SUSP_PS1_Msdt_Execution_May22

Rule Info

Name
SUSP_PS1_Msdt_Execution_May22
Author
Nasreddine Bencherchali, Christian Burkard
Description
Detects suspicious calls of msdt.exe as seen in CVE-2022-30190 / Follina exploitation
Score
75
Reference
https://doublepulsar.com/follina-a-microsoft-office-code-execution-vulnerability-1a47fce5629e
Date
2022-05-31
Modified
2022-07-08
Minimum Yara
1.7
Rule Hash
f84f0ef804f4a0ebec2cfd27351f7006
Tags
['CVE_2022_30190', 'SUSP', 'SCRIPT', 'T1059_001', 'DEMO']
Required Modules
[]
Virustotal Matches
https://www.virustotal.com/gui/search/susp_ps1_msdt_execution_may22/comments
Community Rule
https://github.com/Neo23x0/signature-base/search?q=SUSP_PS1_Msdt_Execution_May22

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
282
Suspicious (< 10 engines)
111
Clean (0 engines)
87

Rule Matches

Timestamp
Positives
Total
Hash
VT
2024-04-21 00:02:24
31
59
5687444bbc090502e9f2cc47c141978990f35cca996886d8576d5ac0ef073e89
2024-04-20 07:10:12
25
55
6aa25b1232d73dc8819cbe3dc802cc07d927080a412ab26fffc9ab7257ceb819
2024-04-07 07:09:23
62
72
1da865bdfa67f76630ad6b5a98b8f4bae4dab8f718f064325ebdacb0d5a6c6a7
2024-04-03 02:11:19
0
71
be8218882c2538282fbec0b0f6f0c4fdea99d8824f9ecf31b1934bf980ddd02c
2024-03-27 10:05:42
0
59
b2c5520739635c6b4ce8ca2390504b545cb785af510dc473387eebbfbcbc97d2
2024-03-24 18:53:17
30
60
2bed529c243e4c5a2f2349aec5fbd8fcf085743ca8fa89c99fa5af4bde6130dd
2024-03-11 14:07:23
29
60
ffb2831618068bd2b18f97cb3689561efe78f8b70168914a3150443dffb80db4
2024-03-10 18:03:39
34
60
71f3888d74e370a70fbec515140e153dbfd96c6af64765f09b372997e8d1f6e4
2024-03-10 14:08:12
33
59
765ba2fbddfbb58c07cf49455f75e7f7ac0e93b1a3219026a851e0d9d7f0d97d
2024-03-09 09:07:41
32
60
cc8838cf119bfdc413fc0f466e9d2d18c35eeafaf0f23b70280651d51ce44d54
2024-03-07 13:21:05
1
59
0e5dcf8cdfe302f513e3fe57d01be9ee2f897d34d7cf003524377c879e162322
2024-03-04 19:07:26
2
60
13cc040dbcfd6f17b6279c23ac44e0042723dfd2d28bef9753da16e6ff748cce
2024-03-02 23:02:58
9
60
e6915c68b17f7c320d23faa098218c745dfb6b6ab554863e815cccf9477c01e0
2024-02-23 07:10:33
2
60
74c936f88b58100dda8c1c460e3c8d9430a1d7eaad2912d53f3ec8c191f82bf3
2024-02-19 08:10:15
61
71
b5b637a570e597593de606ad1bdc5224bda51772ecf88bcedb979fc2bedea5cf
2024-02-18 18:25:02
60
72
a2c387d2dd984d9b1cca09cf89b6d36c8754b14a22825a59e8d31c5bc478aa47
2024-02-18 10:10:51
62
72
afb9a44df7fa6fb5527d357498018e0e1b037b43dd909aba36a5fe40fce8eeb9
2024-02-17 02:02:30
56
71
bb50184c1975fec7e2c958e867653b29c765b1a867c845879606276fbdfea99a
2024-02-16 21:23:09
10
60
be179001e3c21d702adfbc0415913521cc94aa0c36c63ceebe7a620a5bbc01a5
2024-02-10 07:02:52
24
60
646df9f7cef67b3a4e48937a4cf0e560a55e3718d2aed190c34d078638b3020b
2024-02-10 00:02:08
2
60
24087023a4736d8c73ac9aef5fe7797df781060c5cc96d79c15ae2ce1e011eee
2024-02-03 18:02:13
7
59
18dbdcb5c1388fed71803fc7587251a7bcd9a99a24978d93e894322528af6ed8
2024-02-03 06:07:29
10
58
ea9b2b6a2eebaebf3abd6732e994accd9c96a807103d481346a168093dcf11c1
2024-02-01 22:03:33
8
60
2c0e59d41f39c1a264eb34f9a2d924b481d165b9bef29d10bb9ca82cb6e3b086
2024-01-25 22:06:26
30
60
9f38e893ea09eca46e2d647ad488d4486c142c9dd0d7ce5eb8bb32ac86129eaa
2024-01-23 04:12:30
4
58
104ae9228bdc180b6ff651a258414c76368a2063a3db45889fcbd067f0ff4a70
2024-01-22 18:01:13
13
59
ab3f70f685be4de79b7c61d7f2825e6329f954446917d6d878886baff4fd4985
2024-01-20 17:30:19
19
59
5e4b4908d1525186cb7e581edccb6ec7a3bc6589e78afaaa7d34155824ffbcb2
2024-01-19 12:39:04
17
58
d9741c4ca10b5033d8db1b5757dc410ea8759510ffd01081167913f058968856
2024-01-15 23:28:29
13
58
