Technical Information
- '<SYSTEM32>\taskkill.exe' /f /im javaw.exe
- javaw.exe
- C:\WinNT\16737603074330.vbs
- C:\WinNT\16737603074330.bat
- C:\WinNT\AVST.exe
- C:\WinNT\EPD.bat
- C:\WinNT\System.vbs
- C:\WinNT\winmgtsOLD.dll
- C:\WinNT\hdtT76dFN5t22hQhybrT.exe
- C:\WinNT\System.lnk
- ClassName: 'EDIT' WindowName: ''
- ClassName: '' WindowName: ''
- '<SYSTEM32>\wscript.exe' "C:\WinNT\16737603074330.vbs"
- 'C:\WinNT\AVST.exe' -pMTY3Mzc2MDMwNzQzMzA=
- '<SYSTEM32>\wscript.exe' "C:\WinNT\System.vbs"
- '<SYSTEM32>\cmd.exe' /c ""C:\WinNT\16737603074330.bat" "
- '<SYSTEM32>\cmd.exe' /c ""C:\WinNT\EPD.bat" "
- '<SYSTEM32>\attrib.exe' -R /S C:/WinNT/