Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\config.exe
- '%TEMP%\tmp0.exe'
- '<SYSTEM32>\wscript.exe' "%TEMP%\dump.vbs"
- %TEMP%\bassmod.dll
- %TEMP%\aut3.tmp
- %TEMP%\deepweb.txt
- %TEMP%\Berlin Sans FB.TTF
- %TEMP%\7CEB9B2A0E395BD64E74381485A106AF.dll
- %TEMP%\tmp0.exe
- %TEMP%\aut1.tmp
- %TEMP%\dup2patcher.dll
- %TEMP%\dump.vbs
- %TEMP%\aut2.tmp
- %TEMP%\aut3.tmp
- %TEMP%\aut2.tmp
- %TEMP%\aut1.tmp
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'