704504000x8080000000000000145232Systemwin-host-mhaag-attack-range-569.attackrange.local221BOBC:\Temp\mimidrv.sys.Pathkernel mode driverauto start 704504000x8080000000000000145231Systemwin-host-mhaag-attack-range-569.attackrange.local22BOBC:\Temp\mimidrv.sys.Pathkernel mode driverauto start 704504000x8080000000000000145225Systemwin-host-mhaag-attack-range-569.attackrange.local2BOBC:\Temp\mimidrv.sys.Pathkernel mode driverauto start 704504000x8080000000000000145216Systemwin-host-mhaag-attack-range-569.attackrange.localbobC:\Temp\mimidrv.sys.Pathkernel mode driverauto start 704504000x8080000000000000157526Systemwin-dc-mhaag-attack-range-84.attackrange.localm2C:\Temp\mimidrv.syskernel mode driverdemand start 704504000x8080000000000000157523Systemwin-dc-mhaag-attack-range-84.attackrange.localm1C:\Temp\mimidrv.sys.Pathkernel mode driverdemand start 704504000x8080000000000000157521Systemwin-dc-mhaag-attack-range-84.attackrange.localmimikattin2C:\Temp\mimidrv.sys.Pathkernel mode driverdemand start 704504000x8080000000000000157517Systemwin-dc-mhaag-attack-range-84.attackrange.localmimikattinC:\temp\mimidrv.sys.Pathkernel mode driverdemand start 704504000x8080000000000000157515Systemwin-dc-mhaag-attack-range-84.attackrange.localatomic2223C:\temp\mimidrv.sys.Pathkernel mode driverauto start 704504000x8080000000000000157513Systemwin-dc-mhaag-attack-range-84.attackrange.localatomic223C:\temp\mimidrv.sys.Pathkernel mode driverauto start 704504000x8080000000000000157507Systemwin-dc-mhaag-attack-range-84.attackrange.localnotmimikatzc:\temp\mimidrv.syskernel mode driverauto start 704504000x8080000000000000156667Systemwin-dc-mhaag-attack-range-84.attackrange.localtestw2e24C:\AtomicRedTeam\atomics\T1543.003\bin\AtomicService.exekernel mode driverdemand start 704504000x8080000000000000156658Systemwin-dc-mhaag-attack-range-84.attackrange.localatomicmimic:\temp\mimidrv.syskernel mode driverdemand start 704504000x8080000000000000156654Systemwin-dc-mhaag-attack-range-84.attackrange.localAtomicTestService_CMDc:\users\administrator\mimidrv.syskernel mode driverdemand start 704504000x8080000000000000156649Systemwin-dc-mhaag-attack-range-84.attackrange.localatomickernelC:\AtomicRedTeam\atomics\T1543.003\bin\AtomicService.exekernel mode driverdemand start 704504000x8080000000000000154040Systemwin-dc-mhaag-attack-range-84.attackrange.localfishC:\users\administrator\desktop\mimidrv.sys.Pathkernel mode driverauto start 704504000x8080000000000000153995Systemwin-dc-mhaag-attack-range-84.attackrange.localnotacatC:\Users\Administrator\Desktop\mimidrv.sys.Pathkernel mode driverdemand start 704504000x8080000000000000153994Systemwin-dc-mhaag-attack-range-84.attackrange.localmimikatC:\Users\Administrator\Desktop\mimidrv.sys.Pathkernel mode driverdemand start 704504000x80800000000000001687SystemDESKTOP-92OQLA1MpKslf5e6a9acC:\ProgramData\Microsoft\Windows Defender\Definition Updates\{548A358B-714E-43DA-995B-D2F786587B88}\MpKslDrv.syskernel mode driverdemand start 704504000x80800000000000001488SystemDESKTOP-92OQLA1MpKslcfecce52C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8B353DD3-BBEC-409E-A05A-0017851A69B7}\MpKslDrv.syskernel mode driverdemand start 704504000x80800000000000001019SystemDESKTOP-92OQLA1MpKsle631965fC:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D7FD6A6C-6231-460A-9E9A-D7C1A5B66083}\MpKslDrv.syskernel mode driverdemand start 704504000x8080000000000000766SystemDESKTOP-92OQLA1MpKslba3c0071C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D7FD6A6C-6231-460A-9E9A-D7C1A5B66083}\MpKslDrv.syskernel mode driverdemand start