To complicate detection of its presence in the operating system,
blocks the following features:
- User Account Control (UAC)
Creates and executes the following:
Executes the following:
- <SYSTEM32>\taskkill.exe /f /im explorer.exe
Terminates or attempts to terminate
the following system processes:
the following user processes:
Modifies settings of Windows Explorer:
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer] 'NoViewContextMenu' = '00000001'
Attempts to shut down the Windows operating system.