Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'BCTHVU' = '"%APPDATA%\Windata\OXFYIV.exe"'
- %HOMEPATH%\Start Menu\Programs\Startup\BCTHVU.lnk
- %APPDATA%\Windata\OXFYIV.exe
- 'in#####tinc.duckdns.org':4000
- 'ip###ore.com':80
- http://ip###ore.com/checkip/
- DNS ASK in#####tinc.duckdns.org
- DNS ASK ip###ore.com