Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '1698aadb-831b-83d1-9e78-8a2557058e3b' = '%TEMP%\1698aadb-831b-83d1-9e78-8a2557058e3b\e8f65fd8-d973-f998-5dc7-ea3cf1614ae1.exe'
- %TEMP%\dw.log
- %TEMP%\2306C.dmp
- %TEMP%\1698aadb-831b-83d1-9e78-8a2557058e3b\e8f65fd8-d973-f998-5dc7-ea3cf1614ae1.exe
- %TEMP%\1698aadb-831b-83d1-9e78-8a2557058e3b\50b4a7e5-9a02-abd7-99b4-01a1e7819ef3.exe
- %TEMP%\1698aadb-831b-83d1-9e78-8a2557058e3b\50b4a7e5-9a02-abd7-99b4-01a1e7819ef3.exe
- %TEMP%\1698aadb-831b-83d1-9e78-8a2557058e3b\e8f65fd8-d973-f998-5dc7-ea3cf1614ae1.exe
- 'po##.##n.spacepools.org':3333
- DNS ASK po##.##n.spacepools.org
- '%TEMP%\1698aadb-831b-83d1-9e78-8a2557058e3b\50b4a7e5-9a02-abd7-99b4-01a1e7819ef3.exe' -o stratum+tcp://pool.etn.spacepools.org:3333 -u etnkBoQgXxrayvkFxJroEoC1GQ6advp4i32PedauXusYZThaBnPT73PVtnP9KaL5JYQ6Xar6SJzeyDsQSzQd6YuBAUHctsTSG2 -p x -a cryptonight -t 1 -k --donate-level=1
- '%TEMP%\1698aadb-831b-83d1-9e78-8a2557058e3b\e8f65fd8-d973-f998-5dc7-ea3cf1614ae1.exe'
- '%CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE' -x -s 416