Техническая информация
- '%HOMEPATH%\Local Settings\tempwinlogon.exe'
- %HOMEPATH%\Local Settings\tempwinlogon.exe
- %TEMP%\dw.log
- %TEMP%\1430d6.dmp
- DNS ASK cu##.net
- '%ProgramFiles%\mozilla firefox\firefox.exe' -osint -url "https://www.cu##.net/p/blog-page.html"
- '%CommonProgramFiles%\Microsoft Shared\DW\DW20.EXE' -x -s 684