Техническая информация
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'net' = 'C:\Cache\All Users\{90120000-0019-0816-0000-0000000FF1CE}-C\path.exe'
- C:\cache\all users\{90120000-0019-0816-0000-0000000ff1ce}-c\path.exe
- C:\cache\all users\{90120000-0019-0816-0000-0000000ff1ce}-c\save.txt
- C:\cache\all users\{90120000-0019-0816-0000-0000000ff1ce}-c\path.exe
- http://www.ac####pro.com.br/index.php
- DNS ASK ac####pro.com.br
- DNS ASK sm##.gmail.com
- 'C:\cache\all users\{90120000-0019-0816-0000-0000000ff1ce}-c\path.exe'