8bb927fc130dc7e3b3cddfcc4f2f3befeadf967888947db8dfb02c10f307484b
2024-01-15 23:22:16
13
58
01138ed916b07c18a6a487d90105360ca3bfa45e0e61f16a4797ebff053943db
2024-01-15 22:55:24
8
58
56a148689f0763717bca40113160543c6bf8f98907e13bd452291ab6b2964502
2024-01-15 22:54:16
16
58
83c861ef02a46b827186aaf31e904ecd4ff4fe36cdaf182fe55c1d4fc58a7fa2
2024-01-08 09:18:13
60
71
79d27402b35d42f506c3f1d689485c736f8721ba6469d5d735c128521a3c089d
2023-12-27 06:02:51
17
61
0894bb1add181c995c4e1d9fc7318cd3a86c0556126848b69404a01ad644672e
2023-12-26 06:49:34
20
60
0cafa397c050995f4d77bd7ec8c84ac29836d2e0b7c814c3ece44d88311cd5fb
2023-12-26 06:09:25
21
60
e79771e569a8f0a12bba91760d6c9b3c1e0319ce5baabc82e81c7e3032d9da0e
2023-12-26 03:01:02
15
61
ebd20fa221537139dbbd0d7dd2eaa05175285c9fdc52be0b7596aa63227eb5d3
2023-12-25 02:04:54
21
60
b777454420f2f8e03122df7e815a44de56362bba67aa34c73c25033fcdf71047
2023-12-25 02:02:31
21
60
b91e3e2102ec5ac2de7934944553e07c4e8eb2b757aed2bf805c2a6e61695bd3
2023-12-24 10:31:21
0
60
4c71c9e64d7ce7c5bf86d5a5926685a4809ffb1c81f4c5a4148b00ec91b15d53
2023-12-18 05:05:34
5
60
74536a7ea75b56d912344c59046edbb50bff691d772fe76d0cbad9a403007f61
2023-12-18 05:04:45
9
60
a5d0a6d634cbd0081854b0f7a61089dd2d67cefde9f8160dfb2ce7f7ebcf132f
2023-12-18 05:02:57
3
59
2f38b2f01f2cd80c291652dccb999ca7d3aa1f4fc26b3c683fa97e599f51edb0
2023-12-16 22:06:08
30
60
e026f6427fc3a831ead244d884282e520a66330480f24628be92da19003e5c09
2023-12-16 17:08:27
35
60
e78dbcf9eb548872f3da21953f67d02a0d157dd12a0194a044a07eea47278304
2023-12-15 10:28:53
3
60
5f93bc2880f44e4fef911f3a565ec4128374e52738a675af754b004bfec4f3d0
2023-12-15 10:28:37
2
54
5b94c2ee65ac686a59afdc3ea9cd14459865e7654a30c458304a72075ce30225
2023-12-15 10:26:52
3
60
405cf4cad90b22fea4b835a2030783c7f72db4c32600dfc4670f328305af9114
2023-12-15 10:26:48
3
60
a20e33ef861be69b9a7f365d99b81ac4cf8352b6de8ee5af76d239da759292e7
2023-12-15 10:26:48
3
60
54cec5a8020828a6da780dd85f26bbbf7cc9602091b9dcdda9e902e3ff8d813c
2023-12-15 10:26:35
2
60
30a7ee1f9a5b53b1b014ba2fbe2bece87cb219110f59b430abfc61c744dd193f
2023-12-14 12:15:32
13
61
3c467a8a21de1216ed597961164a71c3b5340e0827b31e87ae134bc479591e28
2023-12-14 00:18:19
12
61
8ec02a974fa95aacaaeb17d59a3d2c3fd85dbb5245ea0a343149cba5fd03cc88
2023-12-12 01:07:26
0
69
d8e0f7f78d3e3ec5302b091835888b50f1cf42ac121c1a098f8fa30b34507cbd
2023-12-10 14:59:31
13
61
01348b8a7cc50d5a132066b602faeaef4181c96a5fce6441081df18e104204c4
2023-12-07 18:56:12
4
61
49170d558455630f1b3371dac46ff502be5c785f4620209a9653a3777be399e9
2023-12-07 18:55:02
3
59
369f1ee271e102c350b314fac9b1a300b419352049d3aaf641d79496ec12797c
2023-12-07 18:53:52
4
60
76eef755a6fea04667a672a62bb7ac6d52c17c861623ef4cfa1651f44109808e
2023-12-07 18:52:41
3
62
c96ecaaf1c6730b278af0058667e7cc2a618bd7e22ab8671c289e892f1cdbc7d
2023-12-07 18:51:26
4
59
ceb0abac118f3399af987839b1ec706f566c2afac1b28406f3dbfcc73214c0fb
2023-12-07 18:47:50
3
58
704f270f29357563e5e0246b8a0e47a17c5d8950f739123076fe945d0e6b6734
2023-12-07 18:44:19
4
59
c12ea495561abe62e4b6f5e23b160337fca166b31fa1c04b6e8812dfd883d33f
2023-12-04 18:51:05
5
60
f58935c32026a0781ee4066515131cde6e83f20669d4e81aadac99f0e5309c14
2023-12-04 05:07:22
12
60
6ac94dc4de0c7e0127b10835b683c0814e12f69e123b0a05bd21ecc3e3a63d35
2023-12-02 18:49:55
12
60
03031f8b0c78666aceb4b96d04457a414c06d65960552612ee61820290a4d350
2023-12-02 00:27:11
29
72
5af5d6613ef12a6a17c0d8ddc6aa9fc5e7cfbd1102bddfb227fdd7b8e2e129f5
2023-11-28 21:07:43
9
60
d584669fee04537618595ed09b82f9a9b667e2252f839906ae4270dea3d3f26e
2023-11-28 20:23:39
2
71
