SUSP_LSASS_Dumper_SilentProcessExit_Characteristics_Jun22_1

Rule Info

Name
SUSP_LSASS_Dumper_SilentProcessExit_Characteristics_Jun22_1
Author
Florian Roth
Description
Detects tool that dumps the LSASS process memory using WerFault
Score
75
Reference
https://github.com/deepinstinct/LsassSilentProcessExit
Date
2022-06-27
Modified
2023-12-08
Minimum Yara
1.7
Rule Hash
e9833f08ac3f9b1cb4497585aa8c0630
Tags
['T1546_012', 'T1003_001', 'SUSP']
Required Modules
[]
Virustotal Matches
https://www.virustotal.com/gui/search/susp_lsass_dumper_silentprocessexit_characteristics_jun22_1/comments

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
93
Suspicious (< 10 engines)
92
Clean (0 engines)
40

Rule Matches

Timestamp
Positives
Total
Hash
VT
2024-04-04 12:10:07
9
58
aeeb1b55008bd32510a074479aa09557ffa7f3725cd8e5520f275538c526257b
2024-04-04 07:20:05
16
72
de1c95d36148eb037e4eea5116173a16a6dd45a55583ee5bba86c8bd9b83d71b
2024-04-03 20:13:06
22
71
2dceb7a944050762e9d47a7a854d1b5320793aa0d289ad53aca3d2800ab81395
2024-03-22 04:02:00
12
71
0c86ee4de9b16dbdabf0482bdf1a03d873788c56d7e37ae22381ef22d8320c64
2024-03-21 07:08:59
39
72
126b7aaf6ce11be12d5d45d78b000a881c892a2a6e66f7ca074ad6c25b4d0b5b
2024-03-20 01:03:15
25
73
3ab262045c719c2952394fe1b955b62bbecdd112eea9e75ba8499e7a0e4d91ae
2024-01-25 04:21:25
45
71
d0b32f63c63ca102835d4c1325a7e82e850928d6ff14887f215f07246fc0a96a
2024-01-01 03:37:13
2
72
da806282c8372af4adf1d85619aa6d21724ddfbecae6026edc6a0915beeba0be
2023-12-08 23:49:03
17
72
d22f64b2f571a271d8908afc285248f18cfb8e9ef478c88706b0983460caa6c4
2023-12-08 10:07:05
12
60
de2dae5460373296f762e00f79b9830435882766ca8758c6dbe1211c3bd47e6b
2023-11-27 09:47:02
7
72
3b4f0ecd9073a7283377fe215d322db9b2914329c9a694e6b51f0748cb4c4f6e
2023-11-27 08:48:44
2
71
28580ffdeddb105e9421b7e7d0bb55eeb050cf8f94642f867e416bcc01d8eac8
2023-11-26 07:34:58
3
69
12694f4eccad247b65a6f869a006340e014b90087d23d18ab78ac1f438d9ebe1
2023-11-20 13:34:25
38
72
d854d2be5826183cb7c1317e3d920871fd467d5506b70e3c5147599ca2704ee6
2023-11-14 09:15:59
5
67
e869baa1bfb0ce25421051f73bdc49c7a78848b89edf5a1d7e9707622ec81985
2023-11-10 21:10:19
9
72
d5e6e6a22b281b05dcc0a293ad3e496b5cebcc1770977f56da74ed37cddf0372
2023-11-10 17:43:41
17
72
5107fcde7db96d1a76b2454abbe51cb7e4a5b554c9b92e3a8e60e958acb15775
2023-11-06 19:50:53
7
72
f25ceeff8d6949e8195a0812c87d2f5567804ddf3bffbd349a92c244819eb7a2
2023-11-05 20:09:38
8
59
69662b2ecaa9b71ed5d9dd165c512318a5a69fd8fc4067ea43477a9240a4e911
2023-11-05 20:08:03
10
60
976a89422763df01d26f973e249dd01ff39e4d473097dba801074415b7c6d038
2023-11-05 00:21:41
0
71
7ebefe8142369fbeb4cb306f0b532d68f43ebb225f1f241b8657a5d6181f6b55
2023-10-21 07:04:07
44
72
7d666dcb7be5a72c3db8adc814a92718eb7954902d67106802d69170e65e6903
2023-10-17 17:04:51
0
71
272c8ff330a2f10306d9a539180ee1db3463c4ad1102f07053de12937680bf11
2023-10-11 10:44:25
5
72
d48415b00809dd2d84281bec6d5f73c95bc0d0ddbc4972d7b9e811f3825d95bc
2023-10-08 18:14:34
40
72
cfc44e90f5b72eb0af70761875d09b015e32379d252343ac29e31f281609e7b0
2023-10-06 01:56:37
1
71
9f8d95d3cefcabce0f4726a3fcbfbd2acfdad21f73392499deadce899126927a
2023-10-05 13:53:42
3
72
ac18308787dfb9a1d1b86e93aef4fb68b1b1bf38195be8e37901c934e6783343
2023-10-05 13:40:46
12
72
80fa7d8614ff0e9abb35012d4409a09bf0792be40822f514b3d57298c76c07b8
2023-10-05 13:31:11
12
72
cc11e0641619b3f0d70784ec5750430e9a911b3127deba137e2969eb4771f0b5
2023-09-19 12:14:02
35
70
97699449246070bc8195e1cf1f14b94dc2ee429cb03128bb7e7e254981eb71a0
2023-09-06 23:30:44
18
71
6af80bc73d8765302cb29343f4e9be2df76c70d78a9185b07a1c21d92de8dd26
2023-09-01 21:18:38
2
69
8d1e449b94f59c0fb63d322b8b0c02fe742c16d37690a2bac65ac0fec0927b0f
2023-08-28 01:33:08
3
67
4728fab3546ca080313c5ed34acfd05f052a923eb96321328b2dc6eff4721843
2023-08-18 18:07:41
34
71
828de3d39040ece4e1b556605d483bfedfa7350b15be93016d0890cdcf68dafb
2023-07-23 00:32:05
7
70
7958b79c5bc6cfbbc8ed425d85abf66b133518cc2fe240f8f8021f5404fe9b1a
2023-07-20 12:11:54
7
70
a4f906c910f3363904be0813cab4b7e47a292d318a36a5bd35497ca0a27d97a0
2023-07-20 12:11:38
6
71
868977f4f6da2b3d2a6ecbc687b133d34356b2d5323b355d3623a784320825d0
2023-07-13 03:01:11
3
67
af09021b344e693eabec1aaf13d4182f2cda0ad6053e4374df9ec15e83d66fec
2023-07-12 13:03:04
20
70
0051f76d630d5e394a76afa0b864c919a70ca4725b20a2afb90e8ccdc3ebc29f
2023-06-21 02:04:26
6
71
a659dc3cc43da944e0616f9b94d575732ddab160f577ec6be61c5169cb4f822b
2023-06-15 13:00:16
1
71
032abb341e940482204ced0b11148a30bcf8f7de16105190726d2b6171197175
2023-06-04 21:10:34
0
65
f57a072773237ef446c0fff67798ce3d243d07213c09564553e237ac185d2881
2023-05-21 15:11:08
39
71
92cf501e3a8eb18ab18b7b5fb129484b49de0e83ee78520f134fbd0b446c85b1
2023-05-21 15:10:58
39
70
444b40e7ecabd0c20f57cd1c06b0b5c0064b7cbb106e5764cbf8bcfe10494e95
2023-05-18 06:12:01
5
65
279957d841f6c8c6f130bcb1c0cc3e5f992a36dc56f90b7c11a136d798f79144
2023-05-17 10:15:01
14
69
662f18a9f53f04931147f188ee98401d14086dcde0679266f7c32f5e66ae7e6a
2023-05-13 17:08:16
14
70
4574ef40c88b75cc22c8256333892de9b7a544aad5f6355f92fd936068f3912f
2023-05-13 17:06:15
4
70
7cf5bd8ea277609531e95519997cbf69023c4f8052988f769a1c6119ecb8f9d7
2023-05-10 13:06:25
26
70
763a6e232d948ed71bfcc83ad4e63d159eb88800f74028ec5ea0d71d34595a96
2023-05-10 11:18:06
2
67
bac87c2d71046c70fff71196461ddbfdb990527b0ed117f60cd1c460134baa50
2023-05-08 11:17:51
35
70
317aac415f54f4843a6404b7947d7181999af909b003ed4454905f2c81ef5598
