Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\ГЋГ’ВЅГђKK] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\ГЋГ’ВЅГђKK] 'ImagePath' = '<SYSTEM32>\svchost.exe -k "ÎÒ½ÐKK"'
- [<HKLM>\SYSTEM\CurrentControlSet\Services\ГЋГ’ВЅГђKK\Parameters] 'ServiceDll' = '%TEMP%\1182359.dll'
- %TEMP%\1182359.dll
- %WINDIR%\syswow64\îò½ðkk.exe
- '10#.#0.244.140':8080
- '%WINDIR%\syswow64\îò½ðkk.exe' "%TEMP%\1182359.dll",MainThread
- '%WINDIR%\syswow64\svchost.exe' -k "ГЋГ’ВЅГђKK"