Technical Information
- <SYSTEM32>\tasks\macromedia\errorcheck
- %PROGRAMDATA%\drivers\errorcheck.xml
- %PROGRAMDATA%\drivers\123.bat
- %PROGRAMDATA%\drivers\x64.exe
- ClassName: 'EDIT' WindowName: ''
- '%PROGRAMDATA%\drivers\x64.exe'
- '%PROGRAMDATA%\drivers\x64.exe' ' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c ""%PROGRAMDATA%\Drivers\123.bat" "
- '%WINDIR%\syswow64\schtasks.exe' /Create /XML "%PROGRAMDATA%\Drivers\ErrorCheck.xml" /TN "Macromedia\ErrorCheck"
- '<SYSTEM32>\taskeng.exe' {88C4B083-0A05-46D4-9DD0-A45C5B37B349} S-1-5-21-1960123792-2022915161-3775307078-1001:hekrohb\user:Interactive:[1]