SUSP_PS1_Msdt_Execution_May22

Rule Info

Name
SUSP_PS1_Msdt_Execution_May22
Author
Nasreddine Bencherchali, Christian Burkard
Description
Detects suspicious calls of msdt.exe as seen in CVE-2022-30190 / Follina exploitation
Score
70
Reference
https://doublepulsar.com/follina-a-microsoft-office-code-execution-vulnerability-1a47fce5629e
Date
2022-05-31
Modified
2025-03-21
Minimum Yara
3.2.0
Rule Hash
e0f735f93f2235960f047d8eea444160
Tags
['T1059_001', 'FILE', 'CVE_2022_30190', 'SUSP', 'SCRIPT']
Required Modules
[]
Virustotal Matches
https://www.virustotal.com/gui/search/susp_ps1_msdt_execution_may22/comments

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
314
Suspicious (< 10 engines)
137
Clean (0 engines)
101

Rule Matches

Timestamp
Positives
Total
Hash
VT
2025-06-08 22:06:02
27
64
175ac49e7a1bc6fb8a1caf1561d7b77412de1f40600717845d0153a8601632ac
2025-06-04 20:29:15
21
63
2bf9f86d5c05994302256e7ba79d8ef5ea0568f58b73eafeceb1085d2c359cb5
2025-05-26 14:09:56
23
63
3fdf926560001636e1fce5946884c60813d9543de539e9e3ca0b18a66670d6e1
2025-05-24 04:09:31
1
63
89cb2dfa41d2e1e8ef80eb5e3379e5962b2468cf798bc2605f923267c36a7006
2025-05-15 19:40:46
62
72
594bdd63cdd8019f9733993057e14dff37fef27407b2ca63ae2f8699eaecd459
2025-05-14 16:07:04
5
62
4950032708f1edbaf46356e85c6301612433282b042d36d94df9f6f61b89276d
2025-05-13 03:42:27
16
63
38042835d710439fb6bb85def79f0278a48893429984b3917576a2c92670a1c0
2025-04-04 11:55:29
7
63
1a4b6b2855a1d33d1e48154f1b6832fdf538436f2055ad880e4fb6a54e4bd1b8
2025-03-31 17:21:09
20
73
8c206876ef9b9997d7c7c5e035f70c53c050bb4aac9f7d10b1e02aed366446d4
2025-03-29 15:52:40
19
74
b6b207226392978d05bb7a8513864de071af98b4da53fc63897dcf27a137f0ff
2025-03-23 18:45:53
55
74
3ae19e0519f46282bbcbf0f5903c1ac6fd24fdeabc22e0b36489c071ae3cf62b
2025-03-22 06:12:47
58
73
2db0cd74049541989fbb2dec92a9fdf29b422a20f17b3a7a95e1592b26b87924
2025-03-22 03:10:55
0
65
068667ad0a93be9cecdd44ff71e9f9bf716a96341b5f38ff37cea7b7a6e19d99
2025-03-04 18:36:41
4
62
6205885e165bc6827ee34bbf3e23ff19d277ebd6c959786549218f13fb8f8e26
2025-03-04 18:36:34
4
57
d18ad0897dd2cd93c4c35bd187dd00b6be2cb9d5ae0c09ebe85dfe5ce73c4b30
2025-03-04 18:36:26
4
62
50be4523aa3ad1604c10550cc46908a021e2634d1790cf2cfcb1ecf6745d63f2
2025-03-04 18:35:35
4
62
f296e3f50c2f4c3806011461c92e25a759cf4e88ea61ddcb85d5c2d38ce1ae29
2025-03-03 20:46:53
24
62
0420fb8c9470b4bd15a9960fed4209e691aebbfdae4e496c7d7ee094db72e4d5
2025-02-17 19:20:44
15
63
994f15f2041805791b35eeafab4693aecd8c880049c7a7c8c7a10dbeb7e8ab73
2025-02-11 18:36:18
12
61
4c9b18a4a7a6230b741522870f636a25f0694953fc6183c9e9f4c6cc9131f537
2025-01-29 00:05:19
1
61
4f996605e67c78468f3be6961a5a6bcf1d3ce17002f5d42061dbb09c0799ae2d
2025-01-13 11:27:55
9
61
960bdd7e1ef46d1a5775ca3ce488244739d3b19259a345b5bd0e6d9c3a875311
2024-12-16 19:44:04
8
59
e13b21dbaa27ac12f5372f4a365438231981f39507d051196148a7011043ffe6
2024-12-16 19:24:04
8
61
cb49376cdcf3ba190b08d78a964a398921d5031ca8302a2e91dbeb06c4a6ee6e
2024-12-16 19:22:48
8
61
988cf2b6e3c4957fe1da9c78e99fa82fd14763e38f098d20ff66fae1bcde168a
2024-12-14 05:35:30
20
61
80439e9f2e97aec27cbbdc075ad309f9e55c19c696b89a667c1b4c444f0bb9e7
2024-11-16 18:39:39
15
64
3b7c9c08921abdc63caa212e1a90c453dd63c84acdd3eede724c4c852306f2c7
2024-11-11 20:11:32
10
62
fb91830e9767e9df1f2e58b95e000539ae9adffec48f80547260c1e6b3cd0799
2024-11-07 20:48:11
6
61
c0c32e05f663e6dbeea4bb3e78a7ddce844debdf992cb63f258eb8ac2d89d663
2024-11-07 20:47:22
6
62
e20a63c9832ce95e468a053437da2f319569e81d2fb67af966f968eeec040b37
2024-11-07 20:38:25
7
61
