Техническая информация
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\WinInetDriver.url
- %TEMP%\nso2.tmp
- %TEMP%\nsj3.tmp\System.dll
- %APPDATA%\1337\setup.exe
- %APPDATA%\1337\AtBroker.exe
- %TEMP%\is-98NFK.tmp\setup.tmp
- %ALLUSERSPROFILE%\Application Data\{eefbc8-836370-209b-485b5f563e60}\hostdl.exe
- %ALLUSERSPROFILE%\Application Data\{eefbc8-836370-209b-485b5f563e60}\hostdl.exe
- %TEMP%\nsj3.tmp\System.dll
- '%APPDATA%\1337\setup.exe'
- '%APPDATA%\1337\AtBroker.exe'
- '%TEMP%\is-98NFK.tmp\setup.tmp' /SL5="$40092,2353075,145920,%APPDATA%\1337\setup.exe"
- '<SYSTEM32>\schtasks.exe' /create /tn WinInetDriver /tr %ALLUSERSPROFILE%\Application Data\{eefbc8-836370-209b-485b5f563e60}\hostdl.exe /sc minute /F