Technical Information
- %TEMP%\e_4\krnln.fnr
- %TEMP%\e_4\exmlrpc.fne
- %TEMP%\e_4\dp1.fne
- %WINDIR%\syswow64\_systemservices.exe
- %WINDIR%\syswow64\_systemservices.dll
- %WINDIR%\fonts\308d446f8669fb7fb0fc9cb6c439038e.dat
- C:\del_1.bat
- %TEMP%\_eviip.tmp
- %TEMP%\e_4\krnln.fne
- %ProgramFiles%\internet explorer\ijl15.dll
- %WINDIR%\syswow64\_systemservices.exe
- %WINDIR%\syswow64\_systemservices.dll
- ClassName: 'Static' WindowName: ''
- '%WINDIR%\syswow64\_systemservices.exe'
- '%ProgramFiles%\internet explorer\iexplore.exe' -nohome' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c c:\del_1.bat' (with hidden window)
- '%ProgramFiles%\internet explorer\iexplore.exe' -nohome
- '%WINDIR%\syswow64\cmd.exe' /c c:\del_1.bat