gc_worker.exe
2023-09-13 by rcegan
Base64-encoded PowerShell from Azure's own agent!
The Azure Connected Machine Agent spawns a process that runs encoded Powershell strings. Triggers when the agent downloads new policies from Azure.
2023-09-13 by rcegan
Base64-encoded PowerShell from Azure's own agent!
The Azure Connected Machine Agent spawns a process that runs encoded Powershell strings. Triggers when the agent downloads new policies from Azure.