Техническая информация
- %APPDATA%\microsoft\windows\start menu\programs\startup\extrac32.url
- %WINDIR%\syswow64\dllhost.exe
- %HOMEPATH%\extrac32\extrac32.vbs
- %HOMEPATH%\extrac32\vdsldr.exe
- 'hi####.sakananoko.io':9029
- DNS ASK hi####.sakananoko.io
- '%WINDIR%\syswow64\dllhost.exe'