Technical Information
- '<SYSTEM32>\taskkill.exe' /f /IM phpCgiExeLoop.exe
- '<SYSTEM32>\taskkill.exe' /f /IM nginx.exe
- '<SYSTEM32>\taskkill.exe' /f /IM php-cgi.exe
- <SYSTEM32>\cmd.exe
- %TEMP%\1.tmp\2.bat
- %TEMP%\1.tmp\2.bat
- ClassName: '' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\2.bat" <Full path to file>"
- '<SYSTEM32>\mode.com' CON:cols=70 lines=5