2023-05-07 17:13:18
20
70
021623063ea27b5434ed66be31089e2ecf364451b936a84cc30c564673d370d0
2023-04-27 07:12:03
17
70
6e6b4e488a20ff9efd9ef72ffc0692d7842b7bf97e42996ed2e976c8a19f38ce
2023-04-26 12:19:00
3
70
12588878f01c0f3439d289405f8fef9664e4d9b5c9136ec5a3f80c1517180d86
2023-04-26 12:18:15
3
70
9c27096c525922983a12971146203471d124e16b8686493c4732524e8f0f45da
2023-04-26 12:18:09
4
70
6088c49668ab190eaacaf32bea675211e04f95a071a821414693352880bb1082
2023-04-26 12:18:05
5
70
58c1861d2425445bd389494c5159aa1263bc783d17bcb41af9f3cf3ebdf066cb
2023-04-26 12:17:46
8
70
1bbd22a42fde50a8cec0cdfbd0a8643d4827742b1974a57c807ce71e93607e69
2023-04-24 12:15:41
0
70
ead5982d0812041b7b05a0ed6ec31f653f8b9ae6b23422eb585a9dd4ab6771ee
2023-04-17 23:07:53
54
70
17556b43ba6a14a4da78d2034f339abfb35ccac799611337ec1272fae2b01a3b
2023-04-09 20:13:22
26
65
ee8d1d0245b8f26246280e7da2d9c5b48c05ade66b7907fb32f5d2467f526ce7
2023-04-09 19:32:15
30
70
b5c6cbc131760ef1cca00e59692e6d8a7f99faefd5ded3052558b2dc7053c0b5
2023-04-09 19:30:56
30
70
d17ea8483e2fcfff625007de7f67a1332365d392f28efa510943b3d06de40f79
2023-04-09 17:17:11
35
70
9e1631ed4e60a46b15a500b3c0fde1007de8c7d1ba91224db340ecd0916f4641
2023-04-09 14:14:50
29
68
5fe7ceffa0e4c9f693ecf3ff6f4dc63bfdf10053fc19bdadc53207dfabd7de21
2023-03-31 12:13:44
17
68
72896e481674088e4ceb4e8e92840d0811ca265493ed488a09346f7cc1a1a911
2023-03-31 11:14:58
18
69
b9a15682eb276f50978567e03146dfc3f3fc590b437053aca319d0020fc4ae52
2023-03-27 06:03:24
14
69
649cb43c86346429a7b00de460cc1377bf448aa8c8eae18baab40aa56c00abd2
2023-03-26 03:06:23
0
57
a584f04662008e382affa0ac94b2532adc6e9ca607782cf18fd206925e65f59d
2023-03-21 14:24:56
19
68
aa56cb2301cae8791041ffd8e9148e75480f33474f2d6a1cb9639ee1fd43afa8
2023-03-16 20:45:00
8
59
7d0e3f0677650cd5d453c2ef0980edea0269e5be530f0c50cc82ede5cd573344
2023-03-16 20:45:00
0
59
2edb6b6bc5b6cabf015787d43ea55fe3b5cf042c05e41365ef012f8fa07d60fe
2023-03-07 02:23:55
0
65
50f979f4abf0a7e230b163f883991942b1998fc4c1483bc0a6d9c1e0f16d182e
2023-02-23 09:19:21
6
69
1e4061e1dbcbc5f7344a20ade9b0563a570e856c531658e3dc74ca1c5036018f
2023-02-23 09:16:55
4
70
06ca8a56ec2b3bf6c682c6d427d30bcdce5ec563c7efd64018b4e7b2882ddcf4
2023-02-22 11:25:00
18
70
1ebea125fe83bd83228468ee22eaf11e04d3e443d23afd16a39f6185ccb82df4
2023-02-21 22:55:08
52
70
fc233333bc11aa41856d0149d642927f4ab10c9e55e36fb6bbd4f4082176f65e
2023-02-11 00:57:27
0
70
71d7db4668f79fc57f6867b027fbb651d7bb0d606a23576aebd157b2dd0bf33b
2023-01-30 21:40:34
0
68
99289862181ced36c872dc07226ccf786f38be7d363d08d6c404df9ce1724cf0
2023-01-25 18:08:42
5
68
1f4c629469cb5ccd5e5a6c457eb187acc7daa2023298e3ea8187ce0d52224f68
2023-01-17 20:25:08
