Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'nighthawk' = '<LS_APPDATA>\nighthawk\nighthawk32.exe'
- <LS_APPDATA>\nighthawk\nighthawk32.exe
- %WINDIR%\Explorer.EXE
- C:\RCX1.tmp
- <LS_APPDATA>\nighthawk\nighthawk32.dll
- <LS_APPDATA>\nighthawk\nighthawk32.exe
- <LS_APPDATA>\nighthawk\nighthawk32.dll
- ClassName: 'Indicator' WindowName: ''