Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'KSiCu1W5xp0P' = '%ALLUSERSPROFILE%\0EW0Hf11Dd0T\D2RS6yagNPirFz.exe'
- %ALLUSERSPROFILE%\0EW0Hf11Dd0T\D2RS6yagNPirFz.exe
- %TEMP%\O8vcbSfJz06D.exe
- %ALLUSERSPROFILE%\0EW0Hf11Dd0T\RCX1.tmp
- %ALLUSERSPROFILE%\0EW0Hf11Dd0T\D2RS6yagNPirFz.exe
- %TEMP%\O8vcbSfJz06D.exe
- %ALLUSERSPROFILE%\0EW0Hf11Dd0T\D2RS6yagNPirFz.exe
- ClassName: 'Indicator' WindowName: ''