Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\hiddenran.vbs.lnk
- C:\ProgramData\Windows\Mlogs\1.bat
- C:\ProgramData\Windows\Mlogs\SFN.exe
- C:\ProgramData\Windows\Mlogs\Smart Helper M.exe
- C:\ProgramData\Windows\Mlogs\SMH.exe
- C:\ProgramData\Windows\Mlogs\config.html
- C:\ProgramData\Windows\Mlogs\msvcr110.dll
- ClassName: 'EDIT' WindowName: ''
- 'C:\ProgramData\Windows\Mlogs\SFN.exe' -p12345678 -dC:\ProgramData\Windows\MLogs
- '<SYSTEM32>\cmd.exe' /c ""C:\ProgramData\Windows\Mlogs\1.bat" "