Техническая информация
- %APPDATA%\Microsoft\windows\Start Menu\programs\startup\irhtwld.lnk
- %ProgramFiles%\dlwthri.dss
- %TEMP%\dlwthri.dss
- %ProgramFiles%\irhtwld.bxx
- '19#.#15.114.209':443
- '%WINDIR%\syswow64\rundll32.exe' %ProgramFiles%\dlwthri.dss,FFZ0
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\dlwthri.dss,FFZ4