Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Control\SecurityProviders] 'SecurityProviders' = 'msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, snapapi32.dll'
- '%TEMP%\1.exe'
- %TEMP%\1.exe
- <SYSTEM32>\snapapi32.dll
- %TEMP%\snapapi32.dll
- %TEMP%\snapapi32.dll
- ClassName: 'zlcsxmaso' WindowName: 'nxofqe'