Техническая информация
- '%WINDIR%\syswow64\netsh.exe' firewall add allowedprogram "%APPDATA%\shevaloh.exe" "shevaloh.exe" ENABLE
- %APPDATA%\shevaloh.exe
- http://oc##.#tartssl.com/sub/class2/code/ca/MEMwQTA%2FMD0wOzAJBgUrDgMCGgUABBQSOgrhRCSnWfKxoWTjWxhk8hga9AQU0E4PQJlsuEsZbzsouODjiAc0qrcCAhAV
- DNS ASK oc##.#tartssl.com
- '%APPDATA%\shevaloh.exe'
- '%WINDIR%\syswow64\netsh.exe' firewall add allowedprogram "%APPDATA%\shevaloh.exe" "shevaloh.exe" ENABLE' (со скрытым окном)