Техническая информация
- %TEMP%\qyqrouczg.hxgrhhxrib
- %TEMP%\fvyii.txt
- http://ad#.#ensa.at/api1/oJEQLSxQVS15fuVVhv6b/yTTKyhH6SF8kWksAJ9y/wxik5BxZNKCJ7jvi5RAxqG/Z7umfdYm9lKwD/PlTsVpmx/6L3aPFT_2FZ9BI_2FojjA9_/2FPbJS08ZJ/fydpz4f389_2F2Lvr/i9ikEK3zZvLG/63Cz7VAVwU3/ivd...
- DNS ASK ad#.#ensa.at
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '<SYSTEM32>\regsvr32.exe' -s %TEMP%\\fVYIi.txt