Technical Information
- [<HKLM>\SYSTEM\ControlSet001\Services\cuEDCrZjFlo] 'ImagePath' = '<DRIVERS>\cuEDCrZjFlo.sys'
- '<SYSTEM32>\regsvr32.exe' /s "<Current directory>\eylogin.dll"
- <DRIVERS>\cuEDCrZjFlo.sys
- <Current directory>\eylogin.dll
- %TEMP%\3.tmp
- %TEMP%\1.tmp
- %TEMP%\2.tmp
- %TEMP%\3.tmp
- <DRIVERS>\cuEDCrZjFlo.sys
- %TEMP%\1.tmp
- %TEMP%\2.tmp
- ClassName: 'Shell_TrayWnd' WindowName: ''