Technical Information
- '' (downloaded from the Internet)
- '<SYSTEM32>\taskkill.exe' /F /im SMSvlHost.exe
- '<SYSTEM32>\taskkill.exe' /F /im MSASCuiL_x32.exe
- '<SYSTEM32>\taskkill.exe' /F /im smss.exe
- C:\ProgramData\Microsoft\Defender\jusched_srv.exe
- 'mi##.##rabotaibitok.ru':80
- http://mi##.##rabotaibitok.ru/Downloads/Servise/jusched_srv.exe
- DNS ASK mi##.##rabotaibitok.ru
- ClassName: '' WindowName: ''
- 'C:\ProgramData\Microsoft\Defender\jusched_srv.exe' -i
- '<SYSTEM32>\sc.exe' delete clr_optimization_v1.0.18957_x64
- '<SYSTEM32>\sc.exe' stop clr_optimization_v1.0.18957_x64