03280881665b6bfb04982ec
2024-11-16 20:17:01
33
64
36119ec57f644b7552132df5541057d2cb091b2972ad4d71219614ff4fed9af5
2024-11-16 20:16:56
32
63
90d481742c2aa5bc65d9d92bde9197cc82cc714133cd170b388b13c2542ea399
2024-11-16 20:16:43
34
63
f22b600b71a9066940cd8bdf24f90eb92dc7560757cbc1b0e8c90afc288806ad
2024-11-16 20:16:43
33
64
ecb0d23aabb46c3319b0434b459c32de95048b7a62042a32cbfa83ce4f018e36
2024-11-16 20:16:38
33
64
c20ff7fc81dc78225a6d0b6eabafb2eed943cb895269a3bad69f564cf65b052c
2024-11-16 20:14:03
33
64
5cc6be9469c64a57b703933322e46249ab8dfc06dec4aa391bdfa66cdebe47c8
2024-11-16 20:14:03
33
64
d45bad3527156c01e6e0dc878af16d78b6fa5c195f8c56da57e53f99a533e754
2024-11-16 20:13:57
33
64
6a17796aee7b3ba06aca071388789978e082f941017159c8549846832d9a4dc1
2024-11-16 20:13:52
30
61
301763db04385e78dca1c5f2ffae42574dea2c1de7c7d979a8c0853a08466760
2024-11-16 20:13:51
32
61
cc625eb79fd1bd3cd9a0352cc0345d8b26b69d58a3728a17915f6c2324adb58c
2024-11-16 20:13:51
33
63
3c94d041912743f54ad99bd96af2d1163ce6c25bf9209bddf8c66595a27d056e
2024-11-16 20:13:51
33
64
ba07fd0e3d10ca95669d387011370838565fc45527b8e50beea853c3494e2abb
2024-11-16 20:13:45
32
64
e8785a9be97dd849c64e687f5eb7bf066eb987f506853f03ada329a5350cb0b7
2024-11-16 20:13:45
33
64
bc64839305fad86dc8cc227ffc46ea335f29159a7a2999f3553246d5e82311d4
2024-11-16 20:13:45
32
63
805fc9e8aa0bdb544fcc226e6afd13dcc7a21297a60790a2cf89e3a36e023b98
2024-11-16 20:12:34
32
62
146c09c6dcd9b5cc6022f0ade616e8c73285e9ff64d7fda333acabdbfb7e5207
2024-11-16 20:04:40
32
64
b219b7648372d8cfb49df5a6f7e370fed4f7b4cfff5305e580794d33350e62cd
2024-11-16 20:03:44
31
62
cc3e8096122ce6b743c1ff5c5d7f1e941b53f4f103668a496f2c04a7e74560e5
2024-11-16 20:03:34
33
63
86a728a10682b572369bf67387bbbd716df52ceba708976b977de04d6adbc529
2024-11-16 20:02:40
33
63
e8003131289718ec6b59bc83750254d40264ae490cd6b3dbff1ba630db8aa0dc
2024-11-16 20:02:14
33
64
1aab5fd01d03c7f0794cc02f27a3e90dc1e451f1a2c9ca7a20627c38f6d5aa98
2024-11-16 20:02:07
32
63
dc606d8f2f9c2d0deabe6632a139eee8c82299c5bacbd0469009bdd581ed72dc
2024-11-16 20:02:01
22
50
c289bd977685d1f33540890de56c7ee331ed15320e5979c80f987cf4309394bf
2024-11-16 20:02:00
33
64
92ef63ac1fc9f25127292530ed43729a182be7254b24e72afce08ebf76340daf
2024-11-16 20:01:27
22
50
1215b4381b088d4a00a3b5578d9837437497ae911f569e3e8d78fdb579633fd6
2024-11-16 20:01:19
33
63
3a4baa78963e5281e5ca5805f535ad221f218128c0bbb7ddff704af17c2a1eb6
2024-11-16 20:01:19
32
63
f6ae8ac609196d36e5b384c4293b653b4fdc4a00caaf915a6b95563cbd85aa00
2024-11-16 20:01:13
34
64
a67c0e8dd88bc6f63af2ac888fc30c910e3c5d05f4193fe3b4070cc36ae3d1ea
2024-11-16 20:00:52
33
63
00bf1f9726d38cc9587b229dab2972b672170132d0b2a31332ec099389dc41e0
2024-11-16 20:00:46
32