10
71
1c92484bddbf436fde4e4ed7186833f1f88abfadbb47607b90e14b6bc7b71bb4
2023-01-17 04:56:52
5
68
6142a8dd87465aa9005cbd7fecb037fcfc084668657a23205875dcbea8090eef
2023-01-16 19:03:04
0
69
c139dc0aba5005dfa25d1e0086da52d151fd63c2bcc79f244c292e81909c4252
2022-12-27 19:22:32
0
69
b22cbccda1c6c0d3202aacf8e77227126e028eeb828711ed9100a4265e902630
2022-12-26 20:17:47
0
70
d9a5d14ee6a0947bc36fd9071e381750083d341836b1cc66850298825de8b8b0
2022-12-26 03:00:44
0
71
d118e23b044220980bd0f88b3821d07276c806b1184a32a7eb5a472d8e022bdb
2022-12-24 00:32:15
21
72
2c5d5feb3ab262852212812eaba4e8b605d16df866d3ecc9bafb5d8985c310b4
2022-12-20 21:13:16
0
71
3877f0801dfaca85307a52ca77232c95caab4acaea8d4e6dd63b78bca589b889
2022-12-20 21:13:16
0
71
96dd3635210d909d494b480dbe7b2da950402c848380e11ac4564194987d4fa2
2022-12-20 21:13:00
0
71
fb0cfe1f5bbe794dd03433a16c63125c5387286536183c328eca3fd117172d15
2022-12-20 21:12:54
0
71
d9c14839f2b274598fdaf6f5fbdc435d00913c143a39c17a78bfd4d17e392762
2022-12-20 21:12:45
0
69
de6bfb08867050d35ce6ccc6bf80ce06232c6b0f3d31ab56082cd1c7b3f255f5
2022-12-20 20:08:45
0
71
12a496e409b289f3b2d90d2ab4624ebfa25c5ad23523b0227b0f8f05371c9ec6
2022-12-20 20:08:45
0
71
25ea2661183368a810bf954a76dcf8abdbd93797f9eda2c1f443e15c330457e7
2022-12-20 20:07:29
0
70
9b16756514e52b320c3de976eb75f94fac5e561874caf47319a4a54a56a4fcde
2022-12-18 18:21:35
0
65
5b23b4d7d988ed303c608942c1fd04f80d5d93f39acc9fa1ea807bfbaf89cbe3
2022-12-18 17:54:05
0
68
555f55cfe682ea837ebfdc305d60743fe4e73652b703fb75242f98365e1a6b3a
2022-12-13 13:46:33
9
70
d10dfe1e6e15dd11a62568f7e3bec3893d827b69de70c24a76f04e5714cffb89
2022-12-13 13:46:32
23
71
20f6f4d8e9c6546c9d499e358542716fea469dc96d079c8c8e24faecadf78cc9
2022-12-13 13:46:32
23
70
e4dae991e731be6dc973faafda22d81e0d2b0973b4c9fb129f71ba4fae9ff422
2022-12-12 04:19:46
28
70
1b7d73caf1d02398ce3f285493445de2033f232e6f8e005f2b080ca102d885cf
2022-12-06 16:09:24
2
71
5c907c4b9dab88c483ec063b2501c68f5b8d876ec4e9acc717fc8a905a79487c
2022-11-24 16:22:22
25
72
7e2263a270a0d3463ee3e7a250d46e693976fb7aa02e2e0741be4ef050438177
2022-11-24 13:05:35
21
71
f28ba265efb95d2d9e6e9be2198cbad2244a67dbeb2fb403e9f29e645cb9617f
2022-11-24 13:03:08
8
72
c68f90f6a507d8ccbf4fb1ed6c215fefa4fcbaebfbbf74040bb179c5e2adbb7b
2022-11-24 12:37:12
10
72
bf663f26d98fa7c524b225d47d78d14e90dfd7c1c2185be283eff1ecd38058e0
2022-11-24 12:16:09
10
71
9d4441581b5b2938af8ea96159333ce1231dece7990d262e0a5ef6b76ee0bd90
2022-11-24 11:59:14
8
72
fc740a1e54a152ca5172e7f08831260ceb6d0e377b3ae7696874c084d90b3adc
2022-11-24 11:48:29
8
71
f481827597c4c5e98a7fae002d8c34b46d1dd48e7cd96cf2729fd898b185af29
2022-11-24 11:37:26
25
71
5d00a9f19a9c73c8ecba0183d695be57d3e6ad0a921037b8980c559bc9b486e8
