SUSP_PS1_Msdt_Execution_May22

Rule Info

Name
SUSP_PS1_Msdt_Execution_May22
Author
Nasreddine Bencherchali, Christian Burkard
Description
Detects suspicious calls of msdt.exe as seen in CVE-2022-30190 / Follina exploitation
Score
75
Reference
https://doublepulsar.com/follina-a-microsoft-office-code-execution-vulnerability-1a47fce5629e
Date
2022-05-31
Modified
2022-07-08
Minimum Yara
1.7
Rule Hash
f84f0ef804f4a0ebec2cfd27351f7006
Tags
['T1059_001', 'SUSP', 'CVE_2022_30190', 'DEMO', 'SCRIPT']
Required Modules
[]
Virustotal Matches
https://www.virustotal.com/gui/search/susp_ps1_msdt_execution_may22/comments
Community Rule
https://github.com/Neo23x0/signature-base/search?q=SUSP_PS1_Msdt_Execution_May22

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
231
Suspicious (< 10 engines)
78
Clean (0 engines)
82

Rule Matches

Timestamp
Positives
Total
Hash
VT
2023-09-26 13:17:19
8
60
7d271849c2bfa7f0318c34531400cc491cecbd78df143bebd36b27f235ff85ee
2023-09-18 17:11:50
26
59
f663e19d6a6c0e25596f113a0d2b6898758fe6d4647b791b5aab38b49c04fbdc
2023-09-18 11:19:59
32
59
4ee2f3c721d2d6d9bf33d7360fc857100960cf444bea715173aca7f18869196b
2023-09-16 10:27:50
25
59
ff6c6add61189614abc7083f2120ef691b8d92ead98bfd992cae4af03195ad44
2023-09-08 16:19:42
3
59
171659bbab6372cf1060b55103aaac282ea872b877c76b0c24cdbfecaa52201b
2023-09-05 03:20:48
33
59
4027e1266235592d3b641f5fbcb5f7857ac24e89bbf2931f62828211d3878ab8
2023-09-04 06:12:47
12
60
7d6db0ec4893750c954b8e5ab10db249bb4beeb203e861c694fb73909449625b
2023-09-03 14:01:37
30
59
e51087279cac626509e7e82962856391303bf32d2e1e5caa1ceac019db158f06
2023-09-03 13:40:13
32
59
289ced61e402ab3f1b5f86fc02838336a0f19e3b5197f08b61df7c260c1e448d
2023-08-17 14:57:58
14
59
dac075e7dd97112617f5403224cfeb444cb2195c1ff9e463aaa3e91a496ce388
2023-08-08 21:06:43
30
59
7c09088850fb0dcf0d22fdacbab2200aa31bd7b66b6d477f7b61e3707e612d0a
2023-08-02 05:18:44
31
59
86980f2edb652cd4b9a7c04e08c70818def06aa2c24c6b0297690614bcc9008d
2023-07-31 14:09:40
28
61
3d0d776aefe3fb4549a289b00445e81314efbbcfd147f57f52c9cc1a0a82c297
2023-07-31 14:04:39
28
61
5010b53593efa567fbb5fb2362da7ad5a47d69ac950bc72f9fa49787b7362a04
2023-07-25 09:13:53
59
71
eeeee9e2065233560db05e67376996ba3dfdd31df1b39339cfcd3432eba6e893
2023-07-23 17:00:32
27
59
5058172a86936cf2b20ca6f2a79fd18acb22d716ce3acc62b81ad131d0bf3261
2023-07-23 12:14:48
19
59
07497ac948130ca09d0dc517dc7359ade719ad99fd2e58a41bf8c31856b027ef
2023-07-22 00:24:41
32
60
8e0f87c8efefaed76b706d6b72e07ec75566b6dcee7622e55a2e2a5339f200c8
2023-07-21 10:01:05
32
59
3a018d81a422e39b48e88e91337d949295d7b2116452b915f10dc35f68052e14
2023-07-19 16:18:14
4
60
b4ed6f7d3d2af0aa8f7493a1874659b08622133f1224187ccf7790025cd19125
2023-07-17 23:15:03
2
65
68c76cbd6993c4825e055d823dfe13775d13948cbafd0c1905cc3f12f24be5f5
2023-07-17 02:34:43
4
70
4b91e48b5fdee5ad9b12dd6e3cf97391332397c601746db7f037ae7a529df52b
2023-07-03 07:18:51
19
59
b21efd38bb87734a7e2ada0ee934d2e861ea82e8e323f7833fbcc3972ddd7f8b
2023-07-02 09:20:59
5
59
77d068bf127a0bcec7ede15957d973d04f9a725481bb550428e994cd31369f31
2023-07-02 09:18:26
7
59
b43644710689dbe17fd9a28cbb7832256cdbb3bd63dd50913bda669d2c860c8f
2023-07-02 09:12:28
7
59
f7c11578d338ce7583d4a01d6107fdf88b986dc31718d93e5ea484ac0ec044e7
2023-07-02 09:11:10
5
59
dcd59ca620afaa2bba4228ec3dd13a2014f48bc6b5b12748e4e592a350875bf5
2023-07-02 09:08:29
5
59
1576ed8315aead5763c82f937698db320b76e838a1d93fa4291b61a5adcb6e03
2023-07-02 09:06:20
19
58
93e57b7ff6658d8bb3ba2cd12689cda4d3dcbb70621853527dd985140676f32d
2023-07-02 09:05:14
19
59
