Техническая информация
- '<SYSTEM32>\taskkill.exe' /f /im qqsg.exe /T
- '<SYSTEM32>\cmd.exe' /c <SYSTEM32>\abc.bat
- %WINDIR%\LastGood\TMP2.tmp
- <SYSTEM32>\SET4.tmp
- <SYSTEM32>\dllcache\ksuser.dll.new
- <SYSTEM32>\abc.dll
- <SYSTEM32>\abc.bat
- <SYSTEM32>\SET1.tmp
- <SYSTEM32>\SET1.tmp
- <SYSTEM32>\SET4.tmp в <SYSTEM32>\ksuser.dll
- <SYSTEM32>\dllcache\ksuser.dll.new в <SYSTEM32>\dllcache\ksuser.dll
- <SYSTEM32>\ksuser.dll в <SYSTEM32>\OLD3.tmp
- <SYSTEM32>\abc.dll в <SYSTEM32>\ksuser.dll
- %WINDIR%\LastGood\TMP2.tmp в %WINDIR%\LastGood\system32\ksuser.dll
- ClassName: '(null)' WindowName: '(null)'