Technical Information
To ensure autorun and distribution:
Creates or modifies the following files:
Malicious functions:
To complicate detection of its presence in the operating system,
forces the system hide from view:
- hidden files
- file extensions
Modifies file system :
Creates the following files:
- <LS_APPDATA>\Start\Shortcut to startup_local.lnk
- <LS_APPDATA>\Start\desktop.ini
- <LS_APPDATA>\Start\update.exe
Miscellaneous:
Searches for the following windows:
- ClassName: '' WindowName: ''