Техническая информация
- %TEMP%\imagem.x
- %APPDATA%\uptime.log
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\imagem[1].x
- %TEMP%\GHDUEG.tmp
- %TEMP%\<Имя вируса>.exe
- 'nx###.#ebcindario.com':80
- 'www.mo######mentograopara.com':80
- www.mo######mentograopara.com/loja/install/imagem.x
- nx###.#ebcindario.com/acesso.php
- DNS ASK nx###.#ebcindario.com
- DNS ASK www.mo######mentograopara.com