2022-11-24 11:33:44
8
72
c0dc41c312c07b81822a98caa40c132566fd3e6860d89ea3273d3932b14f5b86
2022-11-23 03:09:48
0
71
5796461d0020630d679059c7dc399621d3755d61955ff20a025ddfa57ecb8fd9
2022-11-23 01:03:01
3
72
194f399eabef620f0f88d85d283156766b3963b7ce6e1b0464f2959091784c38
2022-11-22 20:11:21
24
68
c8556ea9f8b231921217040dae8d9e738037b0ac6040e78c3d548001ad4affeb
2022-11-21 15:35:32
15
71
03e6303dd3495be4851544e304eca12ef3e3d6c3b487d6d075e8f0fe6e47f747
2022-11-20 19:38:38
14
67
fd52b2d6af86062dd6d3ba6ad8edbee8374e5831a81d0df96adc000b82c98aab
2022-11-18 01:07:55
3
72
38f24e2238526c138a5a5f3613f8b726bf405dd78edf87fcd989dae0ee3199b8
2022-11-17 23:16:23
54
72
99e243af23d7f55a8d8b5e6bf1710228671d6dbda0ebb3da4e76da87b9ac29d3
2022-11-17 16:26:37
0
61
d2cd66f019ee994d0ca8b2c5d919ebf4c73a7988fcbb09071fa7b993ae1262a0
2022-11-17 15:37:46
0
61
502ea50b706716930685cc952c8c4b76b1a3bc56fcebe80a693dc592b1bfcb83
2022-11-17 11:26:57
0
70
a3202d1e8a724f43e51694ea01db846695d2875673c159682661c7b4ea453049
2022-11-17 10:08:32
3
70
3ffd6ed7c49730168cb3c23fb5bdfa5efab8d3e27418daaa14a990ffc8b0a94d
2022-11-17 10:06:49
3
72
42fff4c21e9b9c989bfd77a2fc0eec73e88001df5e8db4c76028603230b6e878
2022-11-17 05:24:34
17
71
c448186224997f1d7c170e12f6003243c76983d6368bc0a03c200df44a37dacf
2022-11-16 01:10:55
2
63
49341e7719e7f5f852206a28ebfb4f209c5dacec67d26c8905dec77e425772f6
2022-11-16 00:52:05
4
71
47a6e1408b27952fc7f50694e37755c0f5220eeae1f6a83eecff10aab709fe99
2022-11-13 04:15:01
27
72
c15bb2824f7564b890f7508dd719737962ad45625bcc476666b78fd65fc62e61
2022-11-08 09:10:28
4
71
8c6284a22d553d8c7194797b100456c36baa9fde0f06ad9068f02137cea558fb
2022-11-03 17:54:06
11
70
8bb031185c8d4e8dd84b6f1a21e0f450a1c384f51a1a7e5085fb4fe8d1af8c79
2022-11-03 17:54:06
23
67
af177d4aa3e6d0d0b6a23ca6e51b60dcd7cdd676b91bed87919c71758f98e03b
2022-11-03 17:54:06
9
71
cf652bed3c31659800eea15be3565985bcb913e62e19db0421fa83e72efe51eb
2022-11-02 13:08:27
11
72
762170569c940143cd42684783a6739da67070f9b83256e9d3e9c629df5d3127
2022-11-02 00:31:16
5
71
baf63eba0fbffa4aab5ab5f6b535c470b9f08f2ec85720267614231b87409b84
2022-11-01 01:12:14
6
71
cae99c94aed5ffc0b286aca25ab3622004a59dd351b1f53d58bcfe63b6301b58
2022-10-31 15:42:50
18
72
e83481debf5251d2bfef95f2add66797918bb393758d1d2263caf32085fbe4ec
2022-10-31 15:41:43
19
72
2c2e86d8c1bc4f7ad7cecb793eeb9295aa3ea46a2e1906ee1e20f8a2cc9cdde1
2022-10-31 15:19:16
6
72
030f396a6d852566edf79be21bf969b055686c98b2f4c421ce771b839b7b741a
2022-10-31 12:58:42
26
67
289000a26882d46dfb896d311e50277696c29a2558962eb2108b6ca69e097fb0
2022-10-31 05:20:42
2
71
de466a292a16c9b09c85ced37dd29095a000ba506d587329f33b6eae7fc48ca8
2022-10-29 00:17:08
13
