Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'CobraHTTP' = '%TEMP%\CobraHTTP.exe'
- %TEMP%\CobraHTTP.exe
- %TEMP%\CobraHTTP.exe
- 'on####thosting.com':80
- on####thosting.com/~googleco/gate.php?co####################################################################################################
- DNS ASK on####thosting.com
- ClassName: 'Indicator' WindowName: ''