Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\RunOnce] 'IE' = '%WINDIR%\Temp\InternetExplorer.exe'
- <SYSTEM32>\getmac.exe
- <SYSTEM32>\systeminfo.exe and Settings\%USERNAME%\Application Data\info.txt
- %APPDATA%\info.txt
- %APPDATA%\temp.txt
- %APPDATA%\temp.txt
- 'www.da####da1389.net':80
- 'localhost':1039
- '74.##5.232.51':80
- www.da####da1389.net/Logs/haustorial.php
- DNS ASK www.da####da1389.net
- DNS ASK www.google.com
- ClassName: 'ConsoleWindowClass' WindowName: ''