Техническая информация
- <PATH_SAMPLE>_tmp.exe
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\metadata\f0accf77cdcbff39f6191887f6d2d357
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\content\f0accf77cdcbff39f6191887f6d2d357
- %LOCALAPPDATA%\microsoft\windows\history\history.ie5\mshist012020082220200823\index.dat
- <PATH_SAMPLE>_tmp.exe
- http://pl##.##-the-casino.com/gambling.cgi?al#########################################
- http://pl##.##-the-casino.com/gambling.cgi?ty##############################
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- DNS ASK pl##.##-the-casino.com
- DNS ASK ma####.bootstrapcdn.com
- DNS ASK fo###.#oogleapis.com
- DNS ASK aj##.#oogleapis.com
- DNS ASK microsoft.com
- DNS ASK google.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''