Техническая информация
- C:\1.bat
- C:\OnOnion.sfx.exe
- C:\OnOnion.exe
- %APPDATA%\History
- %WINDIR%Data\hostdl.exe
- %APPDATA%\History
- %WINDIR%Data\hostdl.exe
- C:\OnOnion.exe
- ClassName: 'EDIT' WindowName: ''
- 'C:\OnOnion.sfx.exe' -p1234567890 -dc:\
- 'C:\OnOnion.exe'
- '%WINDIR%Data\hostdl.exe' "c:\OnOnion.exe"
- '<SYSTEM32>\cmd.exe' /c ""c:\1.bat" "
- '<SYSTEM32>\schtasks.exe' /create /tn UpdateService /tr "%WINDIR%Data\hostdl.exe" /sc minute /F