Техническая информация
- %WINDIR%\explorer.exe
- %WINDIR%\syswow64\lz_scby.txt
- %WINDIR%\0bbb1c\0d86eaf374d593fa2e547f249d725f78
- %WINDIR%\0bbb1c\yu011fz.dll
- %WINDIR%\0bbb1c\m8raav2.exe
- <LS_APPDATA>\kc17c.dat
- %WINDIR%\syswow64\lz_scby.txt
- <LS_APPDATA>\kc17c.dat
- %WINDIR%\0bbb1c\m8raav2.exe
- DNS ASK ba##u.com
- DNS ASK qq.com
- ClassName: 'Progman' WindowName: ''
- '%WINDIR%\0bbb1c\m8raav2.exe' /runp2p:C:/Windows/0bbb1c/yU011Fz.dll