04a918d223cb9b6cc0a0989ec9cc64b3efcffeac28666cd55909220b64bbbbbf
2023-11-27 13:17:27
28
60
59478071f8120ada3538fe4765abc56e9f7a9b11abb90a85d932d5ef2db03bc3
2023-11-26 04:05:20
12
61
63c819593efdad6ad1e529fe7a98287bd4b98243978ce1a0f637ee3bc0cc1cb7
2023-11-26 03:05:22
12
61
d8282f8671d0964ec20214b594fff57729c176354fa9ef72b9fc05c20d558d7b
2023-11-22 17:29:25
3
60
b86bf0b877ac6913f89a8ef814ae983efff2d6fceecb62a99f3e0f1acee6d4e2
2023-11-16 17:10:52
19
60
c111084d4b18fa6e83c91027841ecfb306cf4bd4bda89f365c996627493bc066
2023-11-14 14:53:53
11
61
3d1b6f419ac6e6d77f1c84062c51737697720acbb49098b8cb4b562a7eb3872b
2023-11-14 10:15:22
32
60
a407f763cf9a06b0b5e0fbc12f35786e6e08ef55383457467b86ade6b899ccb5
2023-11-05 18:47:21
29
58
3e8348dcfec37e0ea719aa45ec6057a6186c385b065d79cec3cf9f69fcc7f7f5
2023-11-05 14:20:51
32
60
bdf106325d918b0aaf3ddbc64964e88c1239e92ec25adc4787c14bd861d10a65
2023-11-04 16:09:47
34
60
df0103df2f927c83c39151cca1931995478a51ea142d13b40382065fb48ed600
2023-10-29 23:07:42
13
61
49dfabc5a2b9748a7ab011efe70971d1ec23cffd70bbff4cb955202c432f3975
2023-10-25 01:32:05
11
59
cfbc190fdb5c2dc278c361765f0152b51205b5a6f3d90cd8b6ce02aa1861f08a
2023-10-24 01:20:40
0
59
aad3b1026d1a4926d389c19696356a212f20e1d378672678a4d0adc72ae20a50
2023-10-19 22:14:12
3
60
f8095bc221a592f8351441141b32cf93fdd4faf269cd1e54bfa37d053feb6409
2023-10-18 19:13:24
8
60
c359200f5b27e1844fc8cac1cb96ef881e05baaf4bf4a57803011a6179017398
2023-10-17 17:43:58
8
60
2afdfff61e69b0623a5aca2f2b1ea29b3f44e7a4301a3af25efa08b18339ec10
2023-10-12 21:21:44
7
59
bfeb9743ff047d5a8336a0b9ba48d9b56f9326cf66019c8ff89708711e66e9cb
2023-10-11 10:51:52
20
59
7f3558787c4c3a3d086970ab77f81d8dbf44f051c93c3c9f5489846fdd0d2502
2023-10-10 10:22:59
30
60
710ba4bdbdf9e969b4ba72a50b5562995e626e6a6ed6839abc7b9cb6970d247a
2023-10-08 19:42:33
35
72
cc80a015cdb7a20998730343dccf4be8e6493856bbdf0e6497bc84443361cefd
2023-09-26 13:17:19
8
60
7d271849c2bfa7f0318c34531400cc491cecbd78df143bebd36b27f235ff85ee
2023-09-18 17:11:50
26
59
f663e19d6a6c0e25596f113a0d2b6898758fe6d4647b791b5aab38b49c04fbdc
2023-09-18 11:19:59
32
59
4ee2f3c721d2d6d9bf33d7360fc857100960cf444bea715173aca7f18869196b
2023-09-16 10:27:50
25
59
ff6c6add61189614abc7083f2120ef691b8d92ead98bfd992cae4af03195ad44
2023-09-08 16:19:42
3
59
171659bbab6372cf1060b55103aaac282ea872b877c76b0c24cdbfecaa52201b
2023-09-05 03:20:48
33
59
4027e1266235592d3b641f5fbcb5f7857ac24e89bbf2931f62828211d3878ab8
2023-09-04 06:12:47
12
60
7d6db0ec4893750c954b8e5ab10db249bb4beeb203e861c694fb73909449625b
2023-09-03 14:01:37
30
59
e51087279cac626509e7e82962856391303bf32d2e1e5caa1ceac019db158f06
2023-09-03 13:40:13
32
59
289ced61e402ab3f1b5f86fc02838336a0f19e3b5197f08b61df7c260c1e448d
2023-08-17 14:57:58
14
59
dac075e7dd97112617f5403224cfeb444cb2195c1ff9e463aaa3e91a496ce388
2023-08-08 21:06:43
30
59
7c09088850fb0dcf0d22fdacbab2200aa31bd7b66b6d477f7b61e3707e612d0a
2023-08-02 05:18:44
31
59
86980f2edb652cd4b9a7c04e08c70818def06aa2c24c6b0297690614bcc9008d
2023-07-31 14:09:40
28
61
3d0d776aefe3fb4549a289b00445e81314efbbcfd147f57f52c9cc1a0a82c297
2023-07-31 14:04:39
28
61
5010b53593efa567fbb5fb2362da7ad5a47d69ac950bc72f9fa49787b7362a04
2023-07-25 09:13:53
59
71
eeeee9e2065233560db05e67376996ba3dfdd31df1b39339cfcd3432eba6e893
2023-07-23 17:00:32
27
59
5058172a86936cf2b20ca6f2a79fd18acb22d716ce3acc62b81ad131d0bf3261
2023-07-23 12:14:48
19
59
07497ac948130ca09d0dc517dc7359ade719ad99fd2e58a41bf8c31856b027ef
2023-07-22 00:24:41
32
60
8e0f87c8efefaed76b706d6b72e07ec75566b6dcee7622e55a2e2a5339f200c8
2023-07-21 10:01:05
32
59