1879179cf39edd5e0db0bef08c768ae2adf6f44e806c809d738fe551c68b82ab
2024-11-07 20:38:25
7
58
2610a01fa14c88609cdd92646ea775040e67f35f548b70ba3e20e89a1aed2473
2024-11-05 19:04:05
0
62
f67773e2651625d320dcaa49d07a8b513da7fb9205aa6cf9419a13c031591597
2024-11-05 19:00:30
0
62
3dcbd2e3af0122c67088d10f965384eaa7356695bb39264fcaf0085feeaca08a
2024-11-05 18:59:18
0
62
d19941704833f73ecbdf4c10297413d754f87566196886c8c9a4585113e29147
2024-11-05 04:55:21
30
62
f5728e097036980dc146d639d5ea4de2cd4a7084473dff76e6738eb89ad055c9
2024-10-19 20:34:43
9
56
6a9e4b8496d070f50322808c9d55943504d24f9b2655e5043149b2561c9be473
2024-10-02 01:26:28
9
63
036fb957f48d8d05d42abddf9cbad620d8fc1b0a8a5929b7300869439f4673ae
2024-10-01 12:32:17
20
63
6ed4bb06c5d89bb000150da3078878b14ad9ddca0e0794f83749857ae7cf0b89
2024-10-01 06:35:30
6
63
ae14d1fe7f6fe4f26aa45c5d2fc0d5d85ea9258eb8526add80420390753baf71
2024-09-28 01:55:31
0
62
defee139740441e39cf272a4a526e7957cb078aaab7a7934fb4f78b4a9a270ce
2024-09-17 23:30:06
7
63
10a53b4d8befd7269bf59386166f657b70562d75e99c6f09dbfdc77244bab073
2024-09-02 11:37:47
0
62
7db6b5eb4453ceed23f654730bcc9091e0167ce0b6f2d4a00062746cdc8594d2
2024-09-02 11:37:18
0
64
931686b55b40a658a58b69f53932c090eef0e7d1e722c13e9201bcb638318e14
2024-08-23 13:44:11
0
64
d223ab556f0dffb31f243296a40a715dc4b1b376787ef577b42c0b99558a9f10
2024-08-23 13:43:03
0
65
4a22598ff63a6ec5a55de025caf70b46c15653d2500a7067727c7b5a7b9bffc5
2024-08-17 17:33:20
18
65
1d07c8f57e95c9af70e09d3b0fa89f6c2461529a0deb6100fd1dd2198fe6df76
2024-08-13 06:13:46
34
62
1eedbbfd5b379e84f14fbd2b6e66e3f926ce293175445eb19bb661f78abd7a26
2024-08-13 04:27:49
36
65
02687e7a146f739bddda7035b1093d5d02b18dcca06982cb72392a804171cbec
2024-08-13 04:26:31
32
61
e67f1397c7cacaad900bcfb69f4ac48b8f268754c9d7a8d659da33022696f527
2024-07-21 15:36:03
0
64
085d421b24b6ef5070b6ee61ee4d6d7864ecd6257fdccba31b8485fb4c37d8f7
2024-07-21 15:32:51
0
64
640bc80d3e4e50ad037ff922fa8c4f9d5a958dcb0bdeb2632830f11bb07236af
2024-07-19 14:29:13
19
65
d5ee91530b9605cb9afeb479d6a69c01257411f74c8dc3c71584e512aaf882d5
2024-07-19 13:38:02
19
65
4891e4dec9aa49d1296501463d0f91c1267f41ddd1fccfa23f2dbd00990c3410
2024-07-19 12:50:05
4
65
5a105a3074b99e4548ab4604dff7f041e91bf3fa5eb379623bc10bb0258281bd
2024-07-19 12:22:13
18
63
07f6a4a3698143c0d9070dab017c09a9a931b6ba0c1fd08b816b46070b312502
2024-07-18 21:34:05
32
62
9602a0b7ca697f31e30f78bbccf7b3c6c14166543d0c270582423166fad0cfc8
2024-07-18 20:15:50
19
65
90c5bce77afd271e609d0eab197129cdcde219bc9eb287882b0a9bf46680c440
2024-07-17 13:09:42
7
64
4c99b4580387f964e2c3641428d86ffb9d68945c9668bc9a9289d45d0768e507
2024-07-12 02:38:14
8
64
1ae8bb6e095f67ce57457ee1c70fd2e1c61c652e8ee490421cf7f28e39c4a79e
2024-06-21 17:29:29
0
64
97fbb91f3892c1b3dbba877600bc3c995b25f06861603f6c5922c1a6611c2af7
2024-06-14 19:55:39
30
61
b1c042ba902ad0697cc576975d07098f61c5c95862e063d8e9fca03ab8153434
2024-06-09 13:09:32
57
66
1e7937462472ac040743fbac3ce5ae4c0efdacc3e8e734949296675a5a428d1c
2024-06-09 02:29:13
7
62
772784bb776190b03ec7610714910bea09681cb3e245cd22c1b09bd50d572378
2024-06-06 11:47:22
1
63
2897c0dbf749d1d3cec4df86a69a08aeb2b1f7352239da071ddd7e5d6dd9b70b
2024-06-06 05:49:19
17
64
b76200818412951520ab6359b68bd8f870359f067a0e04c169ec707b92e52877
2024-05-23 15:16:04
0
62
0cd493e6c5d058c5d1f7da832f192b1362f211767641f8d4a2b48e8a6332df15
2024-05-23 15:15:11
0
64
ca78cfc5eef9ad0b9c4a3f32634ef3ab7a55c39f7418c7759d94e47022c8fe28
2024-05-21 14:35:02
28
62
016e1640cc2415c37b2603c9ce8a229aadb94d429fc6e6b841455c7912d6b740
2024-05-21 02:23:16
57
74
