Техническая информация
- <SYSTEM32>\tasks\v-1-1-64-1346462683-1292590978-1199051221-6663\{wta1zhe-p3ms-s4nq-8wc9-becs2gv1b1y}
- из <Полный путь к файлу> в %PROGRAMDATA%\amd64_netfx-system.configuration.install_b03f5f7f11d50a3a_10.0.18362.1_none_e517dc7dd4c5e33a\kbdadlm.exe
- '%WINDIR%\syswow64\cmd.exe' /c icacls "%PROGRAMDATA%\amd64_netfx-system.configuration.install_b03f5f7f11d50a3a_10.0.18362.1_none_e517dc7dd4c5e33a" /inheritance:e /deny "*S-1-1-0:(R,REA,RA,RD)" & icacls "%PROGRAMDATA%\amd6...' (со скрытым окном)
- '%PROGRAMDATA%\amd64_netfx-system.configuration.install_b03f5f7f11d50a3a_10.0.18362.1_none_e517dc7dd4c5e33a\kbdadlm.exe' ' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c icacls "%PROGRAMDATA%\amd64_netfx-system.configuration.install_b03f5f7f11d50a3a_10.0.18362.1_none_e517dc7dd4c5e33a" /inheritance:e /deny "*S-1-1-0:(R,REA,RA,RD)" & icacls "%PROGRAMDATA%\amd6...
- '%WINDIR%\syswow64\icacls.exe' "%PROGRAMDATA%\amd64_netfx-system.configuration.install_b03f5f7f11d50a3a_10.0.18362.1_none_e517dc7dd4c5e33a" /inheritance:e /deny "*S-1-1-0:(R,REA,RA,RD)"
- '%WINDIR%\syswow64\icacls.exe' "%PROGRAMDATA%\amd64_netfx-system.configuration.install_b03f5f7f11d50a3a_10.0.18362.1_none_e517dc7dd4c5e33a" /inheritance:e /deny "*S-1-5-7:(R,REA,RA,RD)"
- '%WINDIR%\syswow64\icacls.exe' "%PROGRAMDATA%\amd64_netfx-system.configuration.install_b03f5f7f11d50a3a_10.0.18362.1_none_e517dc7dd4c5e33a" /inheritance:e /deny "user:(R,REA,RA,RD)"
- '<SYSTEM32>\taskeng.exe' {7DF0E896-45AB-4B7B-97D5-216A8C32F20D} S-1-5-21-1960123792-2022915161-3775307078-1001:njzdrffkgi\user:Interactive:[1]