Technical Information
- %WINDIR%\explorer.exe
- server.exe
- %TEMP%\server.exe
- %LOCALAPPDATA%\xenocode\sandbox\1.0.0.0\2009.08.19t23.14\virtual\modified\@programfiles@\xenocode\vmx.dll
- %TEMP%\gpn.exe
- %LOCALAPPDATA%\xenocode\sandbox\1.0.0.0\2009.08.19t23.14\virtual\stubexe\@appdatalocal@\temp\server.exe
- %LOCALAPPDATA%\xenocode\sandbox\1.0.0.0\2009.08.19t23.14\virtual\sxs\manifests\server.exe_0x9e7b7aa73aa43910141fb91b632b917a.1.manifest
- %LOCALAPPDATA%\xenocode\sandbox\1.0.0.0\2009.08.19t23.14\virtual\sxs\microsoft.windows.mycoolapp@1.0.0.0\microsoft.windows.mycoolapp.manifest
- %LOCALAPPDATA%\xenocode\sandbox\1.0.0.0\2009.08.19t23.14\virtual\sxs\microsoft.windows.mycoolapp@1.0.0.0\microsoft.windows.mycoolapp@1.0.0.0.manifest
- %APPDATA%\addon.dat
- '%TEMP%\server.exe'
- '%TEMP%\gpn.exe'
- '%LOCALAPPDATA%\xenocode\sandbox\1.0.0.0\2009.08.19t23.14\virtual\stubexe\@appdatalocal@\temp\server.exe'
- '%TEMP%\server.exe' ' (with hidden window)