Technical Information
- %HOMEPATH%\Start Menu\Programs\Startup\<Virus name>.exe
- %HOMEPATH%\Start Menu\Programs\Startup\<Virus name>.exe RunWithNoReStart
- %WINDIR%\explorer.exe "%HOMEPATH%\Start Menu\Programs\Startup"
- %TEMP%\byd1.dll
- %TEMP%\byd1.dll
- '<Private IP address>':80
- ClassName: '' WindowName: '????'
- ClassName: '' WindowName: 'Startup'
- ClassName: '' WindowName: ''
- ClassName: '' WindowName: '%HOMEPATH%\Start Menu\Programs\Startup'