Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Windows] 'Run' = '%TEMP%\directory\svchost.exe'
- '' (загружен из сети Интернет)
- 'C:\users\public\9876543345.exe'
- ieinstal.exe
- C:\users\public\9876543345.exe
- %TEMP%\directory\svchost.exe
- http://bi#.ly/3gBBAtj
- http://al###edix.com/uploads/OneDrive.jpeg
- http://11#.#0.148.216/BLESSMAN_oSwHsLSGVN105.bin
- DNS ASK bi#.ly
- DNS ASK al###edix.com
- '%CommonProgramFiles%\microsoft shared\equation\eqnedt32.exe' -Embedding
- '%ProgramFiles(x86)%\internet explorer\ieinstal.exe'