SUSP_PS1_Msdt_Execution_May22

Rule Info

Author
Nasreddine Bencherchali, Christian Burkard
Reference
https://doublepulsar.com/follina-a-microsoft-office-code-execution-vulnerability-1a47fce5629e
Minimum Yara
1.7
Name
SUSP_PS1_Msdt_Execution_May22
Date
2022-05-31
Description
Detects suspicious calls of msdt.exe as seen in CVE-2022-30190 / Follina exploitation
Tags
['EXPLOIT', 'DEMO', 'SCRIPT', 'T1059_001', 'CVE_2022_30190', 'T1086', 'SUSP']
Score
75
Modified
2022-07-08
Av Ratio
27.8
Required Modules
[]
Rule Hash
f84f0ef804f4a0ebec2cfd27351f7006
Virustotal Matches
https://www.virustotal.com/gui/search/susp_ps1_msdt_execution_may22/comments
Community Rule
https://github.com/Neo23x0/signature-base/search?q=SUSP_PS1_Msdt_Execution_May22

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
104
Suspicious (< 10 engines)
42
Clean (0 engines)
23

Rule Matches

Hash
Positives
Total
Timestamp
VT
c78547a1641a89be4c0855896a0c108c0dfdf91a741a4140566edc8f96caec16
24
61
2022-11-28 23:51:19
b9bcbf832cdece23c5b076005436dbd18b37d90973b106d1f5d7f63000e5269f
2
58
2022-11-27 16:54:45
6bb39f0564ca9890ff63387c52f0f07e396b470b75ae69eea8db3180b2e86033
35
61
2022-11-25 13:56:16
d813851f87b0deca44623619ef8576275e3e2969812b80d8e61169f0dbfa7f60
2
61
2022-11-25 13:46:54
99b70a89b473b6df3d639d310aaf8c6b58daaf58e99b9df959d825cd3da0f86f
0
61
2022-11-25 13:34:23
3403be2c57fc16bdb0edf2c7c9e59e6a5a6195ab20af5338a25ae36854d0ab07
0
61
2022-11-25 13:29:40
e92d3c74c88d3957c3dedb8214388d06e4448077bc6345d6e117367342118aa7
0
61
2022-11-25 13:16:00
31826fc99ba5b4d90cc65a5890a71dc086011a372faab4ff239aef4641455c21
2
61
2022-11-25 13:02:57
514b00906a47485dde98ecb6970a39897e08cfeb1ba2c87a5a56cf2e0ae4b362
2
61
2022-11-25 13:01:38
98fa071311fdbf091d7a70d9b943478c942dd827cdbd389d62f057b7c125bb19
33
61
2022-11-25 11:23:14
5fcd8c3b5b641be17a50224b9a34036eb2cc6c59dfd8125d9714e508e7da2371
0
61
2022-11-25 08:09:08
3757954e0678f3d77b9a2dad4f07205b1bc790e8688ebc5a53628482018eba7c
2
61
2022-11-25 07:52:17
e3ba1c45f9dd1f432138654b5f19cf89c55e07219b88aa7628334d38bb036433
36
61
2022-11-22 15:18:42
1c075cf54b12c283f2faa0addd8981585d950016b34bebec132d8e5ba78b97c7
30
61
2022-11-18 02:10:27
ce90d6ef6429f97d87eec3990337fcd365f43e03bfbc3d2e644c4720c82313f1
24
61
2022-11-15 10:07:00
22de28bc038aec927e627c737be7196fcfcf0b7ea26d70d10d3923f48acb0e05
2
61
2022-11-09 13:13:05
3159eb4ce2b83504934fede876389afb7b2eaf422329e8d23dd7a61eba6df6d0
30
61
2022-11-08 06:13:24
a970e699794d1179104ba121816d7d27a4c398440b3bc104c6450df83c206dc8
28
61
2022-11-08 06:13:00
cf91d001e25be8cd40ff648d9bf362a24693a3e0e611e338bf3ea89706839f5e
10
61
2022-11-08 06:12:39
87efb12f9d2feb3af60b38afffd1b1eaf5b9ab77b2206ad88bfe817913ef6be6
18
61
2022-11-08 06:12:30
c6022127d8f3cf3ffecaa9d488c7767722f7e7d81ab17be1c6b35e0408498b6a
