734700x8000000000000000900658Microsoft-Windows-Sysmon/Operationaltestlab-win-dc.attackrange.local-2024-09-09 15:42:07.859{35cd7c13-174b-66df-b505-000000009402}6272C:\Program Files\Mozilla Firefox\firefox.exeC:\Windows\System32\taskschd.dll10.0.17763.2213 (WinBuild.160101.0800)Task Scheduler COM APIMicrosoft® Windows® Operating SystemMicrosoft Corporationtaskschd.dllMD5=8C97A2B62DF4EEB7212651D6CCF9526F,SHA256=60CE286B7B62DD3C77F63C79742D43C6BA33393E41F9FBC93E1C6239019D9A96,IMPHASH=723D6EBFFD0528A2001EABF3A7BAFF6CtrueMicrosoft WindowsValidATTACKRANGE\Administrator 734700x8000000000000000890418Microsoft-Windows-Sysmon/Operationaltestlab-win-dc.attackrange.local-2024-09-09 15:10:33.908{35cd7c13-0fe8-66df-0f05-000000009402}6320C:\Temp\valleyrat.exeC:\Windows\System32\taskschd.dll10.0.17763.2213 (WinBuild.160101.0800)Task Scheduler COM APIMicrosoft® Windows® Operating SystemMicrosoft Corporationtaskschd.dllMD5=8C97A2B62DF4EEB7212651D6CCF9526F,SHA256=60CE286B7B62DD3C77F63C79742D43C6BA33393E41F9FBC93E1C6239019D9A96,IMPHASH=723D6EBFFD0528A2001EABF3A7BAFF6CtrueMicrosoft WindowsValidATTACKRANGE\Administrator 734700x8000000000000000890347Microsoft-Windows-Sysmon/Operationaltestlab-win-dc.attackrange.local-2024-09-09 15:10:33.721{35cd7c13-0fe8-66df-0f05-000000009402}6320C:\Temp\valleyrat.exeC:\Windows\System32\taskschd.dll10.0.17763.2213 (WinBuild.160101.0800)Task Scheduler COM APIMicrosoft® Windows® Operating SystemMicrosoft Corporationtaskschd.dllMD5=8C97A2B62DF4EEB7212651D6CCF9526F,SHA256=60CE286B7B62DD3C77F63C79742D43C6BA33393E41F9FBC93E1C6239019D9A96,IMPHASH=723D6EBFFD0528A2001EABF3A7BAFF6CtrueMicrosoft WindowsValidATTACKRANGE\Administrator 734700x8000000000000000886452Microsoft-Windows-Sysmon/Operationaltestlab-win-dc.attackrange.local-2024-09-09 14:59:19.600{35cd7c13-0d46-66df-cd04-000000009402}4740C:\Temp\valleyrat.exeC:\Windows\System32\taskschd.dll10.0.17763.2213 (WinBuild.160101.0800)Task Scheduler COM APIMicrosoft® Windows® Operating SystemMicrosoft Corporationtaskschd.dllMD5=8C97A2B62DF4EEB7212651D6CCF9526F,SHA256=60CE286B7B62DD3C77F63C79742D43C6BA33393E41F9FBC93E1C6239019D9A96,IMPHASH=723D6EBFFD0528A2001EABF3A7BAFF6CtrueMicrosoft WindowsValidATTACKRANGE\Administrator 734700x8000000000000000886433Microsoft-Windows-Sysmon/Operationaltestlab-win-dc.attackrange.local-2024-09-09 14:59:19.393{35cd7c13-0d46-66df-cd04-000000009402}4740C:\Temp\valleyrat.exeC:\Windows\System32\taskschd.dll10.0.17763.2213 (WinBuild.160101.0800)Task Scheduler COM APIMicrosoft® Windows® Operating SystemMicrosoft Corporationtaskschd.dllMD5=8C97A2B62DF4EEB7212651D6CCF9526F,SHA256=60CE286B7B62DD3C77F63C79742D43C6BA33393E41F9FBC93E1C6239019D9A96,IMPHASH=723D6EBFFD0528A2001EABF3A7BAFF6CtrueMicrosoft WindowsValidATTACKRANGE\Administrator