Technical Information
- <SYSTEM32>\tasks\updates\sbjgsvozw
- %APPDATA%\sbjgsvozw.exe
- %TEMP%\tmp1831.tmp
- %APPDATA%\36d1130a-ac2e-44f7-9dc1-e424fbcbe0ee\run.dat
- %TEMP%\tmp1831.tmp
- '23.##5.131.137':4040
- '%WINDIR%\syswow64\schtasks.exe' /Create /TN "Updates\SBJgSVOzW" /XML "%TEMP%\tmp1831.tmp"' (with hidden window)
- '%WINDIR%\syswow64\schtasks.exe' /Create /TN "Updates\SBJgSVOzW" /XML "%TEMP%\tmp1831.tmp"