18
61
2022-11-08 06:11:25
38473590460aadeb83f0a7db6577cc3bd5055969dac520dfad345b56b6b00b20
18
61
2022-11-08 06:11:12
8fc98c83c299dfc66d764a0200a75a68665352b67d95c1f57129179a86ca240f
17
61
2022-11-08 06:09:59
eb33c4b6a8ea28b16fb13e2ea910a6cd6b25cff4c3bee7d15c55e85a548ea15a
10
61
2022-11-08 05:16:14
ed4d61e905d6ce6e5f1bfbdab4dddf8a2499388084c4e8ca31d548836ffcf034
21
61
2022-11-08 05:16:00
74e94c277f104689468b56ce3bcdb610336c6f56adbd5ee92c89773666995e9d
21
61
2022-11-08 05:13:16
5d9f35abc3535bdfca8590c47d52b5377341aa8c90abee30b448cda8559c5ed2
21
61
2022-11-08 05:12:05
96cf1503bbc74586a9087d28532c629e54c599e83c86d9dc8d01abb3ed8e9116
12
61
2022-11-08 05:11:08
9fadf80ce44b7e44fa4ddc1bfff5dc5fd3d57a570faf6cc656ceb9417d59b99a
11
61
2022-11-08 05:10:28
f544895b2f26eede98ab5f7781211462e6f998e83cc0ff39c70f987acde1a9be
13
61
2022-11-08 05:09:04
64e48709b07561765f4f42f0ede584a6a28a2835581d347485be9fc7a88a0821
13
61
2022-11-08 05:08:51
23fce6dd33b697abd04c83af206ce0d007809b161af510816eaed572242601a6
13
61
2022-11-08 05:08:39
cb0f81ea5606bf083c1802af5d291a81edfd88174224b2aa3c744d49af2e8656
8
61
2022-11-08 05:08:24
8c2d3fbaf1b73973e4ce68025766c2f0ad7085c9f3593205c42b309be0807522
27
61
2022-11-08 05:08:01
33cf0752928fe942d99afc5186d7ac8807f9ba0ead1a17cca553fb2afd061e86
13
61
2022-11-08 05:07:42
a0a2c65d2653daf19aa412c3b7d0e3801d23ad35cd5d601bf5c702ada4b8e00f
14
61
2022-11-08 05:07:32
9ca7d37af7e2093799137e326f08aec781e40c959b1e3bbce35483b7d4ad9f68
0
61
2022-11-08 04:20:09
083e45f314c6cb3a813c8f93ede33327569dcbcaa2b8dc23faf56d5046febdc8
1
61
2022-11-08 04:13:39
18575de6ee02989aca2b0c681f486d53dd4aedeafe36d8dc3d21097b824c7966
0
61
2022-11-08 04:13:21
c3890569661ecaf2719cdf973d40404a3e3425c83dc3bf8894fd082191cb55aa
0
61
2022-11-08 04:13:05
8591cf75653ce7ed83cbd168f2e579ad73e14c1dbbb5dbf4c1338d6f3a5684e0
5
61
2022-11-08 04:08:17
2bb7a2418f3e3c228a7f6ed9ac3fc364890ec521f69d1f858484980f5bc4d801
0
43
2022-11-08 04:07:28
a6f55957542982348eb412b9b49797e1931183a6bf395016885e1294c5a08dbd
35
61
2022-11-05 23:20:35
5ef6cbbaae3d80fe933bc87d5db1fc24f67df7ab942721856d1005fc118adfa2
30
61
2022-11-02 01:12:43
bccc37d9cb242e31e21e6eb83301f2b47345aa13644e5ce717e1652e8e0ab2f1
18
61
2022-10-31 17:28:10
8e986c906d0c6213f80d0224833913fa14bc4c15c047766a62f6329bfc0639bd
37
61
2022-10-28 14:24:35
8918ede0a38d40ee0b89028819dcaac6bb73d2280ad88ea2e1d0a42fd7101aa6
34
61
2022-10-24 18:20:44
6eadd5a9eb7eb44f3ff1728f2bc525dfcc0e669fe18babf476e2b85a4e06a573
5
61
2022-10-18 12:34:01
16b2339a3c951d0d5854025ddb35372f4da1f44cb4d01048f17fb8bca982e298
17
61
2022-10-16 09:18:20
639c751dd840d446cabd502a1cb8c0f77587862bced063c762cf5b3f207049d3
16
61
2022-10-15 23:44:05
73aaa4dfdfba6734dce8ebf86b6338679cdcd2a66646148535e89de48f555b1b
11
61
2022-10-14 01:55:44
4546c6edb62e137d862edfaf6331ce6e7dde5ca386920734c35b13b479a2a84c
30
61
2022-10-13 03:36:08
3729f57cc03cb1af621cf95ab887619adea3fcb1268ddf8252d28f65a0930437
23
61
2022-10-09 03:47:19
209146d1773e8c4608b04501a39595a19ef49b3841002963f9ba104182d93cbe
29
61
2022-10-09 02:41:07
c335e85ed38903e68db51501095e539b68477a850e87ddb3ba6d07af1cb0cc2a
0
61
2022-10-08 14:11:27
507dfd57cafc20bb9201f2ed962f2ae1b04aa3242c0a5413d210544b2ba6277f
24
61
2022-10-07 12:10:11
cdec208ec12fa58c122db1887abb7f58c7998a9ba6eeebffc501e11de3975215
35
61
2022-10-07 07:14:10
e3d131ecedfd167057cfd0b30c7b6b1f1de8a8a730484f9a64b796ec0008e9f3
1
61
2022-10-05 08:16:16
70ecca1a89055c5055f73561e0bf67426fd5c920fc03901b06f0cc6375f76474
22
59
2022-10-04 12:08:39
af96ec414d8ee7815530d52a1d00602fcdcca206c70854601f6b66c7731d9aa2
27
59
2022-10-04 07:26:30
29a478fb3f88d0d55a42fcf9637ca41433c1457707d45fd29272d32edd275019
25
59
2022-10-02 05:09:29
320c7164e31b517dab6763cf63269daf9cdfd6f2df71c945392da00b035d9a0a
27
59
2022-10-02 05:06:50
b3281ee94db3b971936a861c0c561065cd7eaa89062e807f43496ca765981d71
32
60
2022-10-02 03:15:47
b52885d7b33bc2bf0b0f4303a5826adef22383fc522e463b5ae5ac99fa0c4c26
26
60
2022-09-29 12:23:31
536a31151d9291b1f032f91259578469adb89e1194c8fcafbe481c1fdad1a2a7
3
59
2022-09-29 02:54:37
f8470042c86ea373cef9b8c52929fe60f489cee620a5581b70d22a8d32132c38
31
60
2022-09-28 22:34:48
7ad3a8810a02e6f81fa9019e8f7a4927d5ff6578823f94a2977930272dbf632e
22
60
2022-09-27 11:25:51
b634ecd14635ceda269b3ab45099a8d200fee3b30270414154b46066138f1227
0
60
2022-09-25 05:19:22
d6827f531c5ad6644823b300cc178752bdba8583b0fdb0b770b23509f3bca048
33
72
2022-09-23 19:34:44
c9d40bd62d38a4269ba5afd0f82243ee097a73003e540eda0784f07d3bf4efaa
20
59
2022-09-21 13:09:47
764a57c926711e448e68917e7db5caba988d3cdbc656b00cd3a6e88922c63837
36
60
2022-09-21 09:22:46
016baa630439f62035082c30c2739595bb60237a6fbec5cdc244827fe6c7061b
29
52
2022-09-21 05:17:32
1f12b8c250aa8f9d1e66caa0955fada8ccafcae1bfa66930522434771ce25525
29
59
2022-09-20 08:07:29
43ea2eea167d3941914612af0a25f570f028e2060c084c9537a61c9e3c524437
24
59
2022-09-20 00:07:57
08ab1ecabddd30d21d699f0e4cf362f207335535c1e855129d245c9134f0c7f4
31
59
2022-09-19 17:38:10
ac8cdbe302f862c4570e6571673f9ede50d1a2def1b13625f7d5c14e1401a6d0
26
59
2022-09-19 14:52:37
9ebc6bc23ecd75e320b24c9d6b7c8738ed85b4538751ebd508d6fb914ac27fb1
36
60
2022-09-19 12:06:52
d9ce3c887ac4a447ba4fb2cb83cd1869ba626c45c43271bf1a1b7e21c5d4fedc
2
59
2022-09-16 22:11:38
4cd2f0da493f8a8a58fbe3999aa4d5a6309652985777e5f7e66cf252b93ed92b
23
59
2022-09-16 18:19:23
37686f77951d999e19fb5d3ad280bce9ade6b187f48c3090a3d84b6499159656
18
59
2022-09-16 16:29:11
2a81bc36ddc05f68616dd57c7556f59764338ec29419a68f403f5ef2cd9787bf
24
59
