2024-10-14 by Thurein Oo
A little wmic enumeration
Trend Micro EndpointBasecamp.exe drops RiskIndexCollector.exe which invoke wmic to get list of Hotfixes/Patches using the command wmic qfe get Description, HotfixID, InstalledOn
EndpointBasecamp.exe
RiskIndexCollector.exe
wmic
wmic qfe get Description, HotfixID, InstalledOn
Documentation