Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Services.exe' = '%TEMP%\Services.exe'
- %WINDIR%\explorer.exe
- %TEMP%\services.exe
- 'fr#####rt-1.xmrpool.net':3333
- DNS ASK fr#####rt-1.xmrpool.net
- '%TEMP%\services.exe'
- '%WINDIR%\explorer.exe' -B --donate-level=5 -a cryptonight --url=frankfurt-1.xmrpool.net:3333 -u 47nauow8C9DDGN5RHPgLd5JBSoEJhVZWaGGMh4Rx9fjpT1M4iPsY5CvVyeBHm2Fjm8LdJYuBiFy7SQK78wUiAd2sML6jhtM -p M2f1ismyclass -R --va...