f43f6611b852ecf8152bf07e3016d9440653d1b92fe80d6744b74d31ba1c079c
2024-05-07 22:08:47
28
58
664339fae647fff86575df3c4e49f876b7ee85c8b39e3530c9ebe00daa95b19e
2024-05-06 18:12:50
1
62
404fbc473ef5f9421d48903b8d01733a7696b139f1be3668f10de001db27f03c
2024-04-21 00:02:24
31
59
5687444bbc090502e9f2cc47c141978990f35cca996886d8576d5ac0ef073e89
2024-04-20 07:10:12
25
55
6aa25b1232d73dc8819cbe3dc802cc07d927080a412ab26fffc9ab7257ceb819
2024-04-07 07:09:23
62
72
1da865bdfa67f76630ad6b5a98b8f4bae4dab8f718f064325ebdacb0d5a6c6a7
2024-04-03 02:11:19
0
71
be8218882c2538282fbec0b0f6f0c4fdea99d8824f9ecf31b1934bf980ddd02c
2024-03-27 10:05:42
0
59
b2c5520739635c6b4ce8ca2390504b545cb785af510dc473387eebbfbcbc97d2
2024-03-24 18:53:17
30
60
2bed529c243e4c5a2f2349aec5fbd8fcf085743ca8fa89c99fa5af4bde6130dd
2024-03-11 14:07:23
29
60
ffb2831618068bd2b18f97cb3689561efe78f8b70168914a3150443dffb80db4
2024-03-10 18:03:39
34
60
71f3888d74e370a70fbec515140e153dbfd96c6af64765f09b372997e8d1f6e4
2024-03-10 14:08:12
33
59
765ba2fbddfbb58c07cf49455f75e7f7ac0e93b1a3219026a851e0d9d7f0d97d
2024-03-09 09:07:41
32
60
cc8838cf119bfdc413fc0f466e9d2d18c35eeafaf0f23b70280651d51ce44d54
2024-03-07 13:21:05
1
59
0e5dcf8cdfe302f513e3fe57d01be9ee2f897d34d7cf003524377c879e162322
2024-03-04 19:07:26
2
60
13cc040dbcfd6f17b6279c23ac44e0042723dfd2d28bef9753da16e6ff748cce
2024-03-02 23:02:58
9
60
e6915c68b17f7c320d23faa098218c745dfb6b6ab554863e815cccf9477c01e0
2024-02-23 07:10:33
2
60
74c936f88b58100dda8c1c460e3c8d9430a1d7eaad2912d53f3ec8c191f82bf3
2024-02-19 08:10:15
61
71
b5b637a570e597593de606ad1bdc5224bda51772ecf88bcedb979fc2bedea5cf
2024-02-18 18:25:02
60
72
a2c387d2dd984d9b1cca09cf89b6d36c8754b14a22825a59e8d31c5bc478aa47
2024-02-18 10:10:51
62
72
afb9a44df7fa6fb5527d357498018e0e1b037b43dd909aba36a5fe40fce8eeb9
2024-02-17 02:02:30
56
71
bb50184c1975fec7e2c958e867653b29c765b1a867c845879606276fbdfea99a
2024-02-16 21:23:09
10
60
be179001e3c21d702adfbc0415913521cc94aa0c36c63ceebe7a620a5bbc01a5
2024-02-10 07:02:52
24
60
646df9f7cef67b3a4e48937a4cf0e560a55e3718d2aed190c34d078638b3020b
2024-02-10 00:02:08
2
60
24087023a4736d8c73ac9aef5fe7797df781060c5cc96d79c15ae2ce1e011eee
2024-02-03 18:02:13
7
59
18dbdcb5c1388fed71803fc7587251a7bcd9a99a24978d93e894322528af6ed8
2024-02-03 06:07:29
10
58
ea9b2b6a2eebaebf3abd6732e994accd9c96a807103d481346a168093dcf11c1
2024-02-01 22:03:33
8
60
2c0e59d41f39c1a264eb34f9a2d924b481d165b9bef29d10bb9ca82cb6e3b086
2024-01-25 22:06:26
30
60
9f38e893ea09eca46e2d647ad488d4486c142c9dd0d7ce5eb8bb32ac86129eaa
2024-01-23 04:12:30
4
58
104ae9228bdc180b6ff651a258414c76368a2063a3db45889fcbd067f0ff4a70
2024-01-22 18:01:13
13
59
ab3f70f685be4de79b7c61d7f2825e6329f954446917d6d878886baff4fd4985
2024-01-20 17:30:19
19
59
5e4b4908d1525186cb7e581edccb6ec7a3bc6589e78afaaa7d34155824ffbcb2
2024-01-19 12:39:04
17
58
d9741c4ca10b5033d8db1b5757dc410ea8759510ffd01081167913f058968856
2024-01-15 23:28:29
13
58
8bb927fc130dc7e3b3cddfcc4f2f3befeadf967888947db8dfb02c10f307484b
2024-01-15 23:22:16
13
58
01138ed916b07c18a6a487d90105360ca3bfa45e0e61f16a4797ebff053943db
2024-01-15 22:55:24
8
58
56a148689f0763717bca40113160543c6bf8f98907e13bd452291ab6b2964502
2024-01-15 22:54:16
16
58
83c861ef02a46b827186aaf31e904ecd4ff4fe36cdaf182fe55c1d4fc58a7fa2
2024-01-08 09:18:13
60
71
79d27402b35d42f506c3f1d689485c736f8721ba6469d5d735c128521a3c089d
2023-12-27 06:02:51
17
61
0894bb1add181c995c4e1d9fc7318cd3a86c0556126848b69404a01ad644672e
2023-12-26 06:49:34
20
60
0cafa397c050995f4d77bd7ec8c84ac29836d2e0b7c814c3ece44d88311cd5fb
2023-12-26 06:09:25
21
