Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Internet Explorer' = '%TEMP%\lsaas.exe'
- %TEMP%\lsaas.exe
- <SYSTEM32>\taskkill.exe /f /im TeaTimer.exe
- <SYSTEM32>\taskkill.exe /f /im mbamgui.exe
- %TEMP%\lsaas.exe
- %TEMP%\dir
- %TEMP%\lsaas.exe
- %TEMP%\~DF23A7.tmp
- 'je####lo.no-ip.biz':7085
- DNS ASK je####lo.no-ip.biz
- ClassName: 'Indicator' WindowName: ''
- ClassName: '' WindowName: ''