Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\UpdateJava.lnk
- C:\ProgramData\Windows\System.vbs
- C:\ProgramData\Windows\System.exe
- C:\ProgramData\Windows\sustem.bat
- C:\ProgramData\Windows\libcurl-4.dll
- C:\ProgramData\Windows\libcrypto-1.0.0.dll
- C:\ProgramData\Windows\Auto.exe
- C:\ProgramData\Windows\msvcr120.dll
- C:\ProgramData\Windows\libssl-1.0.0.dll
- C:\ProgramData\Windows\libjansson-4.dll
- C:\ProgramData\Windows\libgcc_s_seh-1.dll
- C:\ProgramData\Windows\libz-1.dll
- C:\ProgramData\Windows\libwinpthread-1.dll
- C:\ProgramData\Windows\libstdc++-6.dll
- ClassName: 'EDIT' WindowName: ''
- 'C:\ProgramData\Windows\System.exe'
- 'C:\ProgramData\Windows\System.exe' --algo=cryptonight --url=stratum+tcp://cryptonight.jp.nicehash.com:3355 --userpass=1M7xCZBkYTVWzeVQrVa6dCxZyWb73WkZH7.Klient:x --threads=1 --api-bind=4001 -B
- '<SYSTEM32>\cmd.exe' /c ""C:\ProgramData\Windows\sustem.bat" "