Техническая информация
- '<SYSTEM32>\taskkill.exe' /f /im Systemd.exe
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%APPDATA%\Systemd\x86\mine\Systemd.exe" ""TrustedInstallerSecured"" ENABLE
- '<SYSTEM32>\netsh.exe' advfirewall firewall add rule name=""TrustedInstallerSecured"" dir=in action=allow program="%APPDATA%\Systemd\x86\mine\Systemd.exe" enable=yes
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- %APPDATA%\Systemd\7za.exe
- %APPDATA%\Systemd\run.bat
- %APPDATA%\Systemd\worker.7z
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- ClassName: '' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c ""%APPDATA%\Systemd\run.bat" "