Техническая информация
- [<HKCU>\Environment] 'UserInitMprLogonScript' = '%ALLUSERSPROFILE%\apiwin_v1.0.bat'
- %ALLUSERSPROFILE%\mscrypto.dll
- %ALLUSERSPROFILE%\apiwin_v1.0.bat
- '<SYSTEM32>\cmd.exe' /c ""%ALLUSERSPROFILE%\apiwin_v1.0.bat" "
- '<SYSTEM32>\rundll32.exe' %ALLUSERSPROFILE%\mscrypto.dll,init