Техническая информация
- %ALLUSERSPROFILE%\Application Data\gra\wsav.exe
- %ALLUSERSPROFILE%\Application Data\gra\wsav.exe (загружен из сети Интернет)
- %ALLUSERSPROFILE%\Application Data\gra\wsav.exe
- <DRIVERS>\etc\h1
- <DRIVERS>\etc\hosts
- 'p4####.my-green-av.com':80
- p4####.my-green-av.com/P513233109C054A10188588=/wsav.ttt
- DNS ASK p4####.my-green-av.com
- ClassName: '#32770' WindowName: ''