: Modifying registry values to auto-execute upon system startup.
: Checking for the presence of forensic or monitoring tools to avoid detection. fishy.rar
: Querying system info, such as kernel debugger status and display settings. : Modifying registry values to auto-execute upon system
: Identifying strings used for code injection. fishy.rar
According to technical reports from Hybrid Analysis , files with this name have been flagged for: