Техническая информация
- %WINDIR%\syswow64\dllhost.exe
- %TEMP%\dd8ba24111d03d2176218386
- %APPDATA%\dd8ba24111d03d2176218386\dd8ba24111d03d2176218386.exe
- %TEMP%\dd8ba24111d03d2176218386ms32
- %APPDATA%\dd8ba24111d03d2176218386\dd8ba24111d03d2176218386.exe
- %TEMP%\dd8ba24111d03d2176218386
- %TEMP%\dd8ba24111d03d2176218386ms32
- 'la###htxllc.me':80
- http://la###htxllc.me/poison?lo#######
- http://19#.#11.125.196/panel/gate.php?re##########
- DNS ASK la###htxllc.me
- '%APPDATA%\dd8ba24111d03d2176218386\dd8ba24111d03d2176218386.exe'
- '%WINDIR%\syswow64\dllhost.exe'