64
f84291221986395ed96dd745318e1551c3166903ebfad1992a30b136f8c23247
2024-11-16 20:00:29
33
64
a0c99797a5d4a9a505f378ed491be6ad3e3e712811b84b682d6c88c4a811e7af
2024-11-16 19:57:49
32
64
10a96dad5c9fc1d80d8aa0ba650697791c3e415fe5e3e41ab4c29764be8c5780
2024-11-16 19:57:48
33
63
be52c89e12417e05c890b0d797afa5c79ec7ab47b171cd14d054588a0fca99be
2024-11-16 19:57:48
33
64
3cb8e6f15207147a9e2d9f453b378e832044adf3a2c7475502af33516e8ba6d2
2024-11-16 19:57:48
33
64
e4f21405b882e8053bb3a53a2a271935050d8589d035a059b9adba5cc683481c
2024-11-16 19:57:42
33
64
4af63b534ee3524fc63b6ae04f72c7af60ba56a725edf570cbc977c8851702d7
2024-11-16 18:42:13
33
64
c8e37667d4aa041b3f5be36b978d4a1306711e8a364ae25dffa308be14db8011
2024-11-16 18:41:14
33
64
e26c1a6e3b43e61729447d0c039481a215e259b374447ad5618063ed8ac63f55
2024-11-16 18:35:14
32
62
585b49b945489c5f5b2c6c6a014e041e98d0fa3a22fa20bac1f7c8573ce3c3b9
2024-11-16 18:35:14
32
63
42e3ea061435310aef6b05a41970d7e9152a41d3de64145d34dda23850b501b3
2024-11-16 18:34:59
28
59
94f9fac944b1e8a019976621af379517f881522bcb67d66e20a2dfc870fe3f6e
2024-11-16 18:32:55
34
63
9cc47989e0168136281a6a21b66f0e5843fae849dad5addb0bf93ae4d8a5b1c7
2024-11-16 18:32:48
32
63
8aaa7c26b542937246567fb6c12039d4bffe00665dbab2c112a82f622a3004fc
2024-11-16 18:32:16
33
64
aa014f43ff86c1dc839418bfee4868df9ba21d816b029118dec8604b1ef5bc4e
2024-11-16 18:32:10
33
64
78ef3dc938965caa6e04aa1e265f7cd0988c799978db61e0a69cf2c582122434
2024-11-16 18:32:10
33
64
ca4ab461d1211112ec78d0d331adc960ed3167941ed30a60e4440c0b6d997935
2024-11-16 18:30:38
30
60
26bf06c531453abd1dd17d80fe75e31fc60db1ede355d3c86a723dc05a4c181e
2024-11-16 18:29:50
33
63
bcef64531b232392ff4edc4cd11c20bd7e8a173dc0d277a8e079a8e326799a57
2024-11-16 18:29:50
33
64
6c206fbe73d2872adae0f403039c3339f14c217664c56ab3e23a59a1f96c829f
2024-11-16 17:59:41
33
63
c67a5a8c7b8c98c51830f0f8cc8bc537021ac61914a6ef1c157708ea9ef18f83
2024-11-16 17:59:40
33
64
780a6c25fdb468a35f5480607c247b2f8b7c94a9c02c6532bdb554843d6f7f96
2024-11-16 17:59:36
33
64
ae9ee4676799d17a668989f9aa73cf9789e737639bfa70578018a5e18bda8811
2024-11-16 17:59:36
19
47
ca493a5d3afd31d2981c2e8847cb5c96e5472fce16c8e122977395e7bc696153
2024-11-16 17:59:30
33
63
5693237417a9f629b76c190485d77c5fa9a66899a1a4cb87d3d8484c1c3e97f6
2024-11-16 17:59:30
24
53
84fd2a972053807dfa945aa82aca7f428e643a2491c3cb4449fd46a55cf3e4ed
2024-11-16 17:59:29
32
63
2eb45027421cf98f605a1a869a5328436b2b73362b944beff04ab3daef45dc04
2024-11-16 17:57:52
33
64
4e7b872a2796546c7c2f46ebcb676f44505def55dd4a3448318f4a313afc6f99
2024-11-16 17:57:52
33
63
42b56ac4482dededf29cb8de128fb2408911a99e2a4d23fcce4b4c7fd9a8c9bc
2024-11-16 17:57:52
27
58
60d542db38c9728858d079d60267bf3dfe3521e770e1b2d4585ccda0d7ead253