4eda841c34ca9af5ddc46ec1fa1641ffb1b861cb8a17e2bb0d7c3927d1f22fce
2023-07-02 08:57:17
21
58
a44fa6c8d2783133cb6a4b35211e38c59511cbbc0e655681d67cc6801196f4a8
2023-07-02 08:53:56
3
59
0d00e10c2413f4ffff257f166ba0cd57ce5f3e018ad93f2df6805e4b72dbe2d7
2023-07-02 08:52:50
3
59
cbb8fc629c5e880ca92459d51eaa5489d9ff6952ae0063fc82a4e529f8478b76
2023-07-02 08:06:49
1
55
42bd9efe6fa5a65e141f2f3d66aec4c588cd78292a30f3af57f1b24c6889eccf
2023-06-30 18:29:13
55
67
9b82a37b518a2e5c5b11a0a0635ce1334806d7833701faf6d1e1bb73c7d61975
2023-06-30 15:46:39
22
59
15b861506bec22398197430b6ce09a084aeaaf2834a22e758d6e0bb24f68cead
2023-06-29 02:35:02
6
59
944eb9d39fdf5c036e865f3a9ea51be6cc3e854fc35fa2ef98cf49c71414251e
2023-06-27 14:04:44
16
58
b425d9c7a2d08d9f0e624bde647e7b89fd47a42a5c611eba6cca831028c3b98b
2023-06-26 02:20:39
4
71
d5d8b9fadd07bf37b6f1934445a841c42542d56789ae73e5f0734bc255d97a17
2023-06-26 01:09:25
5
59
ed549e0ecd46e72ea58a659bd20a529c44a7cae935d52cf7dc43ddb9177d46a8
2023-06-22 05:04:33
29
58
fe088ced6a10ee342b890ab9a06b986891328123bc58822218edf0d05e6f86ed
2023-06-22 02:52:23
32
59
45aad30254cbdf52d4396df08494a1ea0ac7d5eb9672ae8fa6c2320144266e17
2023-06-14 22:15:48
8
59
696813c2a2aa6d314b09f493bbd40ded740ed019feb9931451a9c39075b53406
2023-06-14 16:16:08
34
60
6c0cf2f2c26c939b46bfeb0c28a74df9f24a084444f67569764b8671c414ecd4
2023-06-14 16:13:46
34
60
50173e012f1085ecce27632b2833aea0a1411ea607fb1a5951b50d1a0c1ecd94
2023-06-13 10:17:41
13
60
d83b67a1e2fdef15aa739a71e5ea2a6cd51304dbd9f0e2ec06001385af61a61e
2023-06-06 07:25:40
0
69
a9db19f790f7551b077dad9c61778336e3707b8886e75eeb0529b4debe96abbc
2023-05-30 23:03:33
12
60
6e26216c740351f5460a2f51b4676606d572fd3012f57fb9e154a34d9242d6ea
2023-05-24 15:10:28
11
60
076b22f6815cf168a813fa64e7f0b7e45d5312de16f8c9e65593160cc2c9cb1e
2023-05-24 14:17:58
58
71
7e44ad45a0f3eac8b717713ff88f60c005a336242ce5a55d26b4955389a184dc
2023-05-24 14:12:23
58
70
c966f786d559c2e1f2ecfda9e31cac81c82684189f5a02b9772d9e1860481dac
2023-05-20 21:17:31
13
59
bf53071f112495144dd2ea2d14e593eda2f56ac16e02f4683b55e8a5658e3d3c
2023-05-14 01:11:38
0
70
7728436b9fa9c28588fecd99803c47e39428aa5bbe8073e43b268544ee2a7ece
2023-05-12 18:20:02
32
59
032fdad80c39d2b6613a21b312dc0cd4d7529c07571808ce8734937aff7307b1
2023-05-09 09:07:26
21
58
fd7586b26d2f7e38c6df01a4f91aff6a1a89570e8bbdc335e05a980c598aa798
2023-05-09 07:08:15
32
58
cb10f205e0f03a41eeee2540b41457e377ec955de256a25302315c969301d0d7
2023-04-28 11:14:24
7
59
79cc41bd8b8ae9aa039c9e2f53220fe752e77fe33b0d77095533df0d713c47dc
2023-04-23 05:08:59
0
70
600040e11c0ca8ea89189f5c2257f745fc6bb481da790253d71ae331c96d10f6
2023-04-23 05:08:58
0
69
2af45e20f907d5af7e8e4c7f744ceffbab663938d37ffdefe9880f09e20fd1c6
2023-04-22 08:12:50
0
68
8144783deb1e9a37a6ebabbe11ffb9fa046f50725c96f50821e5216372091878
2023-04-21 15:07:40
58
70
25dfb61ce28d855efc4b283166874ee96eb83d822f399635533d76b904796511
2023-04-21 07:12:43
25
59
e869473fc666e8472a7deb489a10f558f16e6a74c6adf8f3d6f10c54a6a731bc
2023-04-21 07:12:42
30
59
6a5b275994d5d5007db6e19abcee4e1b441a6952d2bcd33203edb7e35a239248
2023-04-21 04:19:42
32
59
23d30df1019ef12f9d59e37c0043ac34b9c54c8f7e603b0e23593db8f41e320a
2023-04-20 04:12:30
32
59
e4c4c29e67950d80c38742b9e3457c50f97ca0b617a2d5951802a538c0264714
2023-04-18 10:13:03
26
59
8eea20e7829b737dec6aea0ecc755c343a5c9166c3e42d744414bad895753625
2023-04-18 02:07:39
32
59
e21f4b102054ff65cb8539e151226b051ce3b36866fbd7b02cc89cc4fe8a2078
2023-04-18 01:13:12
29
59
2e9bbfcff8bf29774e64117e2bcc9b8afdd352805d0b6ff21d99c2ff1978f8ed
2023-04-17 00:19:28
26
59
