Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SecICall] 'ImagePath' = '<SYSTEM32>\securiinca.exe'
- [<HKLM>\SYSTEM\ControlSet001\Services\SecICall] 'Start' = '00000002'
- <SYSTEM32>\vyacfsew.exe
- <SYSTEM32>\securiinca.exe /install /silent
- <SYSTEM32>\vyacfsew.exe
- <SYSTEM32>\rstilaxd.dll
- <SYSTEM32>\securiinca.exe
- <SYSTEM32>\libeay32.dll
- <SYSTEM32>\ssleay32.dll
- <SYSTEM32>\vyacfsew.exe
- 'po##.bol.com.br':995
- '18#.#20.35.84':53125
- DNS ASK po##.bol.com.br