Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\360DST] 'ImagePath' = '%TEMP%\bPtAz14.sys'
- '<SYSTEM32>\360Tray.exe'
- NtOpenProcess, драйвер-обработчик: bPtAz14.sys
- C:\bfdl.txt
- %TEMP%\bPtAz14.sys
- <SYSTEM32>\360Tray.exe
- C:\ml.txt
- %TEMP%\bPtAz14.sys
- %TEMP%\bPtAz14.sys
- ClassName: '' WindowName: 'iSpeak.exe'
- ClassName: '' WindowName: 'YY.exe'
- ClassName: '' WindowName: '<Имя вируса>.exe'