Technical Information
- [<HKCU>\Software\Classes\ms-settings\shell\open\command] '' = '<Full path to file>'
- [<HKCU>\Software\Classes\ms-settings\shell\open\command] '' = '%WINDIR%\SysWow64\Sysconfig.exe'
- [<HKLM>\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] 'SystemConfig' = '<SYSTEM32>\Sysconfig.exe'
- %WINDIR%\syswow64\sysconfig.exe
- '<LOCALNET>.111.1':8083
- '%WINDIR%\syswow64\cmd.exe' /c systeminfo' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c systeminfo
- '%WINDIR%\syswow64\systeminfo.exe'