Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\i0knc] 'ImagePath' = '%TEMP%\i0kncry4e3k.sys'
- %TEMP%\tmp7zippacket_download.7z
- %TEMP%\tmp7zippacket_\kdconfig.ini
- %TEMP%\i0kncry4e3k.sys
- %WINDIR%\temp\uddc25c.tmp
- %WINDIR%\temp\uddc25c.tmp
- http://yz#####.###-cn-hangzhou.aliyuncs.com/KDConfig/KDConfig.7z
- DNS ASK yz#####.###-cn-hangzhou.aliyuncs.com
- DNS ASK ud#.#xwan.com
- DNS ASK mg.#636.com
- DNS ASK dl#.#xwan.com
- DNS ASK ne##.#1xiaba.com
- DNS ASK c2.##toto.net