Technical Information
- from <Full path to file> to %ALLUSERSPROFILE%\nethelper\cache\rzpgwrbfmzfwvhjczmsj\nethelper.exe
- DNS ASK or####nsterych.xyz
- DNS ASK ld####jasigrap.xyz
- '%WINDIR%\syswow64\cmd.exe' /C reg add "HKEY_CURRENT_USER\Software\NetHelper" /v path /t REG_SZ /d %ALLUSERSPROFILE%\NetHelper\Cache\RZpgWrBfmZfWvhjcZmsJ /f' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /C timeout /t 60 && SCHTASKS /Create /SC MINUTE /MO 1 /TN "Service for windows Network Helper updates" /TR %ALLUSERSPROFILE%\NetHelper\Cache\RZpgWrBfmZfWvhjcZmsJ\nethelper.exe /F' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /C reg add "HKEY_CURRENT_USER\Software\NetHelper" /v path /t REG_SZ /d %ALLUSERSPROFILE%\NetHelper\Cache\RZpgWrBfmZfWvhjcZmsJ /f
- '%WINDIR%\syswow64\cmd.exe' /C timeout /t 60 && SCHTASKS /Create /SC MINUTE /MO 1 /TN "Service for windows Network Helper updates" /TR %ALLUSERSPROFILE%\NetHelper\Cache\RZpgWrBfmZfWvhjcZmsJ\nethelper.exe /F
- '%WINDIR%\syswow64\reg.exe' add "HKEY_CURRENT_USER\Software\NetHelper" /v path /t REG_SZ /d %ALLUSERSPROFILE%\NetHelper\Cache\RZpgWrBfmZfWvhjcZmsJ /f
- '%WINDIR%\syswow64\timeout.exe' /t 60
- '%WINDIR%\syswow64\schtasks.exe' /Create /SC MINUTE /MO 1 /TN "Service for windows Network Helper updates" /TR %ALLUSERSPROFILE%\NetHelper\Cache\RZpgWrBfmZfWvhjcZmsJ\nethelper.exe /F