Техническая информация
- %APPDATA%\windows drivers\apibase32.exe
- %APPDATA%\windows drivers\php5ts.dll
- %APPDATA%\windows drivers\comm
- %APPDATA%\temporary windows\explorerwin.exe
- %APPDATA%\windows drivers\clone_file
- DNS ASK kj######asdjadhjkhdaj.com
- '%APPDATA%\windows drivers\apibase32.exe' "%APPDATA%\Windows Drivers\comm" "%APPDATA%\Temporary Windows\explorerWin.exe" "<Полный путь к файлу>" "%APPDATA%\Windows Drivers\apibase32.exe" "10.0.31.30"
- '%WINDIR%\syswow64\cmd.exe' /c "explorer "<PATH_SAMPLE>\""
- '%WINDIR%\syswow64\explorer.exe' "<PATH_SAMPLE>\"