60
e79771e569a8f0a12bba91760d6c9b3c1e0319ce5baabc82e81c7e3032d9da0e
2023-12-26 03:01:02
15
61
ebd20fa221537139dbbd0d7dd2eaa05175285c9fdc52be0b7596aa63227eb5d3
2023-12-25 02:04:54
21
60
b777454420f2f8e03122df7e815a44de56362bba67aa34c73c25033fcdf71047
2023-12-25 02:02:31
21
60
b91e3e2102ec5ac2de7934944553e07c4e8eb2b757aed2bf805c2a6e61695bd3
2023-12-24 10:31:21
0
60
4c71c9e64d7ce7c5bf86d5a5926685a4809ffb1c81f4c5a4148b00ec91b15d53
2023-12-18 05:05:34
5
60
74536a7ea75b56d912344c59046edbb50bff691d772fe76d0cbad9a403007f61
2023-12-18 05:04:45
9
60
a5d0a6d634cbd0081854b0f7a61089dd2d67cefde9f8160dfb2ce7f7ebcf132f
2023-12-18 05:02:57
3
59
2f38b2f01f2cd80c291652dccb999ca7d3aa1f4fc26b3c683fa97e599f51edb0
2023-12-16 22:06:08
30
60
e026f6427fc3a831ead244d884282e520a66330480f24628be92da19003e5c09
2023-12-16 17:08:27
35
60
e78dbcf9eb548872f3da21953f67d02a0d157dd12a0194a044a07eea47278304
2023-12-15 10:28:53
3
60
5f93bc2880f44e4fef911f3a565ec4128374e52738a675af754b004bfec4f3d0
2023-12-15 10:28:37
2
54
5b94c2ee65ac686a59afdc3ea9cd14459865e7654a30c458304a72075ce30225
2023-12-15 10:26:52
3
60
405cf4cad90b22fea4b835a2030783c7f72db4c32600dfc4670f328305af9114
2023-12-15 10:26:48
3
60
a20e33ef861be69b9a7f365d99b81ac4cf8352b6de8ee5af76d239da759292e7
2023-12-15 10:26:48
3
60
54cec5a8020828a6da780dd85f26bbbf7cc9602091b9dcdda9e902e3ff8d813c
2023-12-15 10:26:35
2
60
30a7ee1f9a5b53b1b014ba2fbe2bece87cb219110f59b430abfc61c744dd193f
2023-12-14 12:15:32
13
61
3c467a8a21de1216ed597961164a71c3b5340e0827b31e87ae134bc479591e28
2023-12-14 00:18:19
12
61
8ec02a974fa95aacaaeb17d59a3d2c3fd85dbb5245ea0a343149cba5fd03cc88
2023-12-12 01:07:26
0
69
d8e0f7f78d3e3ec5302b091835888b50f1cf42ac121c1a098f8fa30b34507cbd
2023-12-10 14:59:31
13
61
01348b8a7cc50d5a132066b602faeaef4181c96a5fce6441081df18e104204c4
2023-12-07 18:56:12
4
61
49170d558455630f1b3371dac46ff502be5c785f4620209a9653a3777be399e9
2023-12-07 18:55:02
3
59
369f1ee271e102c350b314fac9b1a300b419352049d3aaf641d79496ec12797c
2023-12-07 18:53:52
4
60
76eef755a6fea04667a672a62bb7ac6d52c17c861623ef4cfa1651f44109808e
2023-12-07 18:52:41
3
62
c96ecaaf1c6730b278af0058667e7cc2a618bd7e22ab8671c289e892f1cdbc7d
2023-12-07 18:51:26
4
59
ceb0abac118f3399af987839b1ec706f566c2afac1b28406f3dbfcc73214c0fb
2023-12-07 18:47:50
3
58
704f270f29357563e5e0246b8a0e47a17c5d8950f739123076fe945d0e6b6734
2023-12-07 18:44:19
4
59
c12ea495561abe62e4b6f5e23b160337fca166b31fa1c04b6e8812dfd883d33f
2023-12-04 18:51:05
5
60
f58935c32026a0781ee4066515131cde6e83f20669d4e81aadac99f0e5309c14
2023-12-04 05:07:22
12
60
6ac94dc4de0c7e0127b10835b683c0814e12f69e123b0a05bd21ecc3e3a63d35
2023-12-02 18:49:55
12
60
03031f8b0c78666aceb4b96d04457a414c06d65960552612ee61820290a4d350
2023-12-02 00:27:11
29
72
5af5d6613ef12a6a17c0d8ddc6aa9fc5e7cfbd1102bddfb227fdd7b8e2e129f5
2023-11-28 21:07:43
9
60
d584669fee04537618595ed09b82f9a9b667e2252f839906ae4270dea3d3f26e
2023-11-28 20:23:39
2
71
04a918d223cb9b6cc0a0989ec9cc64b3efcffeac28666cd55909220b64bbbbbf
2023-11-27 13:17:27
28
60
59478071f8120ada3538fe4765abc56e9f7a9b11abb90a85d932d5ef2db03bc3
2023-11-26 04:05:20
12
61
63c819593efdad6ad1e529fe7a98287bd4b98243978ce1a0f637ee3bc0cc1cb7
2023-11-26 03:05:22
12
61
d8282f8671d0964ec20214b594fff57729c176354fa9ef72b9fc05c20d558d7b
2023-11-22 17:29:25
3
60
b86bf0b877ac6913f89a8ef814ae983efff2d6fceecb62a99f3e0f1acee6d4e2
2023-11-16 17:10:52
19
60
c111084d4b18fa6e83c91027841ecfb306cf4bd4bda89f365c996627493bc066
2023-11-14 14:53:53
11
61
3d1b6f419ac6e6d77f1c84062c51737697720acbb49098b8cb4b562a7eb3872b
2023-11-14 10:15:22
32
