Technical Information
- %WINDIR%\dcelgpmwcrdm.exe
- %WINDIR%\dcelgpmwcrdm.exe
- '%WINDIR%\dcelgpmwcrdm.exe'
- '%WINDIR%\syswow64\cmd.exe' /c DEL <Full path to file>' (with hidden window)
- '<SYSTEM32>\wbem\wmic.exe' shadowcopy delete /noin teractive' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c DEL <Full path to file>
- '<SYSTEM32>\wbem\wmic.exe' shadowcopy delete /noin teractive