Техническая информация
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\j9p92ha5.exe.lnk
- '<SYSTEM32>\j9p92ha5.exe'
- 'C:\mh2.exe'
- '<SYSTEM32>\findstr.exe' /i /b "mh2.exe"
- '<SYSTEM32>\attrib.exe' C:\mh2.exe.bat -r -a -s -h
- '<SYSTEM32>\tasklist.exe'
- '<SYSTEM32>\cmd.exe' /c C:\mh2.exe.bat
- '<SYSTEM32>\attrib.exe' C:\mh2.exe.bat -r -a +s +h
- ClassName: 'OLLYDBG' WindowName: ''
- <SYSTEM32>\j9p92ha5.exe
- C:\mh2.exe
- C:\mh2.exe.bat
- 'st###.xz777.com':189
- DNS ASK st###.xz777.com
- ClassName: 'Shell_TrayWnd' WindowName: ''