60
a407f763cf9a06b0b5e0fbc12f35786e6e08ef55383457467b86ade6b899ccb5
2023-11-05 18:47:21
29
58
3e8348dcfec37e0ea719aa45ec6057a6186c385b065d79cec3cf9f69fcc7f7f5
2023-11-05 14:20:51
32
60
bdf106325d918b0aaf3ddbc64964e88c1239e92ec25adc4787c14bd861d10a65
2023-11-04 16:09:47
34
60
df0103df2f927c83c39151cca1931995478a51ea142d13b40382065fb48ed600
2023-10-29 23:07:42
13
61
49dfabc5a2b9748a7ab011efe70971d1ec23cffd70bbff4cb955202c432f3975
2023-10-25 01:32:05
11
59
cfbc190fdb5c2dc278c361765f0152b51205b5a6f3d90cd8b6ce02aa1861f08a
2023-10-24 01:20:40
0
59
aad3b1026d1a4926d389c19696356a212f20e1d378672678a4d0adc72ae20a50
2023-10-19 22:14:12
3
60
f8095bc221a592f8351441141b32cf93fdd4faf269cd1e54bfa37d053feb6409
2023-10-18 19:13:24
8
60
c359200f5b27e1844fc8cac1cb96ef881e05baaf4bf4a57803011a6179017398
2023-10-17 17:43:58
8
60
2afdfff61e69b0623a5aca2f2b1ea29b3f44e7a4301a3af25efa08b18339ec10
2023-10-12 21:21:44
7
59
bfeb9743ff047d5a8336a0b9ba48d9b56f9326cf66019c8ff89708711e66e9cb
2023-10-11 10:51:52
20
59
7f3558787c4c3a3d086970ab77f81d8dbf44f051c93c3c9f5489846fdd0d2502
2023-10-10 10:22:59
30
60
710ba4bdbdf9e969b4ba72a50b5562995e626e6a6ed6839abc7b9cb6970d247a
2023-10-08 19:42:33
35
72
cc80a015cdb7a20998730343dccf4be8e6493856bbdf0e6497bc84443361cefd
2023-09-26 13:17:19
8
60
7d271849c2bfa7f0318c34531400cc491cecbd78df143bebd36b27f235ff85ee
2023-09-18 17:11:50
26
59
f663e19d6a6c0e25596f113a0d2b6898758fe6d4647b791b5aab38b49c04fbdc
2023-09-18 11:19:59
32
59
4ee2f3c721d2d6d9bf33d7360fc857100960cf444bea715173aca7f18869196b
2023-09-16 10:27:50
25
59
ff6c6add61189614abc7083f2120ef691b8d92ead98bfd992cae4af03195ad44
2023-09-08 16:19:42
3
59
171659bbab6372cf1060b55103aaac282ea872b877c76b0c24cdbfecaa52201b
2023-09-05 03:20:48
33
59
4027e1266235592d3b641f5fbcb5f7857ac24e89bbf2931f62828211d3878ab8
2023-09-04 06:12:47
12
60
7d6db0ec4893750c954b8e5ab10db249bb4beeb203e861c694fb73909449625b
2023-09-03 14:01:37
30
59
e51087279cac626509e7e82962856391303bf32d2e1e5caa1ceac019db158f06
2023-09-03 13:40:13
32
59
289ced61e402ab3f1b5f86fc02838336a0f19e3b5197f08b61df7c260c1e448d
2023-08-17 14:57:58
14
59
dac075e7dd97112617f5403224cfeb444cb2195c1ff9e463aaa3e91a496ce388
2023-08-08 21:06:43
30
59
7c09088850fb0dcf0d22fdacbab2200aa31bd7b66b6d477f7b61e3707e612d0a
2023-08-02 05:18:44
31
59
86980f2edb652cd4b9a7c04e08c70818def06aa2c24c6b0297690614bcc9008d
2023-07-31 14:09:40
28
61
3d0d776aefe3fb4549a289b00445e81314efbbcfd147f57f52c9cc1a0a82c297
2023-07-31 14:04:39
28
61
5010b53593efa567fbb5fb2362da7ad5a47d69ac950bc72f9fa49787b7362a04
2023-07-25 09:13:53
59
71
eeeee9e2065233560db05e67376996ba3dfdd31df1b39339cfcd3432eba6e893
2023-07-23 17:00:32
27
59
5058172a86936cf2b20ca6f2a79fd18acb22d716ce3acc62b81ad131d0bf3261
2023-07-23 12:14:48
19
59
07497ac948130ca09d0dc517dc7359ade719ad99fd2e58a41bf8c31856b027ef
2023-07-22 00:24:41
32
60
8e0f87c8efefaed76b706d6b72e07ec75566b6dcee7622e55a2e2a5339f200c8
2023-07-21 10:01:05
32
59
3a018d81a422e39b48e88e91337d949295d7b2116452b915f10dc35f68052e14
2023-07-19 16:18:14
4
60
b4ed6f7d3d2af0aa8f7493a1874659b08622133f1224187ccf7790025cd19125
2023-07-17 23:15:03
2
65
68c76cbd6993c4825e055d823dfe13775d13948cbafd0c1905cc3f12f24be5f5
2023-07-17 02:34:43
4
70
4b91e48b5fdee5ad9b12dd6e3cf97391332397c601746db7f037ae7a529df52b
2023-07-03 07:18:51
19
59
b21efd38bb87734a7e2ada0ee934d2e861ea82e8e323f7833fbcc3972ddd7f8b
2023-07-02 09:20:59
5
59
77d068bf127a0bcec7ede15957d973d04f9a725481bb550428e994cd31369f31
2023-07-02 09:18:26
7
59
b43644710689dbe17fd9a28cbb7832256cdbb3bd63dd50913bda669d2c860c8f
2023-07-02 09:12:28