2022-09-16 05:09:10
f6d923848870474d5253248449f705c3a544fc7d960bc526519943863ca77263
35
60
2022-09-16 02:08:45
a143adad460fb2bb6697132157ee9767c6d725374ef958c2824cf95d3ac4d706
27
59
2022-09-15 15:47:35
a0c72f10dca1fe021e29fe3348e3085960947a34e6391d891b6035054d4b70c2
21
52
2022-09-15 13:48:53
fa70db38f1da6262064063c46cf59bebe50296c7212b8919d5496b77faa012f7
22
59
2022-09-15 11:57:35
6a45329b3524752d2aa792e073b6e0785b8e13666db9d96eeb9741d90e9156c3
24
59
2022-09-15 07:41:06
fa4046f8d4e14153bcefd1e2e3ee9bdba811f8d6b44e0a65972d3285fbd009fd
21
59
2022-09-15 06:07:28
6dd3813a848c1517db1f2e5e9c97802a776aebecac9a248d8d05cb150f425bf6
28
58
2022-09-15 03:09:46
ebde7da6e2429d0eff101d77175627e3516c604fb93ecf69d86687b504d9c7ff
21
59
2022-09-15 01:30:59
fe3b87b9a31e9bc286cc4a38ae7ed6d75ec12834752c37905d0234282bf2fbd4
24
59
2022-09-15 01:22:06
f942c36538134eb9da22db58d0af41680c18a716b44d06fc733bb564dfbf1f57
28
59
2022-09-15 01:11:13
cde0eb4b282052dd9ac69208f22b86c57c3b655baf3f5bc26c467578dd4df840
29
59
2022-09-15 00:14:57
a5926ce6caa9e445495f4c796c74e345d255a76b8bc8b149b5e8656cc6de1877
28
59
2022-09-15 00:12:10
62908f5c77058ad23342d01fa2e9e4029dcbbdfe4855d06829e290fd79521b64
29
59
2022-09-14 22:36:48
f4e4d29a9ad71b26a9cbf5176b90ef68e5a4983f750d702b6bc7f0afd7899203
3
58
2022-09-11 21:10:48
7029a6c8a61774d7de7f4c493828c02c77d1af87c4c24729f0252b282120edfd
29
59
2022-09-11 21:08:35
3df58e11dd62cc8a91c90fcecef0d316b4ae54b1e5f26049a1bad9c91e51aa18
3
59
2022-09-11 20:16:17
4dee8e556e2363680a5d9bcf9fedf9e3ae3b8d6f2375b032ae45f1254640202b
25
59
2022-09-11 18:26:55
0596b614f91ab698e64663196c4c7e8748928f456cff77d951acd2896802c513
35
60
2022-09-11 16:25:32
4390940d82bc8cacd8a5bc65b3c17df9f8af28fa8c6c3399039b2e26b80aface
25
59
2022-09-10 22:17:56
30fcfa7f6292d3d62578f625f181be62a222b0e6ea20a469e27fc1b23b94dbab
30
57
2022-09-10 20:07:10
b47b9c4374cf831ceb8e4daff36dee2e2351a76370e46aa226ae81a7c4004828
0
59
2022-09-10 18:51:11
7f6ed2f1a64b7966f768e2c2b4c20baa10a4de0bed00c7c18163e67e13dc0282
5
59
2022-09-10 17:23:54
6a5b24f1ab687ba10c17e8ca164ac195ad41a0f524ae19d3d4a3be7d9dc7a403
8
59
2022-09-10 16:55:06
94fcbf483bbf9fc8142f648f9a7cb5723d27a1b386ca7bbcd26e89bb95dba70b
24
58
2022-09-10 12:54:42
f2564455a358642a6534d4dbf2306ae3150fb47d05f50aa326d62b0845f1fa4d
25
59
2022-09-10 10:18:32
71b175ede4fa10ac3016c0469818035115cacbb8313205e7c11cad494fd04309
17
59
2022-09-10 10:03:04
8d68fc5c45cdfd449252b1e3e2ec8a1e35e00c83532628102e5f699a1190d101
34
59
2022-09-10 07:59:36
45784628e905554303e015df888fc3a7c3c62f157700e937b3f663e294e715d4
8
59
2022-09-10 07:40:34
0a53be8be486e09d0dd905575e732cda870373b7da0abfcdc112fbe34486a616
13
59
2022-09-10 05:54:57
3203dc5619c0c0ef55ec68de34bb9c07fdf853889ffef925a31a96201a56f70a
25
59
2022-09-10 03:22:27
