~/ cat Dotnet.exe.md █
dotnet.exe comes with .NET Framework
Paths:
C:\Program Files\dotnet\dotnet.exe
Detection: dotnet.exe spawned an unknown process
AWL bypass
dotnet.exe will execute any dll even if applocker is enabled.
dotnet.exe [PATH_TO_DLL]
Execute
dotnet.exe will execute any DLL.
dotnet.exe [PATH_TO_DLL]