Техническая информация
- %TEMP%\go4_diva4_install.exe
- %TEMP%\go4_diva4_install.exe (загружен из сети Интернет)
- <SYSTEM32>\cmd.exe /c %TEMP%\dmdmx$$$$.bat
- %TEMP%\dmdmx$$$$.bat
- %TEMP%\go4_diva4_install.exe
- %TEMP%\go4_diva4_install.exe
- 'po##.#o-diva.co.kr':80
- 'www.go###va.co.kr':80
- po##.#o-diva.co.kr/kesinfoi/data/install.exe
- www.go###va.co.kr/pops/logs.v/set/end.php
- www.go###va.co.kr/pops/logs.v/set/begin.php
- DNS ASK po##.#o-diva.co.kr
- DNS ASK www.go###va.co.kr