e79332bc11f7b4b60b9ae75db8dd5e94791bb0c81cc6032c817cdb58feddfe79
30
59
2022-09-10 02:15:01
62042852ed9b182a359a5467661b82a4f5153988ee14545d46acb56d7149a0ee
5
59
2022-09-08 23:07:43
502c2cba45666958c47718be30711b0e4aa674d9b9d046d835f6d6ef0ef793f4
0
58
2022-09-08 22:16:29
9d091d2a13b8f2babeac64d769fea4fb338b893e057a0300c78f4674480d1722
0
59
2022-09-08 22:15:20
c3c592efb5ae0cc808276fc1ca034cad8054f8f9fe04060596adaf6c6d101dc1
3
58
2022-09-07 21:09:22
3047e1332ac348d7dd3d247fa4c435014079d2fa6fd6b298dec7f394261db1d2
47
63
2022-09-07 16:14:21
a8898ae1e0b9508f5bc2805ced91e3989ded46c0a14fb08bb93b092ead2408a9
63
71
2022-09-06 20:43:09
9cc58874a1314e639d0fc468d3a18bbe66bc5deea9443216d98baa11913d506f
4
58
2022-09-06 18:21:39
b2743f7047a7119794a28840403def40e27ff7f9575ef060c458ab4fe3e9aeb9
25
60
2022-09-06 14:00:00
a0bfa955d2bddcde702d3ea50449a8607ac45575fff7d2f10dac795b30770602
31
59
2022-09-06 12:11:00
dda0ac435caacacb4312fdca62cb13dca27281a165e75dfefdba107d86eef320
2
61
2022-09-02 05:14:29
cb836da56f50e139e0f36b8b7e0b39b87b1db6e6050987ecfd636431c15ceb2a
2
61
2022-09-02 04:20:20
fecf231ac83851aab14ece4482d31337257919107a8e8d5adb2061d504a15e33
2
61
2022-09-02 04:18:31
3d6366eace6901dd307a30c6a9ced5475ad53f15ec1ffefdbf2bba84a91b140a
2
61
2022-09-02 03:33:46
97dda7d1a6340fb1f79cbfbed90b3bd2e69c7d6d48a5a417eaa406c21e437feb
52
69
2022-09-01 04:18:30
00aa15f6668063672b21669e48a5b7c4ad0b88398e90cee7ae5f0be194f44b83
7
58
2022-08-31 20:34:59
939b255dc64f7ceb7d87df78c83ea90012d47ab32ad5fee3e3f47763210fb73e
6
58
2022-08-31 18:37:07
57e73e139dff99884e9287266ca4caf826e7ec3b5e93f737198c6bf970b982f8
34
59
2022-08-31 06:20:56
98fce76afac492bc6b38885671191e6a4cbfad36a1fca4f22c1cfd56436bd05b
25
59
2022-08-26 23:53:06
6314fc8f289c0c58cc2216a08ca047bb581e74562d09cb0463ab1e1306a7dacf
22
59
2022-08-26 23:47:48
32ec74ccefc7d7feb5c8817097652fc6014c6217f5b6a2695a95e680d6958153
37
60
2022-08-26 19:03:48
c61fe40f46226d24f0f17c46acc4db6a0091c68abc6a3d995b3f6df1bbfcbb1e
34
60
2022-08-26 19:03:48
e5c1cacc1e16872c8063e470b9028295f94ed83b559d4442a803f16c358d3cf7
34
60
2022-08-26 18:33:22
5385a798d136365b644199359dc2662de3b0d6c5adc09e4cf9cada074e8a9338
35
60
2022-08-26 18:29:36
cb62d30b9919f9e718aff18c03b2cdc7227265242b1981a75d3b4f60bc3469a0
23
59
2022-08-24 12:38:29
f190c33b94560e58541b3f2740b810b393ff194ae69724f5125a98f88c0c2aff
4
58
2022-08-23 21:00:43
0232c05a2df74d3c23e36133c54afdbd0f68f2e8bbf2b8aeaf308cbe408271c2
24
59
2022-08-23 13:13:40
02a8ef5905a4fadbd82284dd73e1893044461336b02cfb5acd1dc8204cac0d29
23
59
2022-08-23 10:05:48
a353db4cfd64f1876f3f99be6481189dbf5e770d71b8d03cba84ff551edbcdc6
30
59
2022-08-23 02:24:22
85c098adecf90ae9729b87821ee93094c2c81d96eae492a7a1f043e9946ed5ac
23
59
2022-08-21 23:54:27
ac054bd430cab4b8ceac3e6bdeef7640b220e7665cac590d4899c6e3b58aa5f9
