Техническая информация
- C:\Temp\91337e03-fc3f-4959-b06c-3e832a2545fc\OfferApp-2526.exe /SP- /suppressmsgboxes /verysilent /noicons /norestart
- C:\Temp\91337e03-fc3f-4959-b06c-3e832a2545fc\OfferApp-2529.exe /SP- /suppressmsgboxes /verysilent /noicons /norestart
- <SYSTEM32>\svchost.exe
- %TEMP%\inet.exe
- C:\Temp\91337e03-fc3f-4959-b06c-3e832a2545fc\OfferApp-2526.exe
- C:\Temp\91337e03-fc3f-4959-b06c-3e832a2545fc\OfferApp-2529.exe
- C:\Temp\91337e03-fc3f-4959-b06c-3e832a2545fc\OfferApp-2526.exe
- C:\Temp\91337e03-fc3f-4959-b06c-3e832a2545fc\OfferApp-2529.exe
- C:\Temp\91337e03-fc3f-4959-b06c-3e832a2545fc\OfferApp-2529.exe
- 'aa###nge.com':80
- aa###nge.com/zmjnnaers/opppgguull.php?ad################################
- aa###nge.com/zmjnnaers/ffffjjx.php?ad################################
- DNS ASK aa###nge.com