773594532298a31d2dba5817f71730abb079363cadbbb34c57cebb89a591c228
2023-04-17 00:19:23
25
59
52f8f756babcf10e05aba36f0a86527f1e652c5ef6b538592ea79e4120429687
2023-04-17 00:19:20
21
59
aef0bc7478b7b9d453d8e95c26c1f10aa864335103106e7204655dfe93cb25d7
2023-04-15 00:08:49
0
70
a6490764509e1e4c745a7f4635cebd49fbe284cec22d7957310c4f8b4d57026e
2023-04-15 00:08:49
0
69
cddb664c65792179faa2f83c57a7210abb9b53d0dee502f173856362e5dee5da
2023-04-12 13:19:23
33
59
4bbf61fb4c7f90200d5daea7a83638f6f3b8b72cff68aedb9053fcff4918ac70
2023-04-12 13:19:20
6
58
31ab16f52c869c8acd9dc48edf1be359c32a1845f9e2d9ac277a03d00967b34e
2023-04-12 13:19:18
26
59
bd70e892e10c51782a3dfdd25daf4ce72d84dea8e2cffe49e0713a4102474ea9
2023-04-12 13:06:22
34
59
be9511752ac507ffcfb37aae843445c52aec4bbaf0954652d3875095a651848c
2023-04-12 13:06:21
34
59
6dceaa1743e6d728aa5374c47e6142dcda168d2b08e10606accac6eb0e9b54ad
2023-04-12 13:06:16
28
59
c858774119e4bf466a3b001a1cb8a846ebe4b82327b2b3376d55749f2bbd9edd
2023-04-12 13:06:16
34
59
6cbf7beb9fdbcd07dca8050f08ad00918bd2157ea21dffbb31379b21eb3dec92
2023-04-12 13:06:13
35
59
e302ff011bbab714ee7bc4078bc8f8ac4fea0a8c7895feac55a04ac3f500ad1b
2023-04-12 13:06:10
29
59
0ebba718bb5d6c66d0153562862d9490e44f2cc732c3573d2bd72725cb7dcb68
2023-04-12 13:06:10
33
59
ee73c63d169a072919c2f175b27526b0a0a184bb534f78c8119c2be8306070e3
2023-04-12 13:06:05
33
59
f83af25caa955f13be4eca9fb49b124560f12bdbbe2d6cd64be1cdea24b1a673
2023-04-12 13:06:03
35
59
386ac13cdb3b309b528c6ce39be6b712b43f8b8922cd19e817ebbe70b67133f1
2023-04-12 13:06:03
33
59
d41220ea115cabb8f22d8f12c8bbc472494fedeaaae5789be7b6192438548143
2023-04-12 13:06:01
22
59
90765cb6649e57b98ab643d89fb50c9484391360252cda20c3a612943b1e64fa
2023-04-12 13:05:59
34
59
aac307d879999bd6b56ca128f1f35b333fecd58dae54058aa73e00ee7687ff46
2023-04-12 13:05:58
26
59
c0c9392b9334eea2cbe73485ee9c63f9e693908c3eb87f77b94a69eca394895d
2023-04-12 13:05:55
34
59
01a6368d9dfd750378b5909f1bf1f9bd79ff9e9601f25b4b67b27da8495577d3
2023-04-12 13:05:55
34
59
29ae320f6fa72309f4440f3c32204dade0ae801f91fd5b8448236535cc0bddf3
2023-04-12 13:05:52
27
59
068d800c7cfa14231127ef8976ec98ebb407276768487fd111639265ce46fa5c
2023-04-12 13:05:50
28
59
acbf968c3919edfe33f6901135df0ee26d171444813f1f29394563fdac902c40
2023-04-11 21:19:28
15
55
fce82a878baceb1fdcaa1450ddc508e80df104587c2c9735ab65a7834c7bcf15
2023-04-10 19:08:42
9
58
9ac6968b1bc2f9d3f072f9bacd9e414d4c027e313e737c44aea3efb0d4ec2802
2023-04-10 14:50:45
30
59
eeb4f75bd585d54f94bdf0c37070dfcd7972779ec424725348bb497519107b26
2023-04-05 07:11:03
0
69
2586f99c555c77ca20ecccbddc26a30e0ec74e7ac1f774940a8ee01962a3fcb7
2023-04-05 07:10:32
0
69
75904111c34a461be0d6038aa929618f33809d8d2af27d64f8565167587d23b6
2023-04-04 14:34:41
20
59
ae2f202b69d15676baa77c4f1f16dda1d1f524172f99b06fe5a2dbb5f0f599e2
2023-04-04 14:34:05
7
59
b631f6c8b38c1565b372b0af2b9c8589bf9cf91aa6f7c7f18e523a23662a788e
2023-04-04 14:31:58
6
59
85017c355f7544a8ec3676367cf01df2803c0a2dcac5f1b75a4db0e6b0de7e04
2023-04-04 14:31:29
19
59
808322db881449d2e3a68c71709edc683cebfd7b89846d0a55303e0214697762
2023-04-04 14:31:29
20
59
800a769983c44b7a6d21c746ffe1c5108b0e73d1a2a35a1691a9126eacb26bbe
2023-04-04 14:26:10
2
59
3b5fdfe19974d64b7018f4e3e0b68b850df3881abdd67efc068fa518b51e1773
2023-04-04 14:21:51
3
59
014eee6d2a24e82b7baac1013dc0f75f73a6a64f8d9352133d9c8160c83c105b
2023-03-30 15:22:54
22
56
dba860617762bc713771de351026eb683546b37489fa0359064948f263438030
2023-03-29 02:12:02
29
58
f09feb0723695147f6ee55b9a8e0610689eeb213bc068338b419725f84d547f5
2023-03-28 01:11:11
11
56
