Техническая информация
- '%WINDIR%\explorer.exe' /c, %TEMP%\Iv6tWJx.js
- %TEMP%\iv6twjx.js
- 'dj#####cacq.88sckozj.ml':443
- DNS ASK dj#####cacq.88sckozj.ml
- '<SYSTEM32>\wscript.exe' "%TEMP%\Iv6tWJx.js"
- '<SYSTEM32>\wscript.exe' "%TEMP%\Iv6tWJx.js"' (со скрытым окном)
- '<SYSTEM32>\cmd.exe' /S /D /c" sET/p 6l9Yrxs="%IKC:XQJABL=%%6r4Oivd:TCRSY=/%" 0<nul 1>%TEMP%\Iv6tWJx.js 2>&1"
- '<SYSTEM32>\cmd.exe' /S /D /c" CAll %XFB:UTDBO=% %TEMP%\Iv6tWJx.js 2>&1"
- '<SYSTEM32>\cmd.exe' /S /D /c" exiT"