Техническая информация
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Runonce] 'Gynn' = '%HOMEPATH%\Gynn.hta'
- %HOMEPATH%\gynn\gynnsew.exe
- %HOMEPATH%\gynn.hta
- %APPDATA%\www\wave.dat
- 'drive.google.com':443
- 'do#########ocs.googleusercontent.com':443
- 'fo#####himt.duckdns.org':1515
- DNS ASK drive.google.com
- DNS ASK do#########ocs.googleusercontent.com
- DNS ASK fo#####himt.duckdns.org