Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\iner.exe
- %TEMP%\rundll.exe -o https://us2.eclipsemc.com:8337 -u Organised_Happy -p happy -t 1 -g no
- %TEMP%\rundll.exe -o http://eu#.####lemining.com:8344 -u N3oSales_Bots4Sale -p 123456 -t 2 -g no
- %HOMEPATH%\Start Menu\Programs\Startup\iner.exe
- %TEMP%\usft_ext.dll
- %TEMP%\miner.dll
- %TEMP%\rundll.exe
- 'us#.##lipsemc.com':8337
- 'eu#.###plemining.com':8344
- DNS ASK us#.##lipsemc.com
- DNS ASK eu#.###plemining.com
- ClassName: 'Shell_TrayWnd' WindowName: ''