Техническая информация
- '%WINDIR%\explorer.exe'
- '<SYSTEM32>\rundll32.exe' fldrclnr.dll,Wizard_RunDLL
- '<SYSTEM32>\attrib.exe' Цh IconCache.db
- '<SYSTEM32>\cmd.exe' /c %TEMP%\~1.bat <Полный путь к вирусу>
- '<SYSTEM32>\taskkill.exe' /s localhost /f /im explorer.exe
- %WINDIR%\Explorer.EXE
- %TEMP%\~1.bat
- %TEMP%\~1.bat
- %TEMP%\~1.bat
- ClassName: 'OleMainThreadWndClass' WindowName: ''
- ClassName: 'SystemTray_Main' WindowName: ''
- ClassName: 'CSCHiddenWindow' WindowName: ''
- ClassName: 'Proxy Desktop' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'BaseBar' WindowName: 'ChanApp'