Техническая информация
- <SYSTEM32>\cmd.exe /c """%TEMP%\ssuxscci\ngdbqjog.cmd"" "
- <SYSTEM32>\taskkill.exe /im opera.exe /f /t
- <SYSTEM32>\notepad.exe "%TEMP%\ssuxscci\lapsbdkg.txt"
- <SYSTEM32>\wscript.exe ""%TEMP%\ssuxscci\lgdpkgoi.vbs""
- %TEMP%\ssuxscci\ngdbqjog.cmd
- %TEMP%\ssuxscci\mdm.exe
- %TEMP%\ssuxscci\lapsbdkg.txt
- %TEMP%\TROJ_835.EXE
- %TEMP%\ssuxscci\lgdpkgoi.vbs
- %TEMP%\ssuxscci\lfptmqle.jpg
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''