Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Slyfox' = '%WINDIR%/system32/shut.bat'
- <SYSTEM32>\reg.exe add Hkey_Current_User\Software\Microsoft\Windows\CurrentVersion\Run /v Slyfox /t REG_SZ /d %WINDIR%/system32/shut.bat
- <SYSTEM32>\shut.bat
- %TEMP%\a84978.bat
- %TEMP%\a84978.bat
- %TEMP%\a84978.bat
- ClassName: 'Indicator' WindowName: ''