Техническая информация
- '<SYSTEM32>\telegram.exe'
- '<SYSTEM32>\taskkill.exe' /IM "gbpsv.exe" /F
- '<SYSTEM32>\cmd.exe' /c ""C:\zondasik.bat""
- C:\zondasik.txt
- <SYSTEM32>\telegram.exe
- C:\zondasik.txt в C:\zondasik.bat
- 'ww##.#exygogirl.com':80
- ww##.#exygogirl.com/data/touch.php
- DNS ASK ww##.#exygogirl.com
- ClassName: '(null)' WindowName: '(null)'
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: 'EDIT' WindowName: '(null)'