Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Xphm5nsLKDKHfE' = '%ALLUSERSPROFILE%\o9ZvvAiJCg42d\i0jDXgs3dlUQo.exe'
- %ALLUSERSPROFILE%\o9ZvvAiJCg42d\i0jDXgs3dlUQo.exe
- %TEMP%\k4DoNFWlKk3.exe
- %ALLUSERSPROFILE%\o9ZvvAiJCg42d\RCX1.tmp
- %ALLUSERSPROFILE%\o9ZvvAiJCg42d\i0jDXgs3dlUQo.exe
- %TEMP%\k4DoNFWlKk3.exe
- %ALLUSERSPROFILE%\o9ZvvAiJCg42d\i0jDXgs3dlUQo.exe
- ClassName: 'Indicator' WindowName: ''