Техническая информация
- %WINDIR%\tasks\zlrv3rhc.job
- <SYSTEM32>\tasks\zlrv3rhc
- mfpirjhm.exe
- %TEMP%\qbywcu.exe
- C:\users\admini~1\appdata\local\temp\2\mfpirjhm.exe
- C:\users\admini~1\appdata\local\temp\2\h064na
- DNS ASK kg####.meneyb.net
- DNS ASK kg####.mkkuei4kdsz.com
- DNS ASK kg####.ow5dirasuek.com
- ClassName: 'EDIT' WindowName: ''
- '%TEMP%\qbywcu.exe'
- 'C:\users\admini~1\appdata\local\temp\2\mfpirjhm.exe'