30
59
2022-08-21 12:55:52
e2698875e316f75cd403c5cc0abdd2eb597e6fafe9e719ab7e612960a2886603
17
59
2022-08-21 01:07:24
45083332530b8d2779860bed41310613ff37e68239a505fe3cc957d118a33ebf
4
59
2022-08-20 21:19:24
8af0b95e1d25c545ac64f600605f2361c921739ccb719e5484beac890eff6fc1
4
56
2022-06-14 19:22:56
a692a8db038cc63bcdc44b617387d1f41a8f4d4d3dcac55de86990c0a6c9c1c1
3
56
2022-06-13 13:44:46
aed5ac2857511c96f99092337be854aedd4953f05a2dc06bf32d60132a408307
0
57
2022-06-12 11:21:52
77c8f41b5a6829e341e8d887df719bb4d8d768cc0845fdacd5f3481100f8dd37
3
56
2022-06-11 20:42:55
781de1ea55ce2b2cb7f20cfbb26060c254440b1a4842aabcc51044477c9d8dbc
5
56
2022-06-09 20:23:26
69357d30aba961f8fac95c8c8ea781bd27861aea63f25320562966e58389d274
2
55
2022-06-09 20:18:06
2238294eb732bdc669094d74be5791d6046a494d45b5baf8a4f4b1ce23208ba3
1
56
2022-06-09 11:47:13
6a0fd7e69fb9bf184da57fb780365e7afd01679721e109206b6b1fa98db21a67
1
56
2022-06-08 19:58:38
3aa16a340aacc5aecbdb902a5f6668f117b62e27966ab41f8a71a1dd1a08f8bd
2
56
2022-06-08 18:35:02
06f8989d905dc25340b9ef9b009f2e4029f237925ac61b35e92bab443605e480
3
55
2022-06-08 13:04:05
0237e36526ba09c9b097655845f86c1c1090f463219c21c03bb5bd2ab83708f5
0
57
2022-06-08 08:46:47
a59d6226e63f9187738c47a91ea1e56e6cd990f01352a79af4a28edb289a14c5
0
57
2022-06-08 00:23:32
ffbcb1ffd3b3cd1e6b0f0e579cb7645c8e09b4e4bc03e93cb0f068ab37712263
3
55
2022-06-07 07:57:14
135a4cc0c091a4f02a55420fb58d04494f2ce3919ddd6d739f3ad16f60ecf43e
0
67
2022-06-07 06:50:58
54c87bfb2e8d1a0cce310ef615e949f485ab63f8afd4de489824976c780453bd
0
65
2022-06-07 06:44:12
e49bc1d7d100a296310d3fd8c8f0cf117dcdd200d52696ca60bc855ef4f5840d
0
67
2022-06-07 06:42:58
06e46f5b35eccaa29d4726a21fa563ab6348779a5a791a6a206fdee990115c8b
0
57
2022-06-06 12:34:54
15407160a8e556a586ed074dd2c3494775cc77cec8675425884891074e7caf13
0
57
2022-06-06 10:54:19
b4ded381c95d304cc6829fbd0810698c216a04e33916d01e04727c7fdf36940c
0
57
2022-06-05 20:49:38
1f63e858b45dc8dfc3befdcf8d743ed36ca43acc31a9b5b6646469c317b26729
16
56
2022-06-05 07:13:44
b299e7cec8b0b9a52b27e913636ce0c4d7f9e4190b019517dd67833326f91e5c
1
57
2022-06-03 20:53:07
4ec47c2389c7a2deefa046dab49af519d51bac5155ba7a80a6ddcbbc6985676b
9
50
2022-06-03 13:37:32
f2d96d53f9cfa7c9b0fa4c0ec135cf4b3eabef78efc9799c5fd282796e64c4ef
14
56
2022-06-03 09:02:24
ea00e719127a30e72ffa6a2cf97730d687f74a4b61cb687f7bb3bbc1addc56e9
0
57
2022-06-01 02:11:49
4e03b26efbf9ed20c80319bc8a72d330c727a216e74c31cf97ccb5b85ab8f424
1
57
2022-05-31 17:24:34

Rule Matches per Month (last 24 months)

THOR Logo  Scan your endpoints, forensic images or collected files with our portable scanner THOR
  Warning: Access to VALHALLA is rate-limited - once you prove unworthy, access gets denied
  Nextron Systems 2022