Техническая информация
- <SYSTEM32>\cmd.exe /c ""%TEMP%\1.tmp\FaceBook Vip Inicio.Bat""
- %TEMP%\1.tmp\binaries.txt
- %TEMP%\1.tmp\FaceBook Vip Inicio.Bat
- %TEMP%\1.tmp\b2e
- %TEMP%\1.tmp\b2e.dll
- %WINDIR%\regedit.exe
- %WINDIR%\TASKMAN.EXE
- <SYSTEM32>\mouse.drv
- <SYSTEM32>\msvideo.dll
- %WINDIR%\explorer.exe
- <SYSTEM32>\taskmgr.exe
- %TEMP%\1.tmp\b2e.dll
- <SYSTEM32>\taskkill.exe
- <SYSTEM32>\tasklist.exe
- <SYSTEM32>\shell.dll
- <SYSTEM32>\hal.dll
- %WINDIR%\system\SYSTEM.DRV
- %TEMP%\1.tmp\binaries.txt
- %TEMP%\1.tmp\b2e
- <SYSTEM32>\system.drv
- <SYSTEM32>\keyboard.drv
- <SYSTEM32>\keyboard.sys
- <SYSTEM32>\win.com
- <SYSTEM32>\command.com