Техническая информация
- '<SYSTEM32>\taskkill.exe' /f /im rundll32.exe
- %TEMP%\7ZipSfx.000\nPCVJ.cmd
- %TEMP%\7ZipSfx.000\irvJl.dll.zip
- %TEMP%\7ZipSfx.000\7za.dll
- %TEMP%\7ZipSfx.000\7za.exe
- %TEMP%\7ZipSfx.000\7zxa.dll
- ClassName: '' WindowName: ''
- '%TEMP%\7ZipSfx.000\7za.exe' x -r -pgj,tlf,eltnpfyfvb "%TEMP%\7ZipSfx.000\irvJl.dll.zip" -o"%TEMP%\7ZipSfx.000"
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\7ZipSfx.000\nPCVJ.cmd" "
- '<SYSTEM32>\rundll32.exe' "irvJl.dll",ou34