11241100x800000000000000095368892Microsoft-Windows-Sysmon/Operationalwin-dc-mhaag-attack-range-909.attackrange.local-2022-11-10 21:27:54.174{1E82444B-15F2-6364-5B65-000000009502}3492C:\Program Files\Notepad++\notepad++.exeC:\Users\Administrator\Downloads\haxed.Where_my_files.txt2022-11-10 21:27:54.080ATTACKRANGE\Administrator 11241100x800000000000000095368804Microsoft-Windows-Sysmon/Operationalwin-dc-mhaag-attack-range-909.attackrange.local-2022-11-10 21:27:54.111{1E82444B-A400-636A-7A8A-010000009502}13572C:\Windows\explorer.exeC:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Recent\haxed.Where_my_files.txt.lnk2022-11-10 21:27:54.111ATTACKRANGE\Administrator 11241100x800000000000000095368721Microsoft-Windows-Sysmon/Operationalwin-dc-mhaag-attack-range-909.attackrange.local-2022-11-10 21:27:54.080{1E82444B-15F2-6364-5B65-000000009502}3492C:\Program Files\Notepad++\notepad++.exeC:\Users\Administrator\Downloads\haxed.Where_my_files.txt2022-11-10 21:27:54.080ATTACKRANGE\Administrator 11241100x800000000000000095341989Microsoft-Windows-Sysmon/Operationalwin-dc-mhaag-attack-range-909.attackrange.local-2022-11-10 21:25:57.951{1E82444B-15F2-6364-5B65-000000009502}3492C:\Program Files\Notepad++\notepad++.exeC:\Users\Administrator\Downloads\haxed.enigma2022-11-10 21:25:57.857ATTACKRANGE\Administrator 11241100x800000000000000095341909Microsoft-Windows-Sysmon/Operationalwin-dc-mhaag-attack-range-909.attackrange.local-2022-11-10 21:25:57.888{1E82444B-A400-636A-7A8A-010000009502}13572C:\Windows\explorer.exeC:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Recent\haxed.enigma.lnk2022-11-10 21:25:36.044ATTACKRANGE\Administrator 11241100x800000000000000095341824Microsoft-Windows-Sysmon/Operationalwin-dc-mhaag-attack-range-909.attackrange.local-2022-11-10 21:25:57.857{1E82444B-15F2-6364-5B65-000000009502}3492C:\Program Files\Notepad++\notepad++.exeC:\Users\Administrator\Downloads\haxed.enigma2022-11-10 21:25:57.857ATTACKRANGE\Administrator 11241100x800000000000000084693112Microsoft-Windows-Sysmon/Operationalwin-dc-mhaag-attack-range-909.attackrange.local-2022-11-10 07:55:07.545{1E82444B-AE5A-636C-CEE5-010000009502}8944C:\Program Files\Mozilla Firefox\firefox.exeC:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\83q84ckw.default-release\parent.lock2022-11-02 03:25:39.854ATTACKRANGE\Administrator 11241100x800000000000000084693050Microsoft-Windows-Sysmon/Operationalwin-dc-mhaag-attack-range-909.attackrange.local-2022-11-10 07:55:07.373{1E82444B-AE5A-636C-CEE5-010000009502}8944C:\Program Files\Mozilla Firefox\firefox.exeC:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Background Tasks Profiles\vrgtjywk.MozillaBackgroundTask-308046B0AF4A39CB-backgroundupdate\parent.lock2022-11-10 00:55:07.343ATTACKRANGE\Administrator