Technical Information
Malicious functions:
Creates and executes the following:
- <SYSTEM32>\svuhost.exe
Executes the following:
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\Deleteme.bat
Modifies file system :
Creates the following files:
- <SYSTEM32>\Deleteme.bat
- <SYSTEM32>\MyDlls.dll
- <SYSTEM32>\svuhost.exe
Deletes itself.