Техническая информация
- <SYSTEM32>\taskkill.exe /f /im zhengtu.dat /T
- <SYSTEM32>\net1.exe stop cryptsvc
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\abc.bat
- <SYSTEM32>\net.exe stop cryptsvc
- <SYSTEM32>\sc.exe config cryptsvc start= disabled
- <SYSTEM32>\sc.exe delete cryptsvc
- <SYSTEM32>\abc.bat
- <SYSTEM32>\abc.dll
- ClassName: '' WindowName: ''