Technical Information
- <SYSTEM32>\dllcache\explorer.exe.new
- %WINDIR%\explorer.exe.new
- %TEMP%\4JIN2AR9.bat
- %TEMP%\4JIN2AR9.bat
- from %WINDIR%\explorer.exe to %HOMEPATH%\Desktop\explorer.exe
- '%HOMEPATH%\desktop\explorer.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\4JIN2AR9.bat" <Full path to file>"