Техническая информация
- %TEMP%\eqjjgmgsumvp.jscrgqbux
- %TEMP%\ejgrrbxr.dllpgduh
- '19#.#1.249.51':443
- '14#.#54.10.184':443
- '51.##.61.125':443
- '15#.#6.244.41':443
- '23#.#50.124.42':443
- '63.#15.4.43':443
- ClassName: '71802C02' WindowName: '71802C02'
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\EjGRrbxr.dllpgDuh,f0' (со скрытым окном)
- '<SYSTEM32>\regsvr32.exe' -s %TEMP%\\EjGRrbxr.dllpgDuh
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\EjGRrbxr.dllpgDuh,f0