Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'bgqrtfxn' = '%HOMEPATH%\bgqrtfxn.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'bgqrtfxn' = '<SYSTEM32>\bgqrtfxn.exe'
- <SYSTEM32>\svchost.exe
- %HOMEPATH%\bgqrtfxn.exe
- <SYSTEM32>\bgqrtfxn.exe
- '69.#0.59.58':443
- '21#.61.7.16':443
- '22#.#8.194.166':443
- '21#.#39.219.136':443
- '61.##0.149.222':443
- '88.##8.22.151':443
- ClassName: 'Indicator' WindowName: ''