Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Services.exe' = '%APPDATA%\Services.exe'
- %WINDIR%\explorer.exe
- %APPDATA%\services.exe
- 'mo###ohash.com':2222
- DNS ASK mo###ohash.com
- '%APPDATA%\services.exe'
- '%WINDIR%\explorer.exe' -B --donate-level=1 -a cryptonight --url=monerohash.com:2222 -u 42LsDd7GcKsJVKPUQH7XZ9UAWEvdpKtnWgP36VyccMu6j2dx1JuzKUnP9tqrd1TqCCTL9uggM47ff9v9oFS1Eai8V41NMcp -p x -R --variant=-1 -t 1 --max-c...