Technical Information
Malicious functions:
Executes the following:
- '<SYSTEM32>\system32,1.exe' 300 "<Full path to file>"
Modifies file system:
Creates the following files:
- <SYSTEM32>\system32,1.exe
Sets the 'hidden' attribute to the following files:
- <SYSTEM32>\system32,1.exe
Deletes itself.