7
59
f7c11578d338ce7583d4a01d6107fdf88b986dc31718d93e5ea484ac0ec044e7
2023-07-02 09:11:10
5
59
dcd59ca620afaa2bba4228ec3dd13a2014f48bc6b5b12748e4e592a350875bf5
2023-07-02 09:08:29
5
59
1576ed8315aead5763c82f937698db320b76e838a1d93fa4291b61a5adcb6e03
2023-07-02 09:06:20
19
58
93e57b7ff6658d8bb3ba2cd12689cda4d3dcbb70621853527dd985140676f32d
2023-07-02 09:05:14
19
59
4eda841c34ca9af5ddc46ec1fa1641ffb1b861cb8a17e2bb0d7c3927d1f22fce
2023-07-02 08:57:17
21
58
a44fa6c8d2783133cb6a4b35211e38c59511cbbc0e655681d67cc6801196f4a8
2023-07-02 08:53:56
3
59
0d00e10c2413f4ffff257f166ba0cd57ce5f3e018ad93f2df6805e4b72dbe2d7
2023-07-02 08:52:50
3
59
cbb8fc629c5e880ca92459d51eaa5489d9ff6952ae0063fc82a4e529f8478b76
2023-07-02 08:06:49
1
55
42bd9efe6fa5a65e141f2f3d66aec4c588cd78292a30f3af57f1b24c6889eccf
2023-06-30 18:29:13
55
67
9b82a37b518a2e5c5b11a0a0635ce1334806d7833701faf6d1e1bb73c7d61975
2023-06-30 15:46:39
22
59
15b861506bec22398197430b6ce09a084aeaaf2834a22e758d6e0bb24f68cead
2023-06-29 02:35:02
6
59
944eb9d39fdf5c036e865f3a9ea51be6cc3e854fc35fa2ef98cf49c71414251e
2023-06-27 14:04:44
16
58
b425d9c7a2d08d9f0e624bde647e7b89fd47a42a5c611eba6cca831028c3b98b
2023-06-26 02:20:39
4
71
d5d8b9fadd07bf37b6f1934445a841c42542d56789ae73e5f0734bc255d97a17
2023-06-26 01:09:25
5
59
ed549e0ecd46e72ea58a659bd20a529c44a7cae935d52cf7dc43ddb9177d46a8
2023-06-22 05:04:33
29
58
fe088ced6a10ee342b890ab9a06b986891328123bc58822218edf0d05e6f86ed
2023-06-22 02:52:23
32
59
45aad30254cbdf52d4396df08494a1ea0ac7d5eb9672ae8fa6c2320144266e17
2023-06-14 22:15:48
8
59
696813c2a2aa6d314b09f493bbd40ded740ed019feb9931451a9c39075b53406
2023-06-14 16:16:08
34
60
6c0cf2f2c26c939b46bfeb0c28a74df9f24a084444f67569764b8671c414ecd4
2023-06-14 16:13:46
34
60
50173e012f1085ecce27632b2833aea0a1411ea607fb1a5951b50d1a0c1ecd94
2023-06-13 10:17:41
13
60
d83b67a1e2fdef15aa739a71e5ea2a6cd51304dbd9f0e2ec06001385af61a61e
2023-06-06 07:25:40
0
69
a9db19f790f7551b077dad9c61778336e3707b8886e75eeb0529b4debe96abbc
2023-05-30 23:03:33
12
60
6e26216c740351f5460a2f51b4676606d572fd3012f57fb9e154a34d9242d6ea
2023-05-24 15:10:28
11
60
076b22f6815cf168a813fa64e7f0b7e45d5312de16f8c9e65593160cc2c9cb1e
2023-05-24 14:17:58
58
71
7e44ad45a0f3eac8b717713ff88f60c005a336242ce5a55d26b4955389a184dc
2023-05-24 14:12:23
58
70
c966f786d559c2e1f2ecfda9e31cac81c82684189f5a02b9772d9e1860481dac
2023-05-20 21:17:31
13
59
bf53071f112495144dd2ea2d14e593eda2f56ac16e02f4683b55e8a5658e3d3c
2023-05-14 01:11:38
0
70
7728436b9fa9c28588fecd99803c47e39428aa5bbe8073e43b268544ee2a7ece
2023-05-12 18:20:02
32
59
032fdad80c39d2b6613a21b312dc0cd4d7529c07571808ce8734937aff7307b1
2023-05-09 09:07:26
21
58
fd7586b26d2f7e38c6df01a4f91aff6a1a89570e8bbdc335e05a980c598aa798
2023-05-09 07:08:15
32
58
cb10f205e0f03a41eeee2540b41457e377ec955de256a25302315c969301d0d7
2023-04-28 11:14:24
7
59
79cc41bd8b8ae9aa039c9e2f53220fe752e77fe33b0d77095533df0d713c47dc
2023-04-23 05:08:59
0
70
600040e11c0ca8ea89189f5c2257f745fc6bb481da790253d71ae331c96d10f6
2023-04-23 05:08:58
0
69
2af45e20f907d5af7e8e4c7f744ceffbab663938d37ffdefe9880f09e20fd1c6
2023-04-22 08:12:50
0
68
8144783deb1e9a37a6ebabbe11ffb9fa046f50725c96f50821e5216372091878
2023-04-21 15:07:40
58
70
25dfb61ce28d855efc4b283166874ee96eb83d822f399635533d76b904796511
2023-04-21 07:12:43
25
59
e869473fc666e8472a7deb489a10f558f16e6a74c6adf8f3d6f10c54a6a731bc
2023-04-21 07:12:42
30
59
6a5b275994d5d5007db6e19abcee4e1b441a6952d2bcd33203edb7e35a239248
2023-04-21 04:19:42
32
59
23d30df1019ef12f9d59e37c0043ac34b9c54c8f7e603b0e23593db8f41e320a
