Техническая информация
- %TEMP%\gywvxoveglyz.js
- %TEMP%\pzbvthz_43148.exe
- 'ri####ncoperu.org':80
- http://kv####vaya-lampa.ru/fC9qZW
- http://ro###arita.com/5NmH3b
- http://qu#####anieriviste.com/WIKuLk
- http://fm##30.us/BznLrm
- http://kw##b.it/tNTjZ2
- http://am##sur.com/sJIEQB
- DNS ASK as####station.com
- DNS ASK kv####vaya-lampa.ru
- DNS ASK ro###arita.com
- DNS ASK qu#####anieriviste.com
- DNS ASK fm##30.us
- DNS ASK kw##b.it
- DNS ASK ma####nkostyle.net
- DNS ASK am##sur.com
- DNS ASK ri####ncoperu.org
- '<SYSTEM32>\wscript.exe' %TEMP%\GyWVxOveGlYZ.js