5145 0 0 12811 0 0x8020000000000000 1254249 Security DC01.snapattack.labs S-1-5-21-2243077746-1581105691-2580999352-1104 pgustavo SNAPATTACK 0x2807a7 File 192.168.2.7 39504 \\*\IPC$ netdfs 0x3 %%4416 %%4417 - 4688 2 0 13312 0 0x8020000000000000 4314748 Security DC01.snapattack.labs S-1-5-21-1720375312-3826971191-370251595-1105 domainadmin snapattack 0x4e9d0 0x1564 C:\opa.exe %%1936 0xdac c:\opa.exe eval --bundle \\10.3.99.1\fake "data" S-1-0-0 - - 0x0 C:\Windows\System32\cmd.exe S-1-16-12288 11 2 4 11 0 0x8000000000000000 754 Microsoft-Windows-Sysmon/Operational DESKTOP-U2I67LF.snapattack.labs - 2023-09-14 17:27:42.883 E25640CB-428E-6503-4F01-000000000600 7300 C:\Windows\system32\rundll32.exe C:\Users\snapattack\AppData\Local\Microsoft\Windows\Themes\Custom.theme 2023-09-14 17:27:42.883 DESKTOP-U2I67LF\snapattack 3 5 4 3 0 0x8000000000000000 38091 Microsoft-Windows-Sysmon/Operational quadra.snapattack.labs - 2023-11-28 19:19:59.979 BD1BA16A-3D5D-6566-4607-000000001200 3644 C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE SNAPATTACK\snapattack tcp true false 10.0.1.8 quadra.snapattack.labs 60017 - false 10.0.1.128 arrakis.snapattack.labs 1433 ms-sql-s 5145 0 0 12811 0 0x8020000000000000 1254249 Security DC01.snapattack.labs S-1-5-21-2243077746-1581105691-2580999352-1104 pgustavo SNAPATTACK 0x2807a7 File 192.168.2.7 39504 \\*\IPC$ netdfs 0x3 %%4416 %%4417 - 3 5 4 3 0 0x8000000000000000 38091 Microsoft-Windows-Sysmon/Operational quadra.snapattack.labs - 2023-11-28 19:19:59.979 BD1BA16A-3D5D-6566-4607-000000001200 3644 C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE SNAPATTACK\snapattack tcp true false 10.0.1.8 quadra.snapattack.labs 60017 - false 10.0.1.128 arrakis.snapattack.labs 1433 ms-sql-s 11 2 4 11 0 0x8000000000000000 754 Microsoft-Windows-Sysmon/Operational DESKTOP-U2I67LF.snapattack.labs - 2023-09-14 17:27:42.883 E25640CB-428E-6503-4F01-000000000600 7300 C:\Windows\system32\rundll32.exe C:\Users\snapattack\Downloads\Custom.theme 2023-09-14 17:27:42.883 DESKTOP-U2I67LF\snapattack