Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Home' = '%ProgramFiles%\Java\jre1.8.0_45\bin\javaw.exe -jar %APPDATA%\Microsoft\.tmp\1664261546023.tmp'
- %APPDATA%\microsoft\.tmp\1664261546023.tmp
- %APPDATA%\microsoft\.tmp\1664261546023.tmp
- '%ProgramFiles%\java\jre1.8.0_45\bin\javaw.exe' -jar "<Full path to file>"
- '<SYSTEM32>\attrib.exe' +H %APPDATA%\Microsoft\.tmp\1664261546023.tmp
- '<SYSTEM32>\cmd.exe' /c "REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /v Home /d "%ProgramFiles%\Java\jre1.8.0_45\bin\javaw.exe -jar %APPDATA%\Microsoft\.tmp\1664261546023.tmp" /f"
- '<SYSTEM32>\reg.exe' ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /v Home /d "%ProgramFiles%\Java\jre1.8.0_45\bin\javaw.exe -jar %APPDATA%\Microsoft\.tmp\1664261546023.tmp" /f