3a018d81a422e39b48e88e91337d949295d7b2116452b915f10dc35f68052e14
2023-07-19 16:18:14
4
60
b4ed6f7d3d2af0aa8f7493a1874659b08622133f1224187ccf7790025cd19125
2023-07-17 23:15:03
2
65
68c76cbd6993c4825e055d823dfe13775d13948cbafd0c1905cc3f12f24be5f5
2023-07-17 02:34:43
4
70
4b91e48b5fdee5ad9b12dd6e3cf97391332397c601746db7f037ae7a529df52b
2023-07-03 07:18:51
19
59
b21efd38bb87734a7e2ada0ee934d2e861ea82e8e323f7833fbcc3972ddd7f8b
2023-07-02 09:20:59
5
59
77d068bf127a0bcec7ede15957d973d04f9a725481bb550428e994cd31369f31
2023-07-02 09:18:26
7
59
b43644710689dbe17fd9a28cbb7832256cdbb3bd63dd50913bda669d2c860c8f
2023-07-02 09:12:28
7
59
f7c11578d338ce7583d4a01d6107fdf88b986dc31718d93e5ea484ac0ec044e7
2023-07-02 09:11:10
5
59
dcd59ca620afaa2bba4228ec3dd13a2014f48bc6b5b12748e4e592a350875bf5
2023-07-02 09:08:29
5
59
1576ed8315aead5763c82f937698db320b76e838a1d93fa4291b61a5adcb6e03
2023-07-02 09:06:20
19
58
93e57b7ff6658d8bb3ba2cd12689cda4d3dcbb70621853527dd985140676f32d
2023-07-02 09:05:14
19
59
4eda841c34ca9af5ddc46ec1fa1641ffb1b861cb8a17e2bb0d7c3927d1f22fce
2023-07-02 08:57:17
21
58
a44fa6c8d2783133cb6a4b35211e38c59511cbbc0e655681d67cc6801196f4a8
2023-07-02 08:53:56
3
59
0d00e10c2413f4ffff257f166ba0cd57ce5f3e018ad93f2df6805e4b72dbe2d7
2023-07-02 08:52:50
3
59
cbb8fc629c5e880ca92459d51eaa5489d9ff6952ae0063fc82a4e529f8478b76
2023-07-02 08:06:49
1
55
42bd9efe6fa5a65e141f2f3d66aec4c588cd78292a30f3af57f1b24c6889eccf
2023-06-30 18:29:13
55
67
9b82a37b518a2e5c5b11a0a0635ce1334806d7833701faf6d1e1bb73c7d61975
2023-06-30 15:46:39
22
59
15b861506bec22398197430b6ce09a084aeaaf2834a22e758d6e0bb24f68cead
2023-06-29 02:35:02
6
59
944eb9d39fdf5c036e865f3a9ea51be6cc3e854fc35fa2ef98cf49c71414251e
2023-06-27 14:04:44
16
58
b425d9c7a2d08d9f0e624bde647e7b89fd47a42a5c611eba6cca831028c3b98b
2023-06-26 02:20:39
4
71
d5d8b9fadd07bf37b6f1934445a841c42542d56789ae73e5f0734bc255d97a17
2023-06-26 01:09:25
5
59
ed549e0ecd46e72ea58a659bd20a529c44a7cae935d52cf7dc43ddb9177d46a8
2023-06-22 05:04:33
29
58
fe088ced6a10ee342b890ab9a06b986891328123bc58822218edf0d05e6f86ed
2023-06-22 02:52:23
32
59
45aad30254cbdf52d4396df08494a1ea0ac7d5eb9672ae8fa6c2320144266e17
2023-06-14 22:15:48
8
59
696813c2a2aa6d314b09f493bbd40ded740ed019feb9931451a9c39075b53406
2023-06-14 16:16:08
34
60
6c0cf2f2c26c939b46bfeb0c28a74df9f24a084444f67569764b8671c414ecd4
2023-06-14 16:13:46
34
60
50173e012f1085ecce27632b2833aea0a1411ea607fb1a5951b50d1a0c1ecd94
2023-06-13 10:17:41
13
60
d83b67a1e2fdef15aa739a71e5ea2a6cd51304dbd9f0e2ec06001385af61a61e
2023-06-06 07:25:40
0
69
a9db19f790f7551b077dad9c61778336e3707b8886e75eeb0529b4debe96abbc
2023-05-30 23:03:33
12
60
6e26216c740351f5460a2f51b4676606d572fd3012f57fb9e154a34d9242d6ea
2023-05-24 15:10:28
11
60
076b22f6815cf168a813fa64e7f0b7e45d5312de16f8c9e65593160cc2c9cb1e
2023-05-24 14:17:58
58
71
7e44ad45a0f3eac8b717713ff88f60c005a336242ce5a55d26b4955389a184dc
2023-05-24 14:12:23
58
70
c966f786d559c2e1f2ecfda9e31cac81c82684189f5a02b9772d9e1860481dac
2023-05-20 21:17:31
13
59
bf53071f112495144dd2ea2d14e593eda2f56ac16e02f4683b55e8a5658e3d3c
2023-05-14 01:11:38
0
70
7728436b9fa9c28588fecd99803c47e39428aa5bbe8073e43b268544ee2a7ece
2023-05-12 18:20:02
32
59
032fdad80c39d2b6613a21b312dc0cd4d7529c07571808ce8734937aff7307b1
2023-05-09 09:07:26
21
58
fd7586b26d2f7e38c6df01a4f91aff6a1a89570e8bbdc335e05a980c598aa798
2023-05-09 07:08:15
32
58
cb10f205e0f03a41eeee2540b41457e377ec955de256a25302315c969301d0d7
2023-04-28 11:14:24
7
59
79cc41bd8b8ae9aa039c9e2f53220fe752e77fe33b0d77095533df0d713c47dc
2023-04-23 05:08:59
0
70
