Technical Information
- [HKCU\Software\Microsoft\Windows\CurrentVersion\run] 'Java:::::::' = '%WINDIR%\Java\Update\JavaUpdate.exe'
- %TEMP%\20231119165552.wav
- %WINDIR%\soundtemp\20231119165553.jpg
- '%WINDIR%\syswow64\cmd.exe' /c reg add HKCU\Software\Microsoft\Windows\CurrentVersion\run /v Java::::::: /d %windir%\Java\Update\JavaUpdate.exe /f' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c <SYSTEM32>\rar a -df %WINDIR%\SoundTemp.rar %WINDIR%\SoundTemp' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c reg add HKCU\Software\Microsoft\Windows\CurrentVersion\run /v Java::::::: /d %windir%\Java\Update\JavaUpdate.exe /f
- '%WINDIR%\syswow64\reg.exe' add HKCU\Software\Microsoft\Windows\CurrentVersion\run /v Java::::::: /d %WINDIR%\Java\Update\JavaUpdate.exe /f
- '%WINDIR%\syswow64\cmd.exe' /c <SYSTEM32>\rar a -df %WINDIR%\SoundTemp.rar %WINDIR%\SoundTemp