Техническая информация
- '<SYSTEM32>\regsvr32.exe' /s "%TEMP%\FCF13F18-F83F-0349-A43E-99FDFB1CB2CD\AOSMTP.dll"
- '%TEMP%\FCF13F18-F83F-0349-A43E-99FDFB1CB2CD\<Имя файла>.exe' "/AdminEXE "
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %TEMP%\FCF13F18-F83F-0349-A43E-99FDFB1CB2CD\<Имя файла>.exe
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'Nmta'