600040e11c0ca8ea89189f5c2257f745fc6bb481da790253d71ae331c96d10f6
2023-04-23 05:08:58
0
69
2af45e20f907d5af7e8e4c7f744ceffbab663938d37ffdefe9880f09e20fd1c6
2023-04-22 08:12:50
0
68
8144783deb1e9a37a6ebabbe11ffb9fa046f50725c96f50821e5216372091878
2023-04-21 15:07:40
58
70
25dfb61ce28d855efc4b283166874ee96eb83d822f399635533d76b904796511
2023-04-21 07:12:43
25
59
e869473fc666e8472a7deb489a10f558f16e6a74c6adf8f3d6f10c54a6a731bc
2023-04-21 07:12:42
30
59
6a5b275994d5d5007db6e19abcee4e1b441a6952d2bcd33203edb7e35a239248
2023-04-21 04:19:42
32
59
23d30df1019ef12f9d59e37c0043ac34b9c54c8f7e603b0e23593db8f41e320a
2023-04-20 04:12:30
32
59
e4c4c29e67950d80c38742b9e3457c50f97ca0b617a2d5951802a538c0264714
2023-04-18 10:13:03
26
59
8eea20e7829b737dec6aea0ecc755c343a5c9166c3e42d744414bad895753625
2023-04-18 02:07:39
32
59
e21f4b102054ff65cb8539e151226b051ce3b36866fbd7b02cc89cc4fe8a2078
2023-04-18 01:13:12
29
59
2e9bbfcff8bf29774e64117e2bcc9b8afdd352805d0b6ff21d99c2ff1978f8ed
2023-04-17 00:19:28
26
59
773594532298a31d2dba5817f71730abb079363cadbbb34c57cebb89a591c228
2023-04-17 00:19:23
25
59
52f8f756babcf10e05aba36f0a86527f1e652c5ef6b538592ea79e4120429687
2023-04-17 00:19:20
21
59
aef0bc7478b7b9d453d8e95c26c1f10aa864335103106e7204655dfe93cb25d7
2023-04-15 00:08:49
0
70
a6490764509e1e4c745a7f4635cebd49fbe284cec22d7957310c4f8b4d57026e
2023-04-15 00:08:49
0
69
cddb664c65792179faa2f83c57a7210abb9b53d0dee502f173856362e5dee5da
2023-04-12 13:19:23
33
59
4bbf61fb4c7f90200d5daea7a83638f6f3b8b72cff68aedb9053fcff4918ac70
2023-04-12 13:19:20
6
58
31ab16f52c869c8acd9dc48edf1be359c32a1845f9e2d9ac277a03d00967b34e
2023-04-12 13:19:18
26
59
bd70e892e10c51782a3dfdd25daf4ce72d84dea8e2cffe49e0713a4102474ea9
2023-04-12 13:06:22
34
59
be9511752ac507ffcfb37aae843445c52aec4bbaf0954652d3875095a651848c
2023-04-12 13:06:21
34
59
6dceaa1743e6d728aa5374c47e6142dcda168d2b08e10606accac6eb0e9b54ad
2023-04-12 13:06:16
28
59
c858774119e4bf466a3b001a1cb8a846ebe4b82327b2b3376d55749f2bbd9edd
2023-04-12 13:06:16
34
59
6cbf7beb9fdbcd07dca8050f08ad00918bd2157ea21dffbb31379b21eb3dec92
2023-04-12 13:06:13
35
59
e302ff011bbab714ee7bc4078bc8f8ac4fea0a8c7895feac55a04ac3f500ad1b
2023-04-12 13:06:10
29
59
0ebba718bb5d6c66d0153562862d9490e44f2cc732c3573d2bd72725cb7dcb68
2023-04-12 13:06:10
33
59
ee73c63d169a072919c2f175b27526b0a0a184bb534f78c8119c2be8306070e3
2023-04-12 13:06:05
33
59
f83af25caa955f13be4eca9fb49b124560f12bdbbe2d6cd64be1cdea24b1a673
2023-04-12 13:06:03
35
59
386ac13cdb3b309b528c6ce39be6b712b43f8b8922cd19e817ebbe70b67133f1
2023-04-12 13:06:03
33
59
d41220ea115cabb8f22d8f12c8bbc472494fedeaaae5789be7b6192438548143
2023-04-12 13:06:01
22
59
90765cb6649e57b98ab643d89fb50c9484391360252cda20c3a612943b1e64fa
2023-04-12 13:05:59
34
59
aac307d879999bd6b56ca128f1f35b333fecd58dae54058aa73e00ee7687ff46
2023-04-12 13:05:58
26
59
c0c9392b9334eea2cbe73485ee9c63f9e693908c3eb87f77b94a69eca394895d
2023-04-12 13:05:55
34
59
01a6368d9dfd750378b5909f1bf1f9bd79ff9e9601f25b4b67b27da8495577d3
2023-04-12 13:05:55
34
59
29ae320f6fa72309f4440f3c32204dade0ae801f91fd5b8448236535cc0bddf3
2023-04-12 13:05:52
27
59
068d800c7cfa14231127ef8976ec98ebb407276768487fd111639265ce46fa5c
2023-04-12 13:05:50
28
59
acbf968c3919edfe33f6901135df0ee26d171444813f1f29394563fdac902c40
2023-04-11 21:19:28
15
55
fce82a878baceb1fdcaa1450ddc508e80df104587c2c9735ab65a7834c7bcf15
2023-04-10 19:08:42
9
58
9ac6968b1bc2f9d3f072f9bacd9e414d4c027e313e737c44aea3efb0d4ec2802
2023-04-10 14:50:45
30
59
eeb4f75bd585d54f94bdf0c37070dfcd7972779ec424725348bb497519107b26
2023-04-05 07:11:03
0
69