2024-11-16 17:57:51
29
62
aaa9967449f6cdc34d45eafb40be5b4908a67a3fdb39a9a89232b26a541dfa36
2024-11-16 17:57:36
33
63
70e500fde1540085b0247f901b4a9ff9e6690a099d7dd0b7b2918eb53bda81f0
2024-11-16 17:57:36
32
64
2845927b2f96ece729a35b6007672f71577729143a3365dbdf8e242b973f4270
2024-11-16 17:57:25
33
63
1afa8ddea7619894ab3f54f8bc69153bac5438ebd769ee628885cae51ce7b071
2024-11-16 17:57:20
33
64
bab196b5327ddbe67aa54d5b9dee62c6ed6fd8991bf77d723dd9a064587b7d19
2024-11-16 17:55:19
33
64
0405a879ad0f1d0bc16e72d928efedfdeab85acbf17ce19d7440bd78ce1cdbbb
2024-11-16 17:55:19
33
64
88b4dbc24d3d71e21c789b980fc022ed2857e655cd01e037ec1345c07f8118d1
2024-11-16 17:55:18
30
62
2013868009da9855fd7e67d14c57ffe287bd39d801b697015f18de70d17aa14f
2024-11-16 17:55:13
33
64
e668399e5ee31edb31bef99c34c076799e2f393434c443484986d4fead646d2a
2024-11-16 17:39:58
32
63
60fbfea94f721cdf6ae7f90151e7febc467c8cde95081453f04343c89b138bc5
2024-11-16 17:39:57
33
64
ee91064fc46d069c7ca4d1cb90f6ba368715a405081f27de7cf593a18a3e10cd
2024-11-16 17:39:57
23
55
3478399149f89cde576a8f34747d34fb696f40744d96cb42ab4f6dd324f6ea19
2024-11-16 17:39:41
33
64
162f1c518a76824110b52b807a99d85aadc5428ab545c423315421a6341520c0
2024-11-16 17:39:41
33
63
d8d808663a9c224f8e717e62c9540526623fa9ac05af52870e14df93fb41aa5e
2024-11-16 17:39:35
26
56
143d29400eebb47087dd6f7cc488d2c32eaed471e1c6d69664db92c8b4525651
2024-11-16 17:39:23
33
63
e2436af0da51d9a043deea8eff2a9ba52a6859df1094048611e4c2ddaf7ce809
2024-11-16 17:39:22
33
63
e2a50d5d52e6a6712810255b05d07fef2be6ae3d50b630a7fbcc84d6e549e57c
2024-11-16 17:39:05
29
59
1a6caa775cae79f3b446902b7aa7859d640fdb06663d6ad75c17e4c663bd916d
2024-11-16 17:37:55
32
63
52296c9fceddbbc17d5cd187f438ac5e903dc14ef6cb63316a76d1177f2663d0
2024-11-16 17:37:55
33
63
4276f17538c1075005852543975c05f5e3d5888a329fd4fa966dff5fa66e5059
2024-11-16 17:37:49
33
64
3af1a97a1baba85859599ed7ecfa19adc330649f5cc82c978caf4a00c2643b94
2024-11-16 17:37:48
33
64
fe18ae1e2f3d2095e5be0550f4752f481e63c1d2df4ed0d8eb338b6428230525
2024-11-16 17:37:48
33
64
5ae280a158ba9beeec1eca4bf7a190642922f25668612863241e909a2111ad0f
2024-11-16 17:37:37
29
60
8094e4bc724778d6743ad643506377f9c6406738e4229cbf79a82d374d9f9b52
2024-11-16 17:37:25
33
63
8c7643c7cbd2163121f0232401c7c0458104d7efb82f2953cf821b6faf98ff0b
2024-11-16 17:36:23
31
63
d2374db77bac78a184c013d9cf16e0f5d9ffaf0edbb3683dd2b4d221795a5f2a
2024-11-16 17:36:22
30
61
64357420a0d14da22d8cd6549f50cc951498990a5fcc2e6145abe841132fe1ac
2024-11-16 17:21:51
33
64
00b4f3d571bea545035a0075f3612c724c1016aeab56334bcfee086fded11de6
2024-11-16 17:21:51
32
63
68ced2bf51bdf02f71f5091efc828f212edf6da22eb83cd58cca725409789ac7
2024-11-16 17:21:16
33
