Техническая информация
- %WINDIR%\explorer.exe
- %HOMEPATH%\desktop\thlps_keeper_mayer_1965.docx
- %WINDIR%\syswow64\lz_scby.txt
- %WINDIR%\3ad88c\ec1e39ae920a87d8abfe4b56c5f3c6de
- %WINDIR%\3ad88c\k6ert5l.dll
- %WINDIR%\3ad88c\yid66hc.exe
- <LS_APPDATA>\woxno.dat
- %WINDIR%\syswow64\lz_scby.txt
- <LS_APPDATA>\woxno.dat
- %WINDIR%\3ad88c\yid66hc.exe
- DNS ASK ba##u.com
- DNS ASK qq.com
- ClassName: 'Progman' WindowName: ''
- '%WINDIR%\3ad88c\yid66hc.exe' /runp2p:C:/Windows/3ad88c/k6ert5L.dll