Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'nXddc4qYvu3' = '%ALLUSERSPROFILE%\yuj8Nfnui\Kga9WUia64Jia.exe'
- %ALLUSERSPROFILE%\yuj8Nfnui\Kga9WUia64Jia.exe
- %TEMP%\6ANfwdPpSM.exe
- %ALLUSERSPROFILE%\yuj8Nfnui\RCX1.tmp
- %ALLUSERSPROFILE%\yuj8Nfnui\Kga9WUia64Jia.exe
- %TEMP%\6ANfwdPpSM.exe
- %ALLUSERSPROFILE%\yuj8Nfnui\Kga9WUia64Jia.exe
- ClassName: 'Indicator' WindowName: ''