15241500x8000000000000000116093Microsoft-Windows-Sysmon/Operationaltest-lab-2026-06-11 11:50:03.770{19A82C1B-9A8A-6A2A-3900-000000000300}2636c:\windows\system32\svchost.exeC:\Windows\Temp\UDDD98D.tmp:changelist2026-06-11 11:50:03.705MD5=EC2195E3AA4C762AD402E18F4D98F11B,SHA256=0C6DB52E79D460FD0554B89E4DD877371F24269D0244C8753C15975EFF3EB13A,IMPHASH=00000000000000000000000000000000-NT AUTHORITY\SYSTEM
15241500x8000000000000000116092Microsoft-Windows-Sysmon/Operationaltest-lab-2026-06-11 11:50:03.768{19A82C1B-9A8A-6A2A-3900-000000000300}2636c:\windows\system32\svchost.exeC:\Windows\Temp\UDDD98D.tmp2026-06-11 11:50:03.705MD5=902EEBC81CF2B944ACE35E26C9772A5D,SHA256=55D998973C182C395B5407A42B63DBB528C65D829A7AF6CD08797B0EDE631EEF,IMPHASH=45ACD31CC42534BDD45B817CEAD72C37-NT AUTHORITY\SYSTEM
15241500x8000000000000000116069Microsoft-Windows-Sysmon/Operationaltest-lab-2026-06-11 11:50:02.466{19A82C1B-9A8B-6A2A-4300-000000000300}2988C:\Program Files\Windows Defender\MsMpEng.exeC:\Windows\System32\drivers\leubifbk.sys:changelist2026-06-11 11:50:02.373MD5=EC2195E3AA4C762AD402E18F4D98F11B,SHA256=0C6DB52E79D460FD0554B89E4DD877371F24269D0244C8753C15975EFF3EB13A,IMPHASH=00000000000000000000000000000000-NT AUTHORITY\SYSTEM
15241500x8000000000000000116052Microsoft-Windows-Sysmon/Operationaltest-lab-2026-06-11 11:50:02.385{19A82C1B-9A8B-6A2A-4300-000000000300}2988C:\Program Files\Windows Defender\MsMpEng.exeC:\Windows\System32\drivers\leubifbk.sys2026-06-11 11:50:02.373MD5=902EEBC81CF2B944ACE35E26C9772A5D,SHA256=55D998973C182C395B5407A42B63DBB528C65D829A7AF6CD08797B0EDE631EEF,IMPHASH=45ACD31CC42534BDD45B817CEAD72C37-NT AUTHORITY\SYSTEM
15241500x8000000000000000116043Microsoft-Windows-Sysmon/Operationaltest-lab-2026-06-11 11:50:02.197{19A82C1B-9A8B-6A2A-4300-000000000300}2988C:\Program Files\Windows Defender\MsMpEng.exeC:\Users\john-wick\AppData\Local\Temp\RP_554d9e23-f008-46a1-b328-661081ff3886\System32\wermgr.exe8797565CCE7D2AD9:WDFOO2026-06-11 11:50:02.197MD5=913B6FE6C1964A31DEDEABABDA29CD53,SHA256=2C9E07097FD5810F212D4C1A791698081D195BC86066900407AA84373C05A810,IMPHASH=00000000000000000000000000000000-NT AUTHORITY\SYSTEM
15241500x8000000000000000116042Microsoft-Windows-Sysmon/Operationaltest-lab-2026-06-11 11:50:02.197{19A82C1B-9A8B-6A2A-4300-000000000300}2988C:\Program Files\Windows Defender\MsMpEng.exeC:\Users\john-wick\AppData\Local\Temp\RP_554d9e23-f008-46a1-b328-661081ff3886\System32\wermgr.exe8797565CCE7D2AD92026-06-11 11:50:02.197MD5=5367BB5FA2320DB340E37FB42A9BFB86,SHA256=95F5C0C8688ED99F239E1E86AAD0115E773E1F0B523504FB7B5F439D9D7044AB,IMPHASH=00000000000000000000000000000000PK��
15241500x8000000000000000115685Microsoft-Windows-Sysmon/Operationaltest-lab-2026-06-11 11:49:09.479{19A82C1B-A0B4-6A2A-7702-000000000300}7344C:\Users\Public\tools\RoguePlanet-main\RoguePlanet.exeC:\Users\john-wick\AppData\Local\Temp\RP_554d9e23-f008-46a1-b328-661081ff3886\System32\wermgr.exe:WDFOO2026-06-11 11:49:09.432MD5=913B6FE6C1964A31DEDEABABDA29CD53,SHA256=2C9E07097FD5810F212D4C1A791698081D195BC86066900407AA84373C05A810,IMPHASH=00000000000000000000000000000000-test-lab\john-wick
15241500x8000000000000000115683Microsoft-Windows-Sysmon/Operationaltest-lab-2026-06-11 11:49:09.479{19A82C1B-A0B4-6A2A-7702-000000000300}7344C:\Users\Public\tools\RoguePlanet-main\RoguePlanet.exeC:\Users\john-wick\AppData\Local\Temp\RP_554d9e23-f008-46a1-b328-661081ff3886\System32\wermgr.exe2026-06-11 11:49:09.432MD5=5367BB5FA2320DB340E37FB42A9BFB86,SHA256=95F5C0C8688ED99F239E1E86AAD0115E773E1F0B523504FB7B5F439D9D7044AB,IMPHASH=00000000000000000000000000000000PK��