Техническая информация
- '%WINDIR%\miner.exe'
- '%ProgramFiles%\Company\NewProduct\miner.sfx.exe' -p12345 -d%WINDIR%
- '%ProgramFiles%\Company\NewProduct\Run![1].exe'
- '%CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE' -x -s 736
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\1.tmp\Run!.bat" "
- %ProgramFiles%\Company\NewProduct\Uninstall.ini
- %ProgramFiles%\Company\NewProduct\Uninstall.exe
- %WINDIR%\miner.exe
- %TEMP%\1.tmp\Run!.bat
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- %ProgramFiles%\Company\NewProduct\Run![1].exe
- %ProgramFiles%\Company\NewProduct\miner.sfx.exe
- %TEMP%\$inst\2.tmp
- %TEMP%\1.tmp\Run!.bat
- %TEMP%\$inst\temp_0.tmp
- '74.##5.232.51':443
- 'wp#d':80
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK drive.google.com
- DNS ASK wp#d
- ClassName: 'EDIT' WindowName: ''