Техническая информация
- '' (загружен из сети Интернет)
- %WINDIR%\ASYCFILT.DLL
- %WINDIR%\COMCAT.DLL
- %WINDIR%\msvbvm60.dll
- %WINDIR%\NtKill.exe
- %WINDIR%\OLEAUT32.DLL
- %WINDIR%\OLEPRO32.DLL
- %WINDIR%\urlmon.dll
- %WINDIR%\VB6KO.DLL
- %WINDIR%\VB6STKIT.DLL
- %WINDIR%\wininet.dll
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\KHMHGZ4F\NtUpdate[1].exe
- %WINDIR%\NtUpdate.exe
- %TEMP%\7ZSfx000.cmd
- <Полный путь к файлу>
- %TEMP%\7ZSfx000.cmd
- 'localhost':1039
- 'si####view.works':80
- http://si####view.works/download/NtUpdate/user_05/NtUpdate.exe
- DNS ASK google.com
- DNS ASK si####view.works
- '%WINDIR%\NtKill.exe'
- '%WINDIR%\NtUpdate.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\7ZSfx000.cmd" "