Техническая информация
- %WINDIR%\tasks\ttbiov.job
- <SYSTEM32>\tasks\ttbiov
- %PROGRAMDATA%\siwl\ttbiov.exe
- http://86.#9.21.38/tor/status-vote/current/consensus
- http://12#.31.0.39/tor/status-vote/current/consensus
- http://12#.31.0.34/tor/status-vote/current/consensus
- http://19#.#3.244.244/tor/status-vote/current/consensus
- DNS ASK ad###og179.xyz
- DNS ASK xa###log279.xyz
- DNS ASK ap#.#pify.org
- '%PROGRAMDATA%\siwl\ttbiov.exe' start
- '%PROGRAMDATA%\siwl\ttbiov.exe' start' (со скрытым окном)