Техническая информация
- <SYSTEM32>\cmd.exe /c "%TEMP%\demo.bat"
- ClassName: 'OLLYDBG' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %TEMP%\demo.com
- %TEMP%\hddinfo.ini
- %TEMP%\demo.bat
- %TEMP%\HDDPhysic.zip
- %TEMP%\demo.zip
- %TEMP%\HDDPhysic.dll
- <Полный путь к вирусу>
- %TEMP%\HDDPhysic.dll
- %TEMP%\hddinfo.ini
- %TEMP%\demo.com
- %TEMP%\HDDPhysic.zip
- %TEMP%\demo.zip
- ClassName: '18467-41' WindowName: ''