Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'swvaidqegy' = '%HOMEPATH%\swvaidqegy.exe'
- %HOMEPATH%\swvaidqegy.exe
- '74.##2.3.204':443
- '74.##2.3.203':443
- 'jp###452.com':443
- 'la##tok.kz':443
- 'ma##.lapotok.kz':443
- '74.##2.3.202':443
- '50.##.110.232':443
- '18#.#73.217.27':443
- '50.##.110.233':443
- '50.##.110.235':443
- '50.##.110.234':443
- DNS ASK la##tok.kz
- DNS ASK www.la##tok.kz
- DNS ASK jp###452.com
- DNS ASK ma##.lapotok.kz
- ClassName: 'Indicator' WindowName: ''