6816a426ca7e0fbbb6c557457652881ce5cd72b3209489f7c1cfb72838badb9a
2023-03-26 20:13:30
45
69
72ad7d3998bf281ff18851082c2e72699b18e837f8ba308fe25a4736b90f9c2b
2023-03-26 01:12:40
13
56
2435f5bf0ecf3879794af79674320723316bc83ba910705d1ee7af2d6d818fba
2023-03-21 22:52:04
43
68
a23197d125fe1fbde3f33e7749da812c35beb2a2cb9208c4e0ca0e3f388b1258
2023-03-20 20:07:33
0
60
26f61cacb02c4bc9fa4ecdd933a0298da108373a7a9e874526b4997b3e843ac8
2023-03-18 01:39:48
24
59
3fd573ad17921761b13a21db9ac76b50ac6bbb51dfd65fe1d7530ee715717dcf
2023-03-17 21:59:42
43
68
d05b51b720ebaaa2da09d81fe85ce030f9ccc3d437469cca7e23e402f05c3d33
2023-03-15 17:48:57
44
67
c67c9f5a59b607f75646198ff7ef838cd90a18c543cdbe3b9fdcdec96520a502
2023-03-12 10:06:46
7
58
ca36d2ea01391327f6eab65bd8d68db48fd7cc29ec200a43c675b2f7ae3f466b
2023-03-11 20:30:51
43
69
c275a1fece549999ffcaf2be3ebed2850263b5fc40588d4cc009e04b7c4d7fc7
2023-03-08 04:31:58
20
69
4c62e60d2b8971b073c59251ad1c9bb88dd028452a1f5750d68c2419830bc29a
2023-03-07 13:18:17
27
59
4ec8c1412e7ab26d6e6ac31798ea9ffe3b3ef9939675ecbb424c4be0947f45c2
2023-03-07 13:06:29
30
58
273245c3e86e7216e5adad8250db064828ecb63d36b9855e1000ef0a11ab1c68
2023-03-06 21:19:00
33
59
fb229c4d9cd3913b2673941328b6183e8644dd8bc7736cd4a7a63bf4ccb6d540
2023-03-02 00:49:21
12
58
e3dcafd30dc42ccbd9d2726b5ab4bc14318efcee43e9d011bf9ec114458834d9
2023-02-28 13:46:48
0
59
8ad202530fadf434643bc8766976ac5c37208d06870dc91cbdc9b439cd35f08d
2023-02-26 18:19:35
5
58
791f9d63fca354cdbe68b4902ccac75fb2f8e5c0f289089ae883ae6ec04cbd62
2023-02-24 12:55:53
11
62
12c80092e7df5c4cf295eadeb12a713bd791372dad2e3677f04a1676fb2b9779
2023-02-23 14:45:38
0
67
e5992b11629e2a0cbf88c2638efbffcebc6e902bc3f0d467840168bab3fb84ff
2023-02-23 14:45:34
0
67
8f1fc698f7fb17f4131570c71a1cd7f955666e50df11d7d685bed3d1f3138245
2023-02-22 22:08:52
4
59
da2e4bf8db3ae373f006787b0cdf5cdf38a08e941d19bc207690000a4e8b3bff
2023-02-21 18:26:24
0
69
66be056ce340e6db419e37a34a72d1fc7c0e70aa060584c48279e9851f8d9bd7
2023-02-21 18:25:07
0
67
59c9e962f32732ad1f45a88ee4b6b77a55929d5ed210f1a8556c94b93843efc8
2023-02-19 21:37:11
0
69
05e9d66d12395182bb94207dd8b62a9c1c9edf0fd663300526af9e5c743f9fd4
2023-02-19 21:37:10
0
66
ca613cea674b55394b11bde86cce50ee1db105d05f4ca5810660e04158a1a3d7
2023-02-19 14:43:37
27
60
f5fd086328223ca9bc3e5ebe3dc1f6f3e8a8bc4c9113627e397bd782abe36638
2023-02-18 22:05:44
17
60
9574d33d7ee275bcd2cc7e0edf3fda23938090d9f71270c0aa2b9d94b2d590bb
2023-02-17 17:42:18
7
55
3711cf6c5fdb7ad0b1a0f5adfa3653edf2b9c70280661911217d362c4f483a28
2023-02-14 05:07:16
25
60
65b4a271f8e6c8fd14669afc8c55ce3e45f508d6bc4298919fceb460757510cd
2023-02-13 04:49:08
0
70
b97049f478c4a289f2410a338a3e1a4d6508e8fd6201b1a174711969702614e7
2023-02-13 04:47:40
0
67
b264aa70bf35cc16308321caaf822e4d87bcc963afa27075ccedda214660cacc
2023-02-11 02:31:02
29
60
1a931fc4524bc61e65bdae33fc25f068b3933756cda7ba09cb112cc8ba87305d
2023-02-10 18:26:03
0
70
e882f293d06a967c6dd810857e427c4e1628f074ef57c2dca409be0d6a075116
2023-02-10 18:24:38
0
67
c6fee97cbbbee3b1715028c40ca1fbb96b6b6e1bfa362cde967e5ebd2a301ec6
2023-02-07 11:47:48
29
59
5ab0198ce6e52f0691a5424278a549e5d4257bcd67735ad5ec2d2b273e6e6400
2023-02-06 08:20:46
0
65
ca7babe11043dce94b7792c70cb361629d09faf458509f98de447a51bcd2141a
2023-02-06 08:20:39
0
68
6fda595c3a7be41117e4e6ed255296e4224b6d62ba297c546ecd182923f281f3
2023-02-06 01:29:22
0
69
18f113e6cea270e98f7e15b1d993b20310fad450e0b1025f5053bad01ea0719a
2023-02-06 01:28:05
0
67
221df7cb13f179b3ff207ceb00c7cb603ae680d60df508dcec49fa20c3d8d22c
2023-02-05 05:52:21
1
60
