Related to #5 it might be amusing to have some fake strings in there "in the clear" (perhaps pointing at canary tokens of some form) to act as misdirection.
Also perhaps the agent, if ran without any args, should beacon to a canary token of some form to indicate its been ran in some kind of sandbox. This specific method has proved useful in the past for detecting stuff like Palo Alto boxes intercepting downloads.
Related to #5 it might be amusing to have some fake strings in there "in the clear" (perhaps pointing at canary tokens of some form) to act as misdirection.
Also perhaps the agent, if ran without any args, should beacon to a canary token of some form to indicate its been ran in some kind of sandbox. This specific method has proved useful in the past for detecting stuff like Palo Alto boxes intercepting downloads.