APT Lateral Movement via WMIC with Explicit Remote Node Targeting

Identifies wmic.exe usage with /node: parameter targeting remote hosts other than localhost, a documented APT3 technique for remote command execution and system information gathering in compromised networks