Техническая информация
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\Windows Task Monitor.lnk
- %PROGRAM_FILES%\TMonitor\TMonitor.exe
- %PROGRAM_FILES%\TMonitor\TMonitor.exe
- %PROGRAM_FILES%\TMonitor\TMonitor.exe
- 'www.ke####geronline.com':80
- www.ke####geronline.com/https
- www.ke####geronline.com/sleep
- www.ke####geronline.com/kill/644e83ac01e6d72538679753762ebd77
- www.ke####geronline.com/upload.php
- www.ke####geronline.com/log.php
- DNS ASK www.ke####geronline.com
- '10.#.1.1':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''