Техническая информация
- <SYSTEM32>\tasks\host
- %TEMP%\folder\file.exe
- %TEMP%\67bb8ef73f9b4a91895bc1471928126c.xml
- %APPDATA%\36d1130a-ac2e-44f7-9dc1-e424fbcbe0ee\run.dat
- %APPDATA%\36d1130a-ac2e-44f7-9dc1-e424fbcbe0ee\catalog.dat
- %APPDATA%\36d1130a-ac2e-44f7-9dc1-e424fbcbe0ee\storage.dat
- %APPDATA%\36d1130a-ac2e-44f7-9dc1-e424fbcbe0ee\settings.bin
- '45.##8.49.96':1759
- '%WINDIR%\syswow64\cmd.exe' /c schtasks /Create /TN Host /XML "%TEMP%\67bb8ef73f9b4a91895bc1471928126c.xml"
- '%WINDIR%\syswow64\schtasks.exe' /Create /TN Host /XML "%TEMP%\67bb8ef73f9b4a91895bc1471928126c.xml"