Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Control\SecurityProviders] 'SecurityProviders' = 'msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, mskhhesl.dll, "%APPDATA%\sulnnhkt.dll"'
- [<HKLM>\SYSTEM\ControlSet001\Control\SecurityProviders] 'SecurityProviders' = 'msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, mskhhesl.dll'
- %WINDIR%\Temp\~61a31b6c8.tmp
- %WINDIR%\Temp\~61a31cb1b.tmp
- <SYSTEM32>\mskhhesl.dll
- %APPDATA%\sulnnhkt.dll
- 'ma##.#otmail.com':25
- 'ba##.#ocokoloks.com':1001
- '67.##5.160.76':25
- 'ma##.gmail.com':25
- DNS ASK Ho##ail.coM
- DNS ASK ba##.#ocokoloks.com
- DNS ASK Gm##l.cOm
- DNS ASK go###.#ocokoloks.com
- DNS ASK yA##o.com