Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'NexTOJb7s' = '%ALLUSERSPROFILE%\5kNKCgZXPB6D\sx8XlczOgBL2Q.exe'
- %ALLUSERSPROFILE%\5kNKCgZXPB6D\sx8XlczOgBL2Q.exe
- %TEMP%\0rHt0xkYmrQji4.exe
- %ALLUSERSPROFILE%\5kNKCgZXPB6D\RCX1.tmp
- %ALLUSERSPROFILE%\5kNKCgZXPB6D\sx8XlczOgBL2Q.exe
- %TEMP%\0rHt0xkYmrQji4.exe
- %ALLUSERSPROFILE%\5kNKCgZXPB6D\sx8XlczOgBL2Q.exe
- ClassName: 'Indicator' WindowName: ''