0ba582cea1952f3f9734886dd23db6d478ecc371525c5122dae2e6614151c132
2023-02-02 02:48:38
7
60
c21ee54b6cb41035d5cbfd86212417b8713eadadd5146511c372e060d5a6d694
2023-01-30 00:40:32
4
59
f12222e15c34e39f15dfd2c21b877ea7655a7b99b04c37336c7b712b43b8ae65
2023-01-28 22:05:45
25
59
6b3906f916d3ced52c4f13a3679fe3736b7a1f6cc77db2684eb0424294a15ae5
2023-01-28 20:46:17
0
67
02355aae04846b7358147ee6ce3e7dbc72263bc93a75ec794e90cf8228e882a1
2023-01-28 20:44:49
0
69
ec79bafffc8ec86dddca6bc0eb822379a8c2513dc7394ad99a217b609cfc7b80
2023-01-24 21:35:41
0
69
c203abfe5c80b20d3becf17eb9214f13c777df35904d720b361ff0c7370b3af4
2023-01-24 21:34:23
0
67
527930964b17b25280b077e720b44846cd2682d9c309d716cb1b6e4afcc8f24c
2023-01-24 11:24:20
23
60
a1d18541d643f90b2c48efb56597f191c84a581727ecc1d02fe624a3a8449347
2023-01-21 23:11:43
30
60
59393850d32eac212e1e6ece42fa3a0f6f7c1fa22c3c05137132924c207ca768
2023-01-20 17:02:09
0
69
91261fecce8ed7703f7bb5f6c27b498ee998ddfa81dabb65654a4f19a626bb54
2023-01-20 15:01:36
0
67
cfa533c7a9a2e7f33164905c385101d9639043d4aea2b768823984bdb4e79c80
2023-01-17 02:43:02
33
60
03aa9ba38cf9030e2ff9fb8cdf5628c7438a6bc0b70571d8bf24a3370cb9f6c1
2023-01-14 14:55:49
0
68
e1162bae912005faac55b0429fe9312c993a88ced013714d8ddb04e0e5cef6a9
2023-01-14 14:52:41
0
70
98b949a5de31025d91a917338e329e9f53cbc7339c4b1e3d19dd7570ae560ca0
2023-01-14 04:58:19
28
57
3f073fd58fefa611a7b0053623887ddffa7c0f7bbabdfa7c7e73ebde7acc4bd9
2023-01-12 09:19:55
24
59
5cc352a047cdfbc902972903ba358d41c48933dfdcd9d0a0d67b092dd0463112
2023-01-11 19:02:26
0
67
f07bc76dfd482a3e23115aaf1b5c41d9dd40fdb5254ed6087d33ff7ed2b9eb5d
2023-01-11 19:02:25
0
69
a50b2cd48de24cfff4e9d49538103b8ec3b3997162c6d1060e80d214116ceade
2023-01-11 06:35:54
0
67
c2c95327da600b88bf6a89eabe8bf705dd9bc94e93ccc198b11a289a848b44d3
2023-01-11 06:35:54
0
67
b0f4e92b81d2e26fb0c4c1e5e9c6f34121e328d07f3034edce422d01c63e35b8
2023-01-11 00:54:33
0
67
312d05c26e91b707170dc117ba3d287550571c01ed8a1aa19c3863cb983194a6
2023-01-11 00:54:31
0
69
777d16c0405e7b5641639c636f1dd667aaffeef0b48dad0594659394478f9b85
2023-01-08 09:16:00
0
63
97f64e511add67203dddad3ebccb5ef92ed0e32e3e6e5ddeaa36abe2a04b5955
2023-01-08 09:10:32
0
69
932e27817d30e446c2d21c67b229098fcc7e057942538008e35c33744d90f0f5
2023-01-06 10:07:38
31
59
8c0e057156188d369fcec961082cd28b0778f3cf300539c28796b4e3a9380e2a
2023-01-04 21:09:37
31
61
17c6fca322ddb4e0ba3c27b1d2b301371c422dd60ba8b58e67ad0cc550587a36
2023-01-04 10:09:37
15
60
4dcd4a83c7189a0fde4439e4a3709a4d4bb9050f59b72a6e2af3b1d08589c4f0
2023-01-03 11:20:30
32
61
53713d1dedea4853112282a24350c499ae972c88d1e5fd2f74e02a7847d1afe8
2023-01-03 06:59:33
26
61
f35b38299464d7d39d421ef4a0aa415a199524ca87b152f8942c5e467c83fe98
2022-12-31 17:43:01
26
61
ea2b9e871d457a9e35d55f445fec0794bdf40c412c909b2d05c322f3a16edc18
2022-12-30 02:03:21
0
69
01833a6711753baf0cf71a6436382b35aa06bbd8516f99bb241cc0d4a13e8694
2022-12-30 02:03:20
0
71
462d1f7b64e398a2668fef1fb2d694200f36b20f0935cd12adfafb6d50bab47c
2022-12-30 00:14:07
32
61
60ca2215b2f892a57e5ffdc3adb62093fe0925d3fe15d6717267dbc346169f30
2022-12-29 23:10:27
0
68
6fd482e10fb5a30142e5a5e8bbe36ccd62bd4952fa86a89c3d92e4f4ccc4d64e
2022-12-28 19:33:39
0
70
b08103c580bbc6fc46e2ea301735406857ffe76b449a9e33c4202a507d073254
2022-12-28 03:06:51
1
61
77cf39210cb8acde0119a97f8d707dc2b41c50429c7dbd559383d3384b6722bb
2022-12-26 23:47:38
0
71
21863613c406d78e8101b5134336d9a2d055e0ec5a417a1debe06ac2bcb13266
2022-12-26 23:22:48
13
61
48ecc6c8044e71e52b9a84a1122aae1775130f5f975330e305d10a40973ca7c9
2022-12-26 14:44:19
31
61
57d027e02005e40b81035d1c0560ca5fc348a401bc87b7922386535392f2757c