64
e6a2c8a4ba11801ca1852c2ad6dd787b5a79db419bc0e18ee2fe247b7bca2325
2024-11-16 17:21:10
33
63
3826a1c4ff0a8ae20fbf8480d73d490ef146c4aa1cb4af4c8c9460ec5697338a
2024-11-16 17:21:10
32
63
24b4c2f5d08616563b0efe69a3819e80252ba758da356e872b5f8abb6039dfd1
2024-11-16 17:20:59
34
63
ecbbab4552f29f8295ac85b20d9151c6c131867430cb646fcfcb4f5a2d1c4894
2024-11-16 17:20:59
33
64
5e424ee252df921c95b7cb027aac4d489559aa8d98e3a2b84acd3ab4f796dd52
2024-11-16 16:42:44
33
63
ee28890cec8063ce7c27388b4f7c2fc0bcdff178baa404f028f312d0933ff195
2024-11-16 16:42:44
32
61
5cb826b1d3834a1958c50ba50fca7fdce869f110235930f913bb700acbfd336a
2024-11-16 16:42:44
33
64
36ce09eca74ae4d9579b8a0c9775aea19af1043f18e6d05e746131cf3c6f768c
2024-11-16 16:42:38
33
64
441c3c6d3ff0b8533a0838b2fd4a1c94a983e916fe493d30fffca3e21bc43f20
2024-11-16 16:42:38
33
63
60bf4157c0734a2e91c721ca97283f5389fa83c23c2954b000180e76a741c48b
2024-11-16 16:42:38
33
63
eaaafaddd856a4a196064c5b2c20745c80a6605da6306990427986cac7352e91
2024-11-16 16:42:32
31
61
be6e104d26ba20422b3168b042375df5160823a146514d42df840eaeb359fa8d
2024-11-16 16:42:32
33
63
c2a43d8af14b72c7cc13ac4f188becb82640ce817985c6de7be226f4ba22b331
2024-11-16 16:42:32
33
63
ac153e83c1b08d9f9cb4410d7bf3b2c6ff0143ab937cf56e411748174b3cfa6d
2024-11-16 16:42:27
9
34
c24005189c466695f079238b020c3290e9e897275588181cfa23b40c93549b7b
2024-11-16 16:42:09
32
63
5433c90fc2cd17246490aa58161ac6a8cbb00069cfd43e9dd60e0ade96d2ed59
2024-11-16 16:42:09
33
63
0c683c3f3dee98891cc2a09671dc631d77b30648427db65f31a3cfd1bb834894
2024-11-16 16:39:19
31
63
74c59f25fb1e7f464295b41ab4f27af599d4a29427cab76bfb7163bbaa2c3012
2024-11-16 16:38:51
33
64
24b373b5c3c71391f28ceacfc3e771d382e1ebad0cd698e4b9bf9c4f98917fce
2024-11-16 16:38:40
33
64
e6835c0b1d505d6b5e327d93e92ff4f221be400d2c7d04d890777375571a43ab
2024-11-16 16:38:31
33
63
9cb912ca8c088e892c71157f106be25b6373f6369ac5fb4cad6f98e74d7690df
2024-11-16 16:38:30
33
63
64c7c45d63ff180cff67ba9f008833490fdbf85ee7ed70ee69a6f42c4e9b861a
2024-11-16 16:36:33
33
63
867107fa3508ca66374e01c747ea29ec207a5697b6bbc99ccdc881f62a3d078b
2024-11-16 16:36:32
33
63
027ed9167c32cb0ada80a7425ceb9873c709a3de46d9e466fc0abb0086e43ae6
2024-11-16 16:36:32
33
63
d2dac13bcc790f3eb78e57fd8dd5b4c01ed9b813cf54886e543b590da273c563
2024-11-16 16:36:26
33
63
7091cc1f821a9e449434d8afcefe46663d7eb00ae6adca3f5e9bc36f8ca5072a
2024-11-16 16:09:13
33
64
c08f37efbd2abf5ed4040dfc60ed14ec4406d84d2933b9923f2425d2d0b23f3b

Rule Matches per Month (last 24 months)

THOR Logo  Scan your endpoints, forensic images or collected files with our portable scanner THOR
  Warning: Access to VALHALLA is rate-limited - once you prove unworthy, access gets denied
  Nextron Systems 2022