Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'runAPI47' = '"%TEMP%\runAPI24.exe"'
- ClassName: 'gdkWindowToplevel' WindowName: 'The Wireshark Network Analyzer'
- %TEMP%\runAPI24.exe
- %TEMP%\win86.exe
- 'el##no.net':21
- DNS ASK el##no.net
- ClassName: 'Indicator' WindowName: ''