72
bc261f6ad0402f9644aa05971b3be8615fb5f78bc0c74a58a0750623163fb26d
2022-10-29 00:10:13
10
72
bab051f0908383ed1b16f87864e0d773589dbd0ffd1192ee1b51f77898372707
2022-10-27 18:17:00
16
72
8e6e1d5236b964170e420411842e8d18b7b956bb69e133b7ba695b6831743cfd
2022-10-24 11:51:35
10
72
f8b0172906fc0c6b0be9b70004a91f5ff3e1bcbe8bd7d3be032eb6df86e16819
2022-10-23 03:37:09
25
72
e9ba757b336f9044c19040989731dd4a9ceae2306b3569cf26fc699cb91425b2
2022-10-19 07:46:22
0
62
941e505be7efb52bd292d90baec831d60db01bda3a18c32c36647acc132a1c64
2022-10-10 16:42:39
0
70
0b6f7766aa0095427366027d1fa4916e4b5bd2e2e2c01520d2ae9ed33edb96df
2022-09-28 17:35:59
3
71
e60b946f4e7914466637f315a659a7e586a2f6228f0de9e9d966e47bc90bcf6d
2022-09-27 08:59:08
2
60
20d8c7bd7e34d152c3b9da8fe74bffc9fe4152ac3d53d07e6e559d56034574c7
2022-09-22 23:40:17
17
71
0908cea6319a6fe5690b5a43dde086cdd3747c836637ea7420f3605fc2ec8b40
2022-09-22 23:36:47
10
71
4c28d8e8b28441eb29e9779fca16e65e487fa420209138179c2c627fc278756c
2022-09-22 23:30:21
7
72
c0372402023bbcebc5eb9c258c87adfafa3a1f41c2a4151da02868e7d3464628
2022-09-22 13:02:01
1
70
bf809991db961e9a6f47e75a4b994ee21989e6ac940eaf482a3cf5c0165132b4
2022-09-21 23:12:52
30
71
be622fa57ad77310cb4c9ed8fa8a2a9f0db06f3f07e02e6b95e83af7b4b05a40
2022-09-21 09:07:30
0
69
6d5299786e286f835724fb19ca7aa91d1231047a9ea0d6b91b393a845c492503
2022-09-20 11:56:27
1
69
b7bcb3ea282dfabe79629d591174b871c50e467dee189fa66ffed3f11004740e
2022-09-20 05:08:31
0
69
7c3e49e9a551f33ae11b446a9994db5d63cb9dccbb30e427da91d439f25a0486
2022-09-19 17:13:13
6
70
1b0d1fd6876a0e0bb95299f7e781d80f35ab2caf0097b6816a7c169b53cb0192
2022-09-14 05:07:25
22
71
b9f6519d2add618b62befda29a15b5c2c73a785838b937c7cce9698488020723
2022-09-13 01:38:49
47
71
ec9fbc7d00ce385098d6f23026ae64c25ddb63a3c14980b428a818d6fb477c6d
2022-09-12 15:00:42
23
71
b77399f19e33191bfcb3f3ed63122b730dbc7eb73eecc8fafc8f2023fde0742f
2022-09-12 14:55:19
22
71
96890f2b48ed2b79b57c0955033440fd21f0e3eb15fd245da8c7d08f091af090
2022-09-11 16:10:10
31
71
5aaff354c73e03f770f47642d405fb45380c59bd46030313ac03cbf2a706d5e5
2022-09-07 21:38:21
51
71
0bb0388d81111aff26bc79a952abf0435d0c909dad4a8f62136fed3b5c8d7098
2022-09-01 14:12:41
18
70
abd7624fad15be9fec1e194b611630bc7763c0560a74b5be7004aa9fc4491c1e
2022-08-31 11:06:59
0
58
3bc48434ab9b4a4ecb908bf4e03f77b6c3b6a8731fc040685bd2b5f236c23c49
2022-08-26 13:47:45
3
70
dabeab5243d6d8f0dcc1ccf2ace33d7c6c3a1cb681bebbca53c8611cc0b83ad1
2022-08-25 14:36:34
22
70
8fff06805609947dd608c8e11a2a9349024a1d0c834799e4d18206a548b7d468
2022-08-21 04:15:31
0
69
90aa0ccbea1e193423945498388f1653a53c88c5160ef64e9559a172b9a76382
2022-08-19 23:53:46
8
71
0c31114b80ddddac6e1d067c73dd8d8c46ded313eb329279c751d09ddaa6614e
