Техническая информация
- '<SYSTEM32>\taskkill.exe' /f /im Systemd.exe
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram ""%APPDATA%\Systemd\Systemd.exe"" ""TrustedInstallerSecured"" ENABLE
- '<SYSTEM32>\netsh.exe' advfirewall firewall add rule name=""TrustedInstallerSecured"" dir=in action=allow program=""%APPDATA%\Systemd\Systemd.exe"" enable=yes
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\temp_0.tmp
- %APPDATA%\Systemd\7za.dll
- %APPDATA%\Systemd\7za.exe
- %APPDATA%\Systemd\7zxa.dll
- %APPDATA%\Systemd\pack.7z
- %APPDATA%\Systemd\run.bat
- %APPDATA%\Systemd\AMD64\Systemd.exe
- %APPDATA%\Systemd\nssm.exe
- %APPDATA%\Systemd\x86\Systemd.exe
- %APPDATA%\Systemd\config.json
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- ClassName: '' WindowName: ''
- '%APPDATA%\Systemd\7za.exe' x "%APPDATA%\Systemd\pack.7z" -pMoranoMine777 -y
- '<SYSTEM32>\cmd.exe' /c ""%APPDATA%\Systemd\run.bat" "