Техническая информация
- '<SYSTEM32>\shutdown.exe' -l -t 1
- '<SYSTEM32>\logonui.exe' /status
- '<SYSTEM32>\cmd.exe' /c ""<SYSTEM32>\嫁接.cmd" "
- '%WINDIR%\regedit.exe' /s ╝╙╘╪.reg
- <SYSTEM32>\加载.reg
- <SYSTEM32>\嫁接.cmd
- <SYSTEM32>\嫁接.cmd
- <SYSTEM32>\mmc.exe
- <SYSTEM32>\gpedit.msc
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- ClassName: 'StatusWindowClass' WindowName: ''
- ClassName: 'EDIT' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''