Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WindowsUpdater' = '"<Full path to file>" ..'
- %APPDATA%\microsoft\windows\start menu\programs\startup\<File name>.exe
- %APPDATA%\microsoft\windows\start menu\programs\startup\windowsupdater.lnk
- %TEMP%\<File name>.exe
- %LOCALAPPDATA%\get_cliboard_address\<File name>.exe_url_vj2j5hkevalxkhq1keqjyag1xhudaxho\1.0.0.0\wdtofymy.newcfg
- from %LOCALAPPDATA%\get_cliboard_address\<File name>.exe_url_vj2j5hkevalxkhq1keqjyag1xhudaxho\1.0.0.0\wdtofymy.newcfg to %LOCALAPPDATA%\get_cliboard_address\<File name>.exe_url_vj2j5hkevalxkhq1keqjyag1xhudaxho\1.0.0.0\user.config