2022-08-19 23:47:14
6
70
7ab722bcacba3d3e45beb740b3753b335bdae8b1e73091564bd0cc9cd8cae1c6
2022-08-19 23:40:24
6
68
ecfe713e1af9d4c4f0a8ba9edf8d7d885d92566002e5a17d2b10df487c8933a6
2022-08-19 21:24:48
5
69
454c069e914303de3fe9c07847e0f9775f1f0d1724e75b0f92709a41d750268f
2022-08-19 21:11:54
3
70
cd8afbf3fcd90314894f7414edd30bc6e0a71fee1c4c4aa7cf8443b1b4272315
2022-08-19 21:10:14
5
70
433cef7c84f11f155362dca45991ef80ad23fe0f5ee16cd1b9db90bf386f7c6e
2022-08-19 20:35:11
5
70
0924a95e3925aa0bd5d33dfd0890f4d4ba0b9b765fa98cbbe9992f2f2c5aece5
2022-08-19 20:27:40
5
70
23988ccb37fd54e11406741bb8f93bfc8074ae3205311b05da8c7e60093b24ec
2022-08-19 20:17:51
5
70
c4937653573c96de90a146b89a2c97f3a22f5ecdffdbdcff6c6f9fbcfd774b2e
2022-08-19 19:47:09
4
69
8869a6863b95140839027927fb474425a7fdd29e4357b1d2ef301ec139f1390d
2022-08-19 19:38:15
4
70
01dacf922c7510b81ab2670da0e5d7d83952fbb55ae2fcc2c4c6937fa882ba49
2022-08-19 19:23:31
5
70
ddb30e65ce19d5bce5938f637de76b01262472a542bf71b2873bbb01cc660d5c
2022-08-19 12:49:52
4
70
532d4a63d87d30eea3a44f83b6ebf60fc3f193d849f8a543103b4faea2a16e79
2022-08-19 12:39:41
4
70
6456f89211ffaf9d65b87a6534b220ed95e5346d95dce55e9c078d1ef5158a00
2022-08-19 12:21:44
5
70
ad0ab1b2e4e6786a657f514d765862209150758c5c306f959f5d22a9944c1ee0
2022-08-19 12:06:48
4
70
b5be790f03cd2a8d3fcb08ba61805cb0221873be890901df0af6fbd7bf67a236
2022-08-19 12:03:35
6
70
6f21d47289962e6f2c8be40f7b86d4c4313b43fc2472a9eb4b35f45e52099151
2022-08-18 18:03:47
6
70
db09fcded6d85f0e8503ca0016ba1f9e47e332c366f03377c77bbd5a0e2ecd11
2022-08-18 17:40:14
4
70
0b53516192625b96ff6f550d409da1adb77342c3a75fb437bada72b708f62f97
2022-08-18 17:05:35
4
70
337de0c7df6b105b44609932130633692b9b1b29c1d1e6e3352952f54dd0b90b
2022-08-18 16:51:52
5
70
331076558ffde8d1200f58495c35e9d8a70ce372a5fa700125d80b96abf56553
2022-08-18 13:21:12
5
70
6c900162f0a2b44388d3ca49cbe0542c6acc56c0a27d05e2b25a2a05f6a6a70d
2022-08-17 20:16:17
0
69
c6273525fe7a3a791463859dff25a5fa27c3b8cdd16ca68cfb6f8abb4b8930f8
2022-08-15 15:22:13
1
70
0723a1bea20ae0b94292989fa62f15acb9fedf5297375ef87ede0fd3acb0ade4
2022-08-14 03:00:35
18
71
863e6bc947bb73fba146862d5aa53fc3199a4dd318a1e681ad697ed6d98bd203
2022-08-14 03:00:35
3
70
37b7a2f77c0da070102f8ef1c9d908b9d8f01f56048f181f86fd0ae4d1175552
2022-08-10 01:24:52
50
71
20b650bd00cae666a85d07ae38502a7545b6ba913183362cf3f8b810da22ff3c
2022-08-08 20:40:38
6
70
897f4fd8dd12083e4cc121b435ec74b129cd36a309fba22ad148e98752ba013e
2022-08-03 23:29:24
41
71
2d3427d91da0275904aa0c9fe55fda831f7963a94020e243a72c46116729e7ec
2022-07-31 19:19:05
45
71
740dffff27e54095e7bac7c25910e110f2fbe15db17455e6454f48f9476ea8e2
2022-07-31 02:58:17
3
70
