Техническая информация
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\Del.bat" "
- '<SYSTEM32>\ping.exe' -n 3 127.0.0.1
- '<SYSTEM32>\cacls.exe' "%PROGRAM_FILES%\Wcsmie\Masker.dat" /p everyone:r
- '<SYSTEM32>\cacls.exe' "%PROGRAM_FILES%\Media Play\Media Update.vbe" /p everyone:r
- %TEMP%\Del.bat
- %TEMP%\Del.dat
- %PROGRAM_FILES%\Wcsmie\Masker.dat
- %PROGRAM_FILES%\Wcsmie\Masker.dat
- %TEMP%\Del.dat
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'