Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Beacon] 'Start' = '00000001'
- [<HKLM>\SYSTEM\ControlSet001\Services\Beacon] 'ImagePath' = '<DRIVERS>\Beacon.sys'
- [<HKLM>\SYSTEM\ControlSet001\Services\6to4\Parameters] 'ServiceDll' = '<SYSTEM32>\Hfapp.dll'
- [<HKLM>\SYSTEM\ControlSet001\Services\6to4] 'Start' = '00000002'
- [<HKLM>\SYSTEM\ControlSet001\Services\6to4] 'ImagePath' = '<SYSTEM32>\svchost.exe -k netsvcs'
- '<SYSTEM32>\rundll32.exe' "%APPDATA%\tmp2.tmp", Install <Полный путь к файлу>
- <SYSTEM32>\Hfapp.dll
- <DRIVERS>\Beacon.sys
- <SYSTEM32>\noiset.dat
- %APPDATA%\tmp1.tmp
- %APPDATA%\tmp2.tmp
- <DRIVERS>\Beacon.sys
- %APPDATA%\tmp2.tmp
- %APPDATA%\tmp1.tmp