Техническая информация
- %WINDIR%\Tasks\DM_Install_Program.job
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\101577.exe' = '%TEMP%\101577.exe:*:Enabled:DM'
- '%TEMP%\101577.exe'
- %TEMP%\101577.exe
- 'ul###4.dudu.com':80
- http://ul###4.dudu.com/setup/iebar.exe
- DNS ASK ul###4.dudu.com
- ClassName: 'Shell_TrayWnd' WindowName: ''