Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Media SDK' = '%TEMP%\ebfqWdZmdh.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'XLYDQ7QZ' = '%APPDATA%\8IO5HCm7\T3TRRRwX.exe'
- %TEMP%\ebfqWdZmdh.exe
- %APPDATA%\8IO5HCm7\T3TRRRwX.exe
- 'bc###k.ddns.net':700
- DNS ASK bc###k.ddns.net