2022-12-26 03:01:56
34
61
1794f641e179e0ad2213d5cf2edb31c768da0b74a35437374a593076bd193411
2022-12-26 03:01:56
33
61
7d322790187bba9fa55c1520ac724274652290e17cb314021d0a96a5be9530b5
2022-12-25 04:19:13
24
61
96f364eeff0272f5cae3499a8a396ea13547d7d56f22a02f887eb540c55aa355
2022-12-25 03:12:27
20
58
03722e40894a8ae2445108dae21bf0f7ddf14503d842ff2e9f4fb83448ef5767
2022-12-25 03:10:50
33
61
52d4aabd841036f04c952fbddd48a1799b7586030251d3d8416f73fb780cf3e0
2022-12-25 02:15:25
33
61
555536b16091930dc53a5d6e66c40e43a440caf9de7a620383fbb13ad0144a75
2022-12-24 19:11:52
34
61
f880b16e24f2fd3fee0875103db057724e14e450d2ed54e8509c59f29a92b6cf
2022-12-24 19:11:50
30
60
831e035c5ac07d4e856f1db377a5380f12dd28c47ae096a907a73391ea557721
2022-12-23 02:13:32
30
61
9714e5b0d7e753831704294ef40bda8146fb1053a1294c855447f2750b7307d2
2022-12-22 07:08:18
0
67
c12121c63104d97da248274035d5d169253b4b56b8d687d7fe38512ca17d77b7
2022-12-22 07:07:54
0
70
1a6745d5997dd07f9d29bd2efedc19b34821632ba57fdc558926be6ec72218a3
2022-12-20 21:09:10
0
68
18c91d1ebb0385f621285c69903cafb83c65d95e2c384a32c165e6569dc441f5
2022-12-20 21:09:04
0
50
b2ebce4114ce38018f5ddbf31cce5e99b10a2c0cdcd2d4f1510ec7a6762087c8
2022-12-19 22:55:07
30
61
de07e7547d6ba6a7c7d2abed9322839c418484a37fe2c4cda237f42fcff90bae
2022-12-19 20:35:12
11
61
a88ca01278a9243c71774da4e4ca446da4efa402af43eac25eea35b30d42bc2c
2022-12-19 00:14:54
22
60
a600bcaa8701a3c32c42604d25d4ead9d74b9c2fa5aa34755bf5ffa0a32516dc
2022-12-18 21:51:53
0
67
c3f6a900a65cf1924915ac88c3b26a460ad37d3812650260ed2f997721cfac99
2022-12-18 21:50:42
0
63
b556aad527eab44f9f42883def93062ae32b23874eebee51d49b7147b046013b
2022-12-18 04:23:11
14
55
fcd0e4ed5f2b9837625f9c4dcd21e8f0a94a065955f0a4af14a84df7d9b800ce
2022-12-15 07:45:22
0
70
7f307e365634b88c48b01736ddb5a47e0bf56dede671690e130410ee0df49597
2022-12-15 07:40:47
0
68
0a343e8caa630c6cc5c5c83da40a18f0928ecbf3f60fdbb04a8fe1aab96c98c1
2022-12-14 20:12:29
0
68
d235380d521857274cfd2b1972523cc3290f645b6afbe9f939415a1e0e1198b0
2022-12-14 13:56:46
3
60
f54ff5abe3f3ad2d728b1b01726ebf51623f65b55a3531cf0a6b850e6d478271
2022-12-14 13:53:24
3
61
dbb165f4a010af77479f6132d608689409b07ffe58a34207630572187c8de2d4
2022-12-14 12:24:01
6
61
28a8529d51bdfc972e6f6848eae100a811cdf7b071202cb14695b93a318e2a76
2022-12-14 03:24:03
29
57
73ee5d35fd60a260e9e8422393c05c2b16eca114b64ee3288beb17f908cd6aee
2022-12-13 10:09:09
0
66
9b8d7b6f3c41463d04bb064f769f129bdd6f0c40c89fd72ebebf05f675be9eee
2022-12-13 10:08:24
0
70
dc2de7f7314a6577faa0389934cbd6404d17e6dab9b8189fabb80ec5d1552f84
2022-12-13 05:35:37
11
61
6b83456ea58c909e27dc031842f174d3f1ebbc93f61b977ee6fa722ad0d80fa1
2022-12-12 23:24:09
0
70
a8033007205121b10146ab54289031fe5aa3839685debc84cd990d7aa2ebdfa1
2022-12-12 23:24:09
0
65
1e2656ce242fa58a31fa6317eee36bd1118950b3b8c5e87f11ff2c68bfae5ad1
2022-12-08 06:18:56
25
61
5bf11a027c993df0618aeb7ef541585498ff89cebe383e305ba4d713c38d0066
2022-12-03 04:07:15
32
61
583f3c7193f905f1831c08cb2a7e6cc87c0a587b1853defbacb1373b8775cfc3
2022-12-02 10:22:10
26
61
8e1db20e2ced90c2c1132d42ef87e88ff5e1f32e5ac720394a29069a859b7988
2022-12-02 04:20:10
32
61
520771a76175dcdb84f9fb179bcc87b20e1e2d938dd80d5640827d8ca640022d
2022-12-01 04:09:06
2
60
4934075625fde822fa8ff765920a549c81624b9a47cb8ed4710f26e9354d3f9c
2022-11-28 23:51:19
24
61
c78547a1641a89be4c0855896a0c108c0dfdf91a741a4140566edc8f96caec16
2022-11-27 16:54:45
2
58
b9bcbf832cdece23c5b076005436dbd18b37d90973b106d1f5d7f63000e5269f
2022-11-25 13:56:16
35
61
6bb39f0564ca9890ff63387c52f0f07e396b470b75ae69eea8db3180b2e86033
