Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Intel Windows' = '%APPDATA%\Intel\IntelCorp.exe'
- %TEMP%\158281.bat
- %APPDATA%\Intel\IntelCorp.exe
- C:\DbgLog1.log
- '%APPDATA%\Intel\IntelCorp.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\158281.bat" "
- '<SYSTEM32>\reg.exe' ADD "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "Intel Windows" /t REG_SZ /d "%APPDATA%\Intel\IntelCorp.exe" /f