Technical Information
Malicious functions:
Creates and executes the following:
- %HOMEPATH%\Recent\<Virus name>_Virus.tmp
Modifies file system :
Creates the following files:
- <SYSTEM32>\shell.exe
- <SYSTEM32>\D0mb4.scr
- <SYSTEM32>\IExplorer.exe
- C:\Srig4l4.exe
- %HOMEPATH%\Recent\<Virus name>_Virus.tmp
- %WINDIR%\Srig4l4.exe