Техническая информация
- %TEMP%\agvpzav
- %TEMP%\iyfvgsqk.dllaqpexfv
- '10.##7.21.201':443
- '89.##4.25.243':443
- '15#.#57.250.55':443
- '18#.#00.236.13':443
- ClassName: '67B482B9' WindowName: '67B482B9'
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\iYfVGSqK.dllAQPExfv,f0' (со скрытым окном)
- '<SYSTEM32>\regsvr32.exe' -s <LS_APPDATA>\Temp/iYfVGSqK.dllAQPExfv
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\iYfVGSqK.dllAQPExfv,f0