2023-04-20 04:12:30
32
59
e4c4c29e67950d80c38742b9e3457c50f97ca0b617a2d5951802a538c0264714
2023-04-18 10:13:03
26
59
8eea20e7829b737dec6aea0ecc755c343a5c9166c3e42d744414bad895753625
2023-04-18 02:07:39
32
59
e21f4b102054ff65cb8539e151226b051ce3b36866fbd7b02cc89cc4fe8a2078
2023-04-18 01:13:12
29
59
2e9bbfcff8bf29774e64117e2bcc9b8afdd352805d0b6ff21d99c2ff1978f8ed
2023-04-17 00:19:28
26
59
773594532298a31d2dba5817f71730abb079363cadbbb34c57cebb89a591c228
2023-04-17 00:19:23
25
59
52f8f756babcf10e05aba36f0a86527f1e652c5ef6b538592ea79e4120429687
2023-04-17 00:19:20
21
59
aef0bc7478b7b9d453d8e95c26c1f10aa864335103106e7204655dfe93cb25d7
2023-04-15 00:08:49
0
70
a6490764509e1e4c745a7f4635cebd49fbe284cec22d7957310c4f8b4d57026e
2023-04-15 00:08:49
0
69
cddb664c65792179faa2f83c57a7210abb9b53d0dee502f173856362e5dee5da
2023-04-12 13:19:23
33
59
4bbf61fb4c7f90200d5daea7a83638f6f3b8b72cff68aedb9053fcff4918ac70
2023-04-12 13:19:20
6
58
31ab16f52c869c8acd9dc48edf1be359c32a1845f9e2d9ac277a03d00967b34e
2023-04-12 13:19:18
26
59
bd70e892e10c51782a3dfdd25daf4ce72d84dea8e2cffe49e0713a4102474ea9
2023-04-12 13:06:22
34
59
be9511752ac507ffcfb37aae843445c52aec4bbaf0954652d3875095a651848c
2023-04-12 13:06:21
34
59
6dceaa1743e6d728aa5374c47e6142dcda168d2b08e10606accac6eb0e9b54ad
2023-04-12 13:06:16
28
59
c858774119e4bf466a3b001a1cb8a846ebe4b82327b2b3376d55749f2bbd9edd
2023-04-12 13:06:16
34
59
6cbf7beb9fdbcd07dca8050f08ad00918bd2157ea21dffbb31379b21eb3dec92
2023-04-12 13:06:13
35
59
e302ff011bbab714ee7bc4078bc8f8ac4fea0a8c7895feac55a04ac3f500ad1b
2023-04-12 13:06:10
29
59
0ebba718bb5d6c66d0153562862d9490e44f2cc732c3573d2bd72725cb7dcb68
2023-04-12 13:06:10
33
59
ee73c63d169a072919c2f175b27526b0a0a184bb534f78c8119c2be8306070e3
2023-04-12 13:06:05
33
59
f83af25caa955f13be4eca9fb49b124560f12bdbbe2d6cd64be1cdea24b1a673
2023-04-12 13:06:03
35
59
386ac13cdb3b309b528c6ce39be6b712b43f8b8922cd19e817ebbe70b67133f1
2023-04-12 13:06:03
33
59
d41220ea115cabb8f22d8f12c8bbc472494fedeaaae5789be7b6192438548143
2023-04-12 13:06:01
22
59
90765cb6649e57b98ab643d89fb50c9484391360252cda20c3a612943b1e64fa
2023-04-12 13:05:59
34
59
aac307d879999bd6b56ca128f1f35b333fecd58dae54058aa73e00ee7687ff46
2023-04-12 13:05:58
26
59
c0c9392b9334eea2cbe73485ee9c63f9e693908c3eb87f77b94a69eca394895d
2023-04-12 13:05:55
34
59
01a6368d9dfd750378b5909f1bf1f9bd79ff9e9601f25b4b67b27da8495577d3
2023-04-12 13:05:55
34
59
29ae320f6fa72309f4440f3c32204dade0ae801f91fd5b8448236535cc0bddf3
2023-04-12 13:05:52
27
59
068d800c7cfa14231127ef8976ec98ebb407276768487fd111639265ce46fa5c
2023-04-12 13:05:50
28
59
acbf968c3919edfe33f6901135df0ee26d171444813f1f29394563fdac902c40
2023-04-11 21:19:28
15
55
fce82a878baceb1fdcaa1450ddc508e80df104587c2c9735ab65a7834c7bcf15
2023-04-10 19:08:42
9
58
9ac6968b1bc2f9d3f072f9bacd9e414d4c027e313e737c44aea3efb0d4ec2802
2023-04-10 14:50:45
30
59
eeb4f75bd585d54f94bdf0c37070dfcd7972779ec424725348bb497519107b26
2023-04-05 07:11:03
0
69
2586f99c555c77ca20ecccbddc26a30e0ec74e7ac1f774940a8ee01962a3fcb7
2023-04-05 07:10:32
0
69
75904111c34a461be0d6038aa929618f33809d8d2af27d64f8565167587d23b6
2023-04-04 14:34:41
20
59
ae2f202b69d15676baa77c4f1f16dda1d1f524172f99b06fe5a2dbb5f0f599e2
2023-04-04 14:34:05
7
59
b631f6c8b38c1565b372b0af2b9c8589bf9cf91aa6f7c7f18e523a23662a788e
2023-04-04 14:31:58
6
59
85017c355f7544a8ec3676367cf01df2803c0a2dcac5f1b75a4db0e6b0de7e04
2023-04-04 14:31:29
19
59
808322db881449d2e3a68c71709edc683cebfd7b89846d0a55303e0214697762
2023-04-04 14:31:29
20
59
800a769983c44b7a6d21c746ffe1c5108b0e73d1a2a35a1691a9126eacb26bbe
