Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'System Driver Component' = '"<SYSTEM32>\"'
- %TEMP%\ServerZmini.exe
- %TEMP%\hInjector.exe
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\vbc.exe
- %ALLUSERSPROFILE%\Application Data\Microsoft Corporation.exe
- %TEMP%\ServerZmini.exe
- %TEMP%\hInjector.exe
- ClassName: '' WindowName: ''