Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'ntrty' = 'c:\ntrty.exe'
- C:\ntrty.exe
- <SYSTEM32>\reg.exe ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /v ntrty /t REG_SZ /d c:\ntrty.exe /f
- C:\ntrty.exe
- ClassName: 'Indicator' WindowName: ''