Technical Information
- [<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows] 'AppInit_DLLs' = '%HOMEPATH%\Documents\Iterra\assqxbc.dll'
- [<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows] 'LoadAppInit_DLLs' = '00000001'
- %HOMEPATH%\documents\iterra\assqxbc.dll
- %HOMEPATH%\documents\iterra\t03emp03.reg
- %HOMEPATH%\documents\iterra\t03emp03.reg
- ClassName: 'RegEdit_RegEdit' WindowName: ''
- '%WINDIR%\syswow64\regedt32.exe' /s "%HOMEPATH%\Documents\Iterra\T03emp03.reg"
- '%WINDIR%\syswow64\regedit.exe' /s "%HOMEPATH%\Documents\Iterra\T03emp03.reg"