Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 'Load' = '<Full path to file>'
- %TEMP%\configs-.temp
- <Full path to file>
- http://ip##pi.com/json
- DNS ASK ip##pi.com
- '%WINDIR%\syswow64\reg.exe' ADD "HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows" /f /v Load /t REG_SZ /d "<Full path to file>"' (with hidden window)
- '%WINDIR%\syswow64\reg.exe' ADD "HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows" /f /v Load /t REG_SZ /d "<Full path to file>"