Техническая информация
- '<SYSTEM32>\attrib.exe' -s -h -r "%APPDATA%\gnupg\*.*"
- '<SYSTEM32>\attrib.exe' -s -h -r "%APPDATA%\gnupg"
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 4
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\uncrypt.cmd" "
- '<SYSTEM32>\attrib.exe' -s -h -r "%TEMP%\*.gpg"
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\7ZSfx000.cmd" "
- %TEMP%\iconv.dll
- %TEMP%\7ZSfx000.cmd
- %TEMP%\9834jkg.bin
- %TEMP%\decrypt.exe
- %TEMP%\sec.key
- %TEMP%\uncrypt.cmd
- %TEMP%\vault
- %TEMP%\7ZSfx000.cmd
- ClassName: 'Shell_TrayWnd' WindowName: ''