Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'UpdateServicePack' = '%HOMEPATH%\Net\svchost.exe'
- '<SYSTEM32>\reg.exe' add hkcu\software\microsoft\windows\currentVersion\run /v UpdateServicePack /t REG_SZ /d "%HOMEPATH%\Net\svchost.exe" /f
- '<SYSTEM32>\attrib.exe' +H "%HOMEPATH%\Net\svchost.exe"
- '<SYSTEM32>\attrib.exe' +H "%HOMEPATH%\Net"
- %HOMEPATH%\Net\data
- %HOMEPATH%\Net\svchost.exe
- %HOMEPATH%\Net\svchost.exe
- 'localhost':6060
- ClassName: 'Indicator' WindowName: ''
- ClassName: '' WindowName: 'NetD@nKsend'
- ClassName: '' WindowName: 'Windows Task Manager'
- ClassName: '' WindowName: 'Administrador de tareas de Windows'
- ClassName: '' WindowName: 'NetD@nCam'
- ClassName: '' WindowName: 'NetD@nPantalla'
- ClassName: '' WindowName: 'WinChat'
- ClassName: '' WindowName: 'NetD@nExplorer'