Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Systemexec.exe' = '%WINDIR%\systemexec.exe'
- '<SYSTEM32>\attrib.exe' +h +s +r <DRIVERS>\etc\hosts
- '<SYSTEM32>\reg.exe' add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v Systemexec.exe /t REG_sz /d %WINDIR%\systemexec.exe /f
- '<SYSTEM32>\attrib.exe' -h -s -r <DRIVERS>\etc\hosts
- %WINDIR%\systemexec.exe
- <DRIVERS>\etc\hоsts
- %TEMP%\~1.bat
- %TEMP%\~1.bat
- %TEMP%\~1.bat
- ClassName: 'Indicator' WindowName: ''