154100x800000000000000037806Microsoft-Windows-Sysmon/Operationalar-win-2.attackrange.local-2023-11-21 10:17:25.326{0BACA6B2-83B5-655C-8103-000000002803}360C:\Windows\System32\msdtc.exe2001.12.10941.16384 (rs1_release.160715-1616)Microsoft Distributed Transaction Coordinator ServiceMicrosoft® Windows® Operating SystemMicrosoft CorporationMSDTC.EXEmsdtc.exe -aC:\Windows\system32\NT AUTHORITY\SYSTEM{0BACA6B2-6C5A-655C-E703-000000000000}0x3e70SystemMD5=308F08347923DEEDE7BC03EC7D485841,SHA256=72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0,IMPHASH=D02F3DF332409C5D3F34BA2D38FC4ED4{0BACA6B2-83B5-655C-8003-000000002803}4684C:\ProgramData\MSB\msbtc.exeC:\ProgramData\MSB\msbtc.exeNT AUTHORITY\SYSTEM