2023-04-04 14:26:10
2
59
3b5fdfe19974d64b7018f4e3e0b68b850df3881abdd67efc068fa518b51e1773
2023-04-04 14:21:51
3
59
014eee6d2a24e82b7baac1013dc0f75f73a6a64f8d9352133d9c8160c83c105b
2023-03-30 15:22:54
22
56
dba860617762bc713771de351026eb683546b37489fa0359064948f263438030
2023-03-29 02:12:02
29
58
f09feb0723695147f6ee55b9a8e0610689eeb213bc068338b419725f84d547f5
2023-03-28 01:11:11
11
56
6816a426ca7e0fbbb6c557457652881ce5cd72b3209489f7c1cfb72838badb9a
2023-03-26 20:13:30
45
69
72ad7d3998bf281ff18851082c2e72699b18e837f8ba308fe25a4736b90f9c2b
2023-03-26 01:12:40
13
56
2435f5bf0ecf3879794af79674320723316bc83ba910705d1ee7af2d6d818fba
2023-03-21 22:52:04
43
68
a23197d125fe1fbde3f33e7749da812c35beb2a2cb9208c4e0ca0e3f388b1258
2023-03-20 20:07:33
0
60
26f61cacb02c4bc9fa4ecdd933a0298da108373a7a9e874526b4997b3e843ac8
2023-03-18 01:39:48
24
59
3fd573ad17921761b13a21db9ac76b50ac6bbb51dfd65fe1d7530ee715717dcf
2023-03-17 21:59:42
43
68
d05b51b720ebaaa2da09d81fe85ce030f9ccc3d437469cca7e23e402f05c3d33
2023-03-15 17:48:57
44
67
c67c9f5a59b607f75646198ff7ef838cd90a18c543cdbe3b9fdcdec96520a502
2023-03-12 10:06:46
7
58
ca36d2ea01391327f6eab65bd8d68db48fd7cc29ec200a43c675b2f7ae3f466b
2023-03-11 20:30:51
43
69
c275a1fece549999ffcaf2be3ebed2850263b5fc40588d4cc009e04b7c4d7fc7
2023-03-08 04:31:58
20
69
4c62e60d2b8971b073c59251ad1c9bb88dd028452a1f5750d68c2419830bc29a
2023-03-07 13:18:17
27
59
4ec8c1412e7ab26d6e6ac31798ea9ffe3b3ef9939675ecbb424c4be0947f45c2
2023-03-07 13:06:29
30
58
273245c3e86e7216e5adad8250db064828ecb63d36b9855e1000ef0a11ab1c68
2023-03-06 21:19:00
33
59
fb229c4d9cd3913b2673941328b6183e8644dd8bc7736cd4a7a63bf4ccb6d540
2023-03-02 00:49:21
12
58
e3dcafd30dc42ccbd9d2726b5ab4bc14318efcee43e9d011bf9ec114458834d9
2023-02-28 13:46:48
0
59
8ad202530fadf434643bc8766976ac5c37208d06870dc91cbdc9b439cd35f08d
2023-02-26 18:19:35
5
58
791f9d63fca354cdbe68b4902ccac75fb2f8e5c0f289089ae883ae6ec04cbd62
2023-02-24 12:55:53
11
62
12c80092e7df5c4cf295eadeb12a713bd791372dad2e3677f04a1676fb2b9779
2023-02-23 14:45:38
0
67
e5992b11629e2a0cbf88c2638efbffcebc6e902bc3f0d467840168bab3fb84ff
2023-02-23 14:45:34
0
67
8f1fc698f7fb17f4131570c71a1cd7f955666e50df11d7d685bed3d1f3138245
2023-02-22 22:08:52
4
59
da2e4bf8db3ae373f006787b0cdf5cdf38a08e941d19bc207690000a4e8b3bff
2023-02-21 18:26:24
0
69
66be056ce340e6db419e37a34a72d1fc7c0e70aa060584c48279e9851f8d9bd7
2023-02-21 18:25:07
0
67
59c9e962f32732ad1f45a88ee4b6b77a55929d5ed210f1a8556c94b93843efc8
2023-02-19 21:37:11
0
69
05e9d66d12395182bb94207dd8b62a9c1c9edf0fd663300526af9e5c743f9fd4
2023-02-19 21:37:10
0
66
ca613cea674b55394b11bde86cce50ee1db105d05f4ca5810660e04158a1a3d7
2023-02-19 14:43:37
27
60
f5fd086328223ca9bc3e5ebe3dc1f6f3e8a8bc4c9113627e397bd782abe36638
2023-02-18 22:05:44
17
60
9574d33d7ee275bcd2cc7e0edf3fda23938090d9f71270c0aa2b9d94b2d590bb
2023-02-17 17:42:18
7
55
3711cf6c5fdb7ad0b1a0f5adfa3653edf2b9c70280661911217d362c4f483a28
2023-02-14 05:07:16
25
60
65b4a271f8e6c8fd14669afc8c55ce3e45f508d6bc4298919fceb460757510cd
2023-02-13 04:49:08
0
70
b97049f478c4a289f2410a338a3e1a4d6508e8fd6201b1a174711969702614e7
2023-02-13 04:47:40
0
67
b264aa70bf35cc16308321caaf822e4d87bcc963afa27075ccedda214660cacc
2023-02-11 02:31:02
29
60
1a931fc4524bc61e65bdae33fc25f068b3933756cda7ba09cb112cc8ba87305d

Rule Matches per Month (last 24 months)

THOR Logo  Scan your endpoints, forensic images or collected files with our portable scanner THOR
  Warning: Access to VALHALLA is rate-limited - once you prove unworthy, access gets denied
  Nextron Systems 2022