Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Reg' = '"C:\Logs\screen.exe"'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe' /logtoconsole=false /logfile= /u "C:\Logs\screen.exe"
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe' --max-cpu-usage=50 -o xmr.pool.minergate.com:45560 -u martinkansk9@gmail.com -p x
- '<SYSTEM32>\reg.exe' add "HKEY_CURRENT_USER\ScreenTouch" /v "parameter" /t reg_sz /d "value" /f
- 'C:\Logs\screen.exe'
- '<SYSTEM32>\cmd.exe' /c ""C:\Logs\start.bat" "
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe
- %APPDATA%\Folder\File.EXE
- %TEMP%\4556144.rwe4pgibVia.exe
- C:\Logs\screen.exe
- C:\Logs\start.bat
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''