Technical Information
- '%WINDIR%\syswow64\netsh.exe' firewall add portopening TCP 5088 "EmbratoriaRemote"
- <Current directory>\ip.txt
- 'localhost':5088
- 'go.microsoft.com':80
- 'download.microsoft.com':443
- 'localhost':49175
- 'download.microsoft.com':443
- DNS ASK go.microsoft.com
- DNS ASK download.microsoft.com
- DNS ASK microsoft.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%WINDIR%\syswow64\netsh.exe' firewall add portopening TCP 5088 "EmbratoriaRemote"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c ipconfig > ip.txt
- '%WINDIR%\syswow64\ipconfig.exe'
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "<Full path to file>"