2022-11-25 13:46:54
2
61
d813851f87b0deca44623619ef8576275e3e2969812b80d8e61169f0dbfa7f60
2022-11-25 13:34:23
0
61
99b70a89b473b6df3d639d310aaf8c6b58daaf58e99b9df959d825cd3da0f86f
2022-11-25 13:29:40
0
61
3403be2c57fc16bdb0edf2c7c9e59e6a5a6195ab20af5338a25ae36854d0ab07
2022-11-25 13:16:00
0
61
e92d3c74c88d3957c3dedb8214388d06e4448077bc6345d6e117367342118aa7
2022-11-25 13:02:57
2
61
31826fc99ba5b4d90cc65a5890a71dc086011a372faab4ff239aef4641455c21
2022-11-25 13:01:38
2
61
514b00906a47485dde98ecb6970a39897e08cfeb1ba2c87a5a56cf2e0ae4b362
2022-11-25 11:23:14
33
61
98fa071311fdbf091d7a70d9b943478c942dd827cdbd389d62f057b7c125bb19
2022-11-25 08:09:08
0
61
5fcd8c3b5b641be17a50224b9a34036eb2cc6c59dfd8125d9714e508e7da2371
2022-11-25 07:52:17
2
61
3757954e0678f3d77b9a2dad4f07205b1bc790e8688ebc5a53628482018eba7c
2022-11-22 15:18:42
36
61
e3ba1c45f9dd1f432138654b5f19cf89c55e07219b88aa7628334d38bb036433
2022-11-18 02:10:27
30
61
1c075cf54b12c283f2faa0addd8981585d950016b34bebec132d8e5ba78b97c7
2022-11-15 10:07:00
24
61
ce90d6ef6429f97d87eec3990337fcd365f43e03bfbc3d2e644c4720c82313f1
2022-11-09 13:13:05
2
61
22de28bc038aec927e627c737be7196fcfcf0b7ea26d70d10d3923f48acb0e05
2022-11-08 06:13:24
30
61
3159eb4ce2b83504934fede876389afb7b2eaf422329e8d23dd7a61eba6df6d0
2022-11-08 06:13:00
28
61
a970e699794d1179104ba121816d7d27a4c398440b3bc104c6450df83c206dc8
2022-11-08 06:12:39
10
61
cf91d001e25be8cd40ff648d9bf362a24693a3e0e611e338bf3ea89706839f5e
2022-11-08 06:12:30
18
61
87efb12f9d2feb3af60b38afffd1b1eaf5b9ab77b2206ad88bfe817913ef6be6
2022-11-08 06:11:25
18
61
c6022127d8f3cf3ffecaa9d488c7767722f7e7d81ab17be1c6b35e0408498b6a
2022-11-08 06:11:12
18
61
38473590460aadeb83f0a7db6577cc3bd5055969dac520dfad345b56b6b00b20
2022-11-08 06:09:59
17
61
8fc98c83c299dfc66d764a0200a75a68665352b67d95c1f57129179a86ca240f
2022-11-08 05:16:14
10
61
eb33c4b6a8ea28b16fb13e2ea910a6cd6b25cff4c3bee7d15c55e85a548ea15a
2022-11-08 05:16:00
21
61
ed4d61e905d6ce6e5f1bfbdab4dddf8a2499388084c4e8ca31d548836ffcf034
2022-11-08 05:13:16
21
61
74e94c277f104689468b56ce3bcdb610336c6f56adbd5ee92c89773666995e9d
2022-11-08 05:12:05
21
61
5d9f35abc3535bdfca8590c47d52b5377341aa8c90abee30b448cda8559c5ed2
2022-11-08 05:11:08
12
61
96cf1503bbc74586a9087d28532c629e54c599e83c86d9dc8d01abb3ed8e9116
2022-11-08 05:10:28
11
61
9fadf80ce44b7e44fa4ddc1bfff5dc5fd3d57a570faf6cc656ceb9417d59b99a
2022-11-08 05:09:04
13
61
f544895b2f26eede98ab5f7781211462e6f998e83cc0ff39c70f987acde1a9be
2022-11-08 05:08:51
13
61
64e48709b07561765f4f42f0ede584a6a28a2835581d347485be9fc7a88a0821
2022-11-08 05:08:39
13
61
23fce6dd33b697abd04c83af206ce0d007809b161af510816eaed572242601a6
2022-11-08 05:08:24
8
61
cb0f81ea5606bf083c1802af5d291a81edfd88174224b2aa3c744d49af2e8656
2022-11-08 05:08:01
27
61
8c2d3fbaf1b73973e4ce68025766c2f0ad7085c9f3593205c42b309be0807522
2022-11-08 05:07:42
13
61
33cf0752928fe942d99afc5186d7ac8807f9ba0ead1a17cca553fb2afd061e86
2022-11-08 05:07:32
14
61
a0a2c65d2653daf19aa412c3b7d0e3801d23ad35cd5d601bf5c702ada4b8e00f
2022-11-08 04:20:09
0
61
9ca7d37af7e2093799137e326f08aec781e40c959b1e3bbce35483b7d4ad9f68
2022-11-08 04:13:39
1
61
083e45f314c6cb3a813c8f93ede33327569dcbcaa2b8dc23faf56d5046febdc8
2022-11-08 04:13:21
0
61
18575de6ee02989aca2b0c681f486d53dd4aedeafe36d8dc3d21097b824c7966
2022-11-08 04:13:05
0
61
c3890569661ecaf2719cdf973d40404a3e3425c83dc3bf8894fd082191cb55aa
2022-11-08 04:08:17
5
61
8591cf75653ce7ed83cbd168f2e579ad73e14c1dbbb5dbf4c1338d6f3a5684e0
2022-11-08 04:07:28
0
43
2bb7a2418f3e3c228a7f6ed9ac3fc364890ec521f69d1f858484980f5bc4d801
2022-11-05 23:20:35
35
61
a6f55957542982348eb412b9b49797e1931183a6bf395016885e1294c5a08dbd
2022-11-02 01:12:43
30
61
5ef6cbbaae3d80fe933bc87d5db1fc24f67df7ab942721856d1005fc118adfa2
2022-10-31 17:28:10
18
61
bccc37d9cb242e31e21e6eb83301f2b47345aa13644e5ce717e1652e8e0ab2f1
2022-10-28 14:24:35
37
61
8e986c906d0c6213f80d0224833913fa14bc4c15c047766a62f6329bfc0639bd
2022-10-24 18:20:44
34
61
8918ede0a38d40ee0b89028819dcaac6bb73d2280ad88ea2e1d0a42fd7101aa6
2022-10-18 12:34:01
5
61
6eadd5a9eb7eb44f3ff1728f2bc525dfcc0e669fe18babf476e2b85a4e06a573
2022-10-16 09:18:20
17
61
16b2339a3c951d0d5854025ddb35372f4da1f44cb4d01048f17fb8bca982e298
2022-10-15 23:44:05
16
61
639c751dd840d446cabd502a1cb8c0f77587862bced063c762cf5b3f207049d3
2022-10-14 01:55:44
11
61
73aaa4dfdfba6734dce8ebf86b6338679cdcd2a66646148535e89de48f555b1b
2022-10-13 03:36:08
30
61
4546c6edb62e137d862edfaf6331ce6e7dde5ca386920734c35b13b479a2a84c
2022-10-09 03:47:19
23
61
3729f57cc03cb1af621cf95ab887619adea3fcb1268ddf8252d28f65a0930437
2022-10-09 02:41:07
29
61
209146d1773e8c4608b04501a39595a19ef49b3841002963f9ba104182d93cbe
2022-10-08 14:11:27
0
61
c335e85ed38903e68db51501095e539b68477a850e87ddb3ba6d07af1cb0cc2a
2022-10-07 12:10:11
24
61
507dfd57cafc20bb9201f2ed962f2ae1b04aa3242c0a5413d210544b2ba6277f
2022-10-07 07:14:10
35
61
cdec208ec12fa58c122db1887abb7f58c7998a9ba6eeebffc501e11de3975215
2022-10-05 08:16:16
1
61
e3d131ecedfd167057cfd0b30c7b6b1f1de8a8a730484f9a64b796ec0008e9f3
2022-10-04 12:08:39
22
59
70ecca1a89055c5055f73561e0bf67426fd5c920fc03901b06f0cc6375f76474
2022-10-04 07:26:30
27
59
af96ec414d8ee7815530d52a1d00602fcdcca206c70854601f6b66c7731d9aa2
2022-10-02 05:09:29
25
59
29a478fb3f88d0d55a42fcf9637ca41433c1457707d45fd29272d32edd275019
2022-10-02 05:06:50
27
59
320c7164e31b517dab6763cf63269daf9cdfd6f2df71c945392da00b035d9a0a
2022-10-02 03:15:47
32
60
b3281ee94db3b971936a861c0c561065cd7eaa89062e807f43496ca765981d71
2022-09-29 12:23:31
26
60
b52885d7b33bc2bf0b0f4303a5826adef22383fc522e463b5ae5ac99fa0c4c26
2022-09-29 02:54:37
3
59
536a31151d9291b1f032f91259578469adb89e1194c8fcafbe481c1fdad1a2a7
2022-09-28 22:34:48
31
60
f8470042c86ea373cef9b8c52929fe60f489cee620a5581b70d22a8d32132c38
2022-09-27 11:25:51
22
60
7ad3a8810a02e6f81fa9019e8f7a4927d5ff6578823f94a2977930272dbf632e
2022-09-25 05:19:22
0
60
b634ecd14635ceda269b3ab45099a8d200fee3b30270414154b46066138f1227
2022-09-23 19:34:44
33
72
d6827f531c5ad6644823b300cc178752bdba8583b0fdb0b770b23509f3bca048
2022-09-21 13:09:47
20
59
c9d40bd62d38a4269ba5afd0f82243ee097a73003e540eda0784f07d3bf4efaa
2022-09-21 09:22:46
36
60
764a57c926711e448e68917e7db5caba988d3cdbc656b00cd3a6e88922c63837
2022-09-21 05:17:32
29
52
016baa630439f62035082c30c2739595bb60237a6fbec5cdc244827fe6c7061b
2022-09-20 08:07:29
29
59
1f12b8c250aa8f9d1e66caa0955fada8ccafcae1bfa66930522434771ce25525
2022-09-20 00:07:57
24
59
43ea2eea167d3941914612af0a25f570f028e2060c084c9537a61c9e3c524437
2022-09-19 17:38:10
31
59
08ab1ecabddd30d21d699f0e4cf362f207335535c1e855129d245c9134f0c7f4
2022-09-19 14:52:37
26
59
ac8cdbe302f862c4570e6571673f9ede50d1a2def1b13625f7d5c14e1401a6d0
2022-09-19 12:06:52
36
60
9ebc6bc23ecd75e320b24c9d6b7c8738ed85b4538751ebd508d6fb914ac27fb1
2022-09-16 22:11:38
2
59
d9ce3c887ac4a447ba4fb2cb83cd1869ba626c45c43271bf1a1b7e21c5d4fedc

Rule Matches per Month (last 24 months)

THOR Logo  Scan your endpoints, forensic images or collected files with our portable scanner THOR
  Warning: Access to VALHALLA is rate-limited - once you prove unworthy, access gets denied
  Nextron Systems 2022