Technical Information
- '<SYSTEM32>\oobe\wgatryes.exe'
- %TEMP%\17160913_res.tmp
- <SYSTEM32>\oobe\wgatryes.exe
- <SYSTEM32>\oobe\oobebatmetbcbr.dll
- from %TEMP%\17160913_res.tmp to <SYSTEM32>\oobe\oobebatmetbcbr.dll
- ClassName: '????' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'ChiBiElementClient Window' WindowName: '(null)'
- ClassName: 'explorers' WindowName: 'whatisme'