40a8c76e7498f1e2296b9ed77c519a8fe93d8f891f4f33b25d3a720548f1428c
2022-07-29 16:38:26
11
71
e4a2ab49ce4925caec4447221bc7352a05fce1098522b60b87c728b72eac12d2
2022-07-29 02:09:39
25
68
bd88de1dea6fbc166d62841338e6d59ab08facfbea1219616888f16b01cc163c
2022-07-28 08:43:25
5
69
0210a6fddad8dab42f62302e4b136c7beb9f97eeffe186d1eb20aa2648c9b33f
2022-07-27 22:32:52
16
69
6b835ebcb6730c66cf50d1634f59c0f4cf7a62ca991d48e7bddfb724efb3587a
2022-07-23 08:41:33
9
70
f04270ab2b7da01b1d5067a170b20f81edf010c91ad6959e4767adfb35e8dccc
2022-07-23 08:07:18
0
69
b57affb6c68b43b8dc3015c06d066ae61957cecd324ecece8c4c332b82492724
2022-07-22 08:58:32
0
68
df69c78f5115df22654fd3bc655a13c32c262d15e6e5e41e17c8d1b363de3a58
2022-07-19 15:27:06
24
70
a459566b347cde6a8b646f2047d89eb313372ab95f456faae181e1919cc0cfde
2022-07-18 18:02:35
0
58
b20561616dd8530dea43495b60fa9ba000a45832eb4b24289c7aa45bf2e6cd00
2022-07-14 21:20:20
3
57
51135b0a96327b1c85358926e34f0abf65111eee24fca15fd46e80a76c8c4d3a
2022-07-13 05:36:14
3
69
a31e664e79a6252591d6c3edf9aa68bf11bf9efe7b6c5875846727f6165b4b6b
2022-07-12 08:44:00
42
64
1a1cee5613c5126cfc0af51e72559b7f77560c7d7664936753622a0d9b836192
2022-07-12 08:07:28
0
68
abeb0074e77dfe91b5b9ef243eb5ddc17aba729ba6038e64b0cf4b45f8729c4e
2022-07-11 18:26:07
15
67
551ce2655fa716da75a98eaa75a7fd8f460aa944578775f91498de3ecb32e740
2022-07-11 18:26:06
13
68
740af3b237707b338f6a209ac86f5fafec55ea5aa61b8447741f3dfadcf1302b
2022-07-10 18:11:51
2
68
6c3d3296b13b971729a6ae9296f5657e05d229748374a29ca2e38e1d3d1570b3
2022-07-10 17:36:54
14
68
23bfd2022e16feab0df970005a72357a232f7e878db834ca820fc8726e23fcc5
2022-07-10 07:59:00
45
69
b9ab3277ab6be3ba6da764e7ee6916e274d635ff875b9f0b795807ca575f7f58
2022-07-10 05:27:36
0
67
3b1a3398ac7a100ecfbfaa473046c6b7f5522537d536bf945fa795c357921e6e
2022-07-05 20:00:08
0
66
35f0398dd6d5e5d4156e82893a2d17076d91e2a1087114ade20f79b8ce34037f
2022-07-05 11:54:16
1
62
910f848d7dce3eb2ee2316bc1c2234956d661efdd80df93d117680644c1eefc6
2022-07-05 11:54:16
12
66
c29f1b08a0d18c0dc86ec86cc12d737a8d96a205c4a5ba33ef48ff77548c888e
2022-07-05 11:40:50
4
67
87998b8b30ee073b12f439408a5c79650869677d45b9e5bae11fed754668e1c9
2022-07-04 16:12:01
35
69
f1c9a8ebd23f23ad291978f20b729973f9f86e65d9e9d5c73913b4a64518ec13
2022-07-04 08:02:32
7
67
faf93b856f6128730a84855688f0842cfaf6ea82ebf8da1335ac36113e4a097b
2022-07-02 08:10:51
22
69
88559ac8dc69440d73f380f555ec9cb6210aa1e21dd8f1ae95bb675ab289e0bb

Rule Matches per Month (last 24 months)

THOR Logo  Scan your endpoints, forensic images or collected files with our portable scanner THOR
  Warning: Access to VALHALLA is rate-limited - once you prove unworthy, access gets denied
  Nextron Systems 2022