Техническая информация
- %TEMP%\ptxexpjh.js
- %TEMP%\58871.24842966871.exe
- %TEMP%\37411.89774712034.exe
- http://su####ght.com.sg/aIlOtz
- http://co###nte.com.sg/QAN1G8
- http://gg##ngs.com/tYzA6X
- http://pr#####edosanjos.com.br/BLl1X4
- http://sw####fashion.com/StGjaJ
- http://go###ntwigs.com/hM5szn
- http://ar####nwankwo.com/J5wTv8
- http://gl###xx24.com/flYi3s
- http://bu####online.com/UsCgGj
- DNS ASK su####ght.com.sg
- DNS ASK ka##n.com
- DNS ASK co