2586f99c555c77ca20ecccbddc26a30e0ec74e7ac1f774940a8ee01962a3fcb7
2023-04-05 07:10:32
0
69
75904111c34a461be0d6038aa929618f33809d8d2af27d64f8565167587d23b6
2023-04-04 14:34:41
20
59
ae2f202b69d15676baa77c4f1f16dda1d1f524172f99b06fe5a2dbb5f0f599e2
2023-04-04 14:34:05
7
59
b631f6c8b38c1565b372b0af2b9c8589bf9cf91aa6f7c7f18e523a23662a788e
2023-04-04 14:31:58
6
59
85017c355f7544a8ec3676367cf01df2803c0a2dcac5f1b75a4db0e6b0de7e04
2023-04-04 14:31:29
19
59
808322db881449d2e3a68c71709edc683cebfd7b89846d0a55303e0214697762
2023-04-04 14:31:29
20
59
800a769983c44b7a6d21c746ffe1c5108b0e73d1a2a35a1691a9126eacb26bbe
2023-04-04 14:26:10
2
59
3b5fdfe19974d64b7018f4e3e0b68b850df3881abdd67efc068fa518b51e1773
2023-04-04 14:21:51
3
59
014eee6d2a24e82b7baac1013dc0f75f73a6a64f8d9352133d9c8160c83c105b
2023-03-30 15:22:54
22
56
dba860617762bc713771de351026eb683546b37489fa0359064948f263438030
2023-03-29 02:12:02
29
58
f09feb0723695147f6ee55b9a8e0610689eeb213bc068338b419725f84d547f5
2023-03-28 01:11:11
11
56
6816a426ca7e0fbbb6c557457652881ce5cd72b3209489f7c1cfb72838badb9a
2023-03-26 20:13:30
45
69
72ad7d3998bf281ff18851082c2e72699b18e837f8ba308fe25a4736b90f9c2b
2023-03-26 01:12:40
13
56
2435f5bf0ecf3879794af79674320723316bc83ba910705d1ee7af2d6d818fba
2023-03-21 22:52:04
43
68
a23197d125fe1fbde3f33e7749da812c35beb2a2cb9208c4e0ca0e3f388b1258
2023-03-20 20:07:33
0
60
26f61cacb02c4bc9fa4ecdd933a0298da108373a7a9e874526b4997b3e843ac8
2023-03-18 01:39:48
24
59
3fd573ad17921761b13a21db9ac76b50ac6bbb51dfd65fe1d7530ee715717dcf
2023-03-17 21:59:42
43
68
d05b51b720ebaaa2da09d81fe85ce030f9ccc3d437469cca7e23e402f05c3d33
2023-03-15 17:48:57
44
67
c67c9f5a59b607f75646198ff7ef838cd90a18c543cdbe3b9fdcdec96520a502
2023-03-12 10:06:46
7
58
ca36d2ea01391327f6eab65bd8d68db48fd7cc29ec200a43c675b2f7ae3f466b
2023-03-11 20:30:51
43
69
c275a1fece549999ffcaf2be3ebed2850263b5fc40588d4cc009e04b7c4d7fc7
2023-03-08 04:31:58
20
69
4c62e60d2b8971b073c59251ad1c9bb88dd028452a1f5750d68c2419830bc29a
2023-03-07 13:18:17
27
59
4ec8c1412e7ab26d6e6ac31798ea9ffe3b3ef9939675ecbb424c4be0947f45c2
2023-03-07 13:06:29
30
58
273245c3e86e7216e5adad8250db064828ecb63d36b9855e1000ef0a11ab1c68
2023-03-06 21:19:00
33
59
fb229c4d9cd3913b2673941328b6183e8644dd8bc7736cd4a7a63bf4ccb6d540
2023-03-02 00:49:21
12
58
e3dcafd30dc42ccbd9d2726b5ab4bc14318efcee43e9d011bf9ec114458834d9
2023-02-28 13:46:48
0
59
8ad202530fadf434643bc8766976ac5c37208d06870dc91cbdc9b439cd35f08d
2023-02-26 18:19:35
5
58
791f9d63fca354cdbe68b4902ccac75fb2f8e5c0f289089ae883ae6ec04cbd62
2023-02-24 12:55:53
11
62
12c80092e7df5c4cf295eadeb12a713bd791372dad2e3677f04a1676fb2b9779
2023-02-23 14:45:38
0
67
e5992b11629e2a0cbf88c2638efbffcebc6e902bc3f0d467840168bab3fb84ff
2023-02-23 14:45:34
0
67
8f1fc698f7fb17f4131570c71a1cd7f955666e50df11d7d685bed3d1f3138245
2023-02-22 22:08:52
4
59
da2e4bf8db3ae373f006787b0cdf5cdf38a08e941d19bc207690000a4e8b3bff
2023-02-21 18:26:24
0
69
66be056ce340e6db419e37a34a72d1fc7c0e70aa060584c48279e9851f8d9bd7
2023-02-21 18:25:07
0
67
59c9e962f32732ad1f45a88ee4b6b77a55929d5ed210f1a8556c94b93843efc8
2023-02-19 21:37:11
0
69
05e9d66d12395182bb94207dd8b62a9c1c9edf0fd663300526af9e5c743f9fd4
2023-02-19 21:37:10
0
66
ca613cea674b55394b11bde86cce50ee1db105d05f4ca5810660e04158a1a3d7
2023-02-19 14:43:37
27
60
f5fd086328223ca9bc3e5ebe3dc1f6f3e8a8bc4c9113627e397bd782abe36638
2023-02-18 22:05:44
17
60
9574d33d7ee275bcd2cc7e0edf3fda23938090d9f71270c0aa2b9d94b2d590bb
2023-02-17 17:42:18
7
55
3711cf6c5fdb7ad0b1a0f5adfa3653edf2b9c70280661911217d362c4f483a28
2023-02-14 05:07:16
25
60
65b4a271f8e6c8fd14669afc8c55ce3e45f508d6bc4298919fceb460757510cd
2023-02-13 04:49:08
0
70
b97049f478c4a289f2410a338a3e1a4d6508e8fd6201b1a174711969702614e7
2023-02-13 04:47:40
0
67
b264aa70bf35cc16308321caaf822e4d87bcc963afa27075ccedda214660cacc
2023-02-11 02:31:02
29
60
1a931fc4524bc61e65bdae33fc25f068b3933756cda7ba09cb112cc8ba87305d
2023-02-10 18:26:03
0
70
e882f293d06a967c6dd810857e427c4e1628f074ef57c2dca409be0d6a075116
2023-02-10 18:24:38
0
67
c6fee97cbbbee3b1715028c40ca1fbb96b6b6e1bfa362cde967e5ebd2a301ec6
2023-02-07 11:47:48
29
59
5ab0198ce6e52f0691a5424278a549e5d4257bcd67735ad5ec2d2b273e6e6400
2023-02-06 08:20:46
0
65
ca7babe11043dce94b7792c70cb361629d09faf458509f98de447a51bcd2141a
2023-02-06 08:20:39
0
68
6fda595c3a7be41117e4e6ed255296e4224b6d62ba297c546ecd182923f281f3
2023-02-06 01:29:22
0
69
18f113e6cea270e98f7e15b1d993b20310fad450e0b1025f5053bad01ea0719a
2023-02-06 01:28:05
0
67
221df7cb13f179b3ff207ceb00c7cb603ae680d60df508dcec49fa20c3d8d22c
2023-02-05 05:52:21
1
60
0ba582cea1952f3f9734886dd23db6d478ecc371525c5122dae2e6614151c132
2023-02-02 02:48:38
7
60
c21ee54b6cb41035d5cbfd86212417b8713eadadd5146511c372e060d5a6d694
2023-01-30 00:40:32
4
59
f12222e15c34e39f15dfd2c21b877ea7655a7b99b04c37336c7b712b43b8ae65
2023-01-28 22:05:45
25
59
6b3906f916d3ced52c4f13a3679fe3736b7a1f6cc77db2684eb0424294a15ae5
2023-01-28 20:46:17
0
67
02355aae04846b7358147ee6ce3e7dbc72263bc93a75ec794e90cf8228e882a1
2023-01-28 20:44:49
0
69
ec79bafffc8ec86dddca6bc0eb822379a8c2513dc7394ad99a217b609cfc7b80
2023-01-24 21:35:41
0
69
c203abfe5c80b20d3becf17eb9214f13c777df35904d720b361ff0c7370b3af4
2023-01-24 21:34:23
0
67
527930964b17b25280b077e720b44846cd2682d9c309d716cb1b6e4afcc8f24c
2023-01-24 11:24:20
23
60
a1d18541d643f90b2c48efb56597f191c84a581727ecc1d02fe624a3a8449347
2023-01-21 23:11:43
30
60
59393850d32eac212e1e6ece42fa3a0f6f7c1fa22c3c05137132924c207ca768
2023-01-20 17:02:09
0
69
91261fecce8ed7703f7bb5f6c27b498ee998ddfa81dabb65654a4f19a626bb54
2023-01-20 15:01:36
0
67
cfa533c7a9a2e7f33164905c385101d9639043d4aea2b768823984bdb4e79c80
2023-01-17 02:43:02
33
60
03aa9ba38cf9030e2ff9fb8cdf5628c7438a6bc0b70571d8bf24a3370cb9f6c1
2023-01-14 14:55:49
0
68
e1162bae912005faac55b0429fe9312c993a88ced013714d8ddb04e0e5cef6a9
2023-01-14 14:52:41
0
70
98b949a5de31025d91a917338e329e9f53cbc7339c4b1e3d19dd7570ae560ca0
2023-01-14 04:58:19
28
57
3f073fd58fefa611a7b0053623887ddffa7c0f7bbabdfa7c7e73ebde7acc4bd9
2023-01-12 09:19:55
24
59
5cc352a047cdfbc902972903ba358d41c48933dfdcd9d0a0d67b092dd0463112
2023-01-11 19:02:26
0
67
f07bc76dfd482a3e23115aaf1b5c41d9dd40fdb5254ed6087d33ff7ed2b9eb5d
2023-01-11 19:02:25
0
69
a50b2cd48de24cfff4e9d49538103b8ec3b3997162c6d1060e80d214116ceade
2023-01-11 06:35:54
0
67
c2c95327da600b88bf6a89eabe8bf705dd9bc94e93ccc198b11a289a848b44d3
2023-01-11 06:35:54
0
67
b0f4e92b81d2e26fb0c4c1e5e9c6f34121e328d07f3034edce422d01c63e35b8
2023-01-11 00:54:33
0
67
312d05c26e91b707170dc117ba3d287550571c01ed8a1aa19c3863cb983194a6
2023-01-11 00:54:31
0
69
777d16c0405e7b5641639c636f1dd667aaffeef0b48dad0594659394478f9b85
2023-01-08 09:16:00
0
63
97f64e511add67203dddad3ebccb5ef92ed0e32e3e6e5ddeaa36abe2a04b5955
2023-01-08 09:10:32
0
69
932e27817d30e446c2d21c67b229098fcc7e057942538008e35c33744d90f0f5
2023-01-06 10:07:38
31
59
8c0e057156188d369fcec961082cd28b0778f3cf300539c28796b4e3a9380e2a
2023-01-04 21:09:37
31
61
17c6fca322ddb4e0ba3c27b1d2b301371c422dd60ba8b58e67ad0cc550587a36
2023-01-04 10:09:37
15
60
4dcd4a83c7189a0fde4439e4a3709a4d4bb9050f59b72a6e2af3b1d08589c4f0
2023-01-03 11:20:30
32
61
53713d1dedea4853112282a24350c499ae972c88d1e5fd2f74e02a7847d1afe8
2023-01-03 06:59:33
26
61
f35b38299464d7d39d421ef4a0aa415a199524ca87b152f8942c5e467c83fe98
2022-12-31 17:43:01
26
61
ea2b9e871d457a9e35d55f445fec0794bdf40c412c909b2d05c322f3a16edc18
2022-12-30 02:03:21
0
69
01833a6711753baf0cf71a6436382b35aa06bbd8516f99bb241cc0d4a13e8694
2022-12-30 02:03:20
0
71
462d1f7b64e398a2668fef1fb2d694200f36b20f0935cd12adfafb6d50bab47c
2022-12-30 00:14:07
32
61
60ca2215b2f892a57e5ffdc3adb62093fe0925d3fe15d6717267dbc346169f30
2022-12-29 23:10:27
0
68
6fd482e10fb5a30142e5a5e8bbe36ccd62bd4952fa86a89c3d92e4f4ccc4d64e
2022-12-28 19:33:39
0
70
b08103c580bbc6fc46e2ea301735406857ffe76b449a9e33c4202a507d073254
2022-12-28 03:06:51
1
61
77cf39210cb8acde0119a97f8d707dc2b41c50429c7dbd559383d3384b6722bb
2022-12-26 23:47:38
0
71
21863613c406d78e8101b5134336d9a2d055e0ec5a417a1debe06ac2bcb13266
2022-12-26 23:22:48
13
61
48ecc6c8044e71e52b9a84a1122aae1775130f5f975330e305d10a40973ca7c9
2022-12-26 14:44:19
31
61
57d027e02005e40b81035d1c0560ca5fc348a401bc87b7922386535392f2757c
2022-12-26 03:01:56
34
61
1794f641e179e0ad2213d5cf2edb31c768da0b74a35437374a593076bd193411
2022-12-26 03:01:56
33
61
7d322790187bba9fa55c1520ac724274652290e17cb314021d0a96a5be9530b5
2022-12-25 04:19:13
24
61
96f364eeff0272f5cae3499a8a396ea13547d7d56f22a02f887eb540c55aa355
2022-12-25 03:12:27
20
58
03722e40894a8ae2445108dae21bf0f7ddf14503d842ff2e9f4fb83448ef5767
2022-12-25 03:10:50
33
61
52d4aabd841036f04c952fbddd48a1799b7586030251d3d8416f73fb780cf3e0
2022-12-25 02:15:25
33
61
555536b16091930dc53a5d6e66c40e43a440caf9de7a620383fbb13ad0144a75
2022-12-24 19:11:52
34
61
f880b16e24f2fd3fee0875103db057724e14e450d2ed54e8509c59f29a92b6cf
2022-12-24 19:11:50
30
60
831e035c5ac07d4e856f1db377a5380f12dd28c47ae096a907a73391ea557721
2022-12-23 02:13:32
30
61
9714e5b0d7e753831704294ef40bda8146fb1053a1294c855447f2750b7307d2
2022-12-22 07:08:18
0
67
c12121c63104d97da248274035d5d169253b4b56b8d687d7fe38512ca17d77b7
2022-12-22 07:07:54
0
70
1a6745d5997dd07f9d29bd2efedc19b34821632ba57fdc558926be6ec72218a3
2022-12-20 21:09:10
0
68
18c91d1ebb0385f621285c69903cafb83c65d95e2c384a32c165e6569dc441f5
2022-12-20 21:09:04
0
50
b2ebce4114ce38018f5ddbf31cce5e99b10a2c0cdcd2d4f1510ec7a6762087c8
2022-12-19 22:55:07
30
61
de07e7547d6ba6a7c7d2abed9322839c418484a37fe2c4cda237f42fcff90bae
2022-12-19 20:35:12
11
61
a88ca01278a9243c71774da4e4ca446da4efa402af43eac25eea35b30d42bc2c
2022-12-19 00:14:54
22
60
a600bcaa8701a3c32c42604d25d4ead9d74b9c2fa5aa34755bf5ffa0a32516dc
2022-12-18 21:51:53
0
67
c3f6a900a65cf1924915ac88c3b26a460ad37d3812650260ed2f997721cfac99
2022-12-18 21:50:42
0
63
b556aad527eab44f9f42883def93062ae32b23874eebee51d49b7147b046013b
2022-12-18 04:23:11
14
55
fcd0e4ed5f2b9837625f9c4dcd21e8f0a94a065955f0a4af14a84df7d9b800ce
2022-12-15 07:45:22
0
70
7f307e365634b88c48b01736ddb5a47e0bf56dede671690e130410ee0df49597
2022-12-15 07:40:47
0
68
0a343e8caa630c6cc5c5c83da40a18f0928ecbf3f60fdbb04a8fe1aab96c98c1
2022-12-14 20:12:29
0
68
d235380d521857274cfd2b1972523cc3290f645b6afbe9f939415a1e0e1198b0
2022-12-14 13:56:46
3
60
f54ff5abe3f3ad2d728b1b01726ebf51623f65b55a3531cf0a6b850e6d478271
2022-12-14 13:53:24
3
61
dbb165f4a010af77479f6132d608689409b07ffe58a34207630572187c8de2d4
2022-12-14 12:24:01
6
61
28a8529d51bdfc972e6f6848eae100a811cdf7b071202cb14695b93a318e2a76

Rule Matches per Month (last 24 months)

THOR Logo  Scan your endpoints, forensic images or collected files with our portable scanner THOR
  Warning: Access to VALHALLA is rate-limited - once you prove unworthy, access gets denied
  Nextron Systems 2022