Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Adobe Flash Player' = '<LS_APPDATA>\Adobe\flash_player.exe'
- <LS_APPDATA>\Adobe\flash_player.exe
- <SYSTEM32>\cmd.exe /c ""<Текущая директория>\r.bat" "
- <Текущая директория>\r.bat
- <LS_APPDATA>\Adobe\flash_player.exe
- 'st###eturer.com':80
- 'rd###staten.com':80
- 'cl####viyella.com':80
- 'he####lverle.com':80
- 'st###nacre.com':80
- st###eturer.com/
- rd###staten.com/
- cl####viyella.com/
- he####lverle.com/
- st###nacre.com/
- DNS ASK st###eturer.com
- DNS ASK rd###staten.com
- DNS ASK cl####viyella.com
- DNS ASK he####lverle.com
- DNS ASK st###nacre.com
- ClassName: 'Indicator' WindowName: ''