11241100x80000000000000001590344Microsoft-Windows-Sysmon/OperationalWIN10-21H1.snapattack.labs-2026-04-21 17:43:16.717F51F9151-B719-69E7-E40D-000000000C007548C:\Users\bob\Desktop\FunnyApp.exeC:\Users\bob\AppData\Local\Temp\3ded9a61-b3cd-4acc-8dd3-85778b5fb6ab\mpengine.dll2026-04-21 17:43:16.717WIN10-21H1\bob 23542300x80000000000000001588380Microsoft-Windows-Sysmon/OperationalWIN10-21H1.snapattack.labs-2026-04-21 17:42:35.710F51F9151-B6F3-69E7-DA0D-000000000C0011096WIN10-21H1\bobC:\Users\bob\Desktop\FunnyApp.exeC:\Users\bob\AppData\Local\Microsoft\Windows\INetCache\IE\NT6M0C14\mpam-fe[1].exeMD5=9691595B71F5B575F3252116B9B7B4C3,SHA256=326200FE2F2F6AC8794D6FC8B1571CF0AA74F215308FA1A7CBB748192CB8E87B,IMPHASH=1B8228588B13615766448489C5655246truetrue 15241500x80000000000000001590509Microsoft-Windows-Sysmon/OperationalWIN10-21H1.snapattack.labs-2026-04-21 17:43:18.408F51F9151-8F0F-66AB-5100-000000000C003368C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24060.7-0\MsMpEng.exeC:\Windows\System32\drivers\ypupsude.sys2026-04-21 17:43:18.393MD5=79534331D05DFD0F747E1C129F9607E3,SHA256=41989526B4EB8D60A5E158F835EE90EEA5FE4E499705109317CD6F72114C852F,IMPHASH=AB984C67B3F5AE12FA0E91909A378B14-NT AUTHORITY\SYSTEM 22542200x80000000000000001588299Microsoft-Windows-Sysmon/OperationalWIN10-21H1.snapattack.labs-2026-04-21 17:42:17.023F51F9151-B6F3-69E7-DA0D-000000000C0011096definitionupdates.microsoft.com0type: 5 definitionupdates.microsoft.com.edgekey.net;type: 5 e6570.d.akamaiedge.net;::ffff:23.222.201.24;C:\Users\bob\Desktop\FunnyApp.exeWIN10-21H1\bob 11241100x80000000000000001588251Microsoft-Windows-Sysmon/OperationalWIN10-21H1.snapattack.labs-2026-04-21 17:42:17.155F51F9151-B6F3-69E7-DA0D-000000000C0011096C:\Users\bob\Desktop\FunnyApp.exeC:\Users\bob\AppData\Local\Microsoft\Windows\INetCache\IE\NT6M0C14\mpam-fe[1].exe2026-04-21 17:42:17.155WIN10-21H1\bob