Technical Information
- [<HKLM>\Software\Microsoft\Windows\CurrentVersion\Run] '<File name> Start' = '<Full path to file>'
- Handler for all processes: <PATH_SAMPLE>.01
- Handler for all processes: <PATH_SAMPLE>.01
- <PATH_SAMPLE>.02
- %PROGRAMDATA%\microsoft\windows\start menu\programs\аrdamаx kеylogger 5.1\аrdamаx kеylogger 5.1.lnk
- <PATH_SAMPLE>.01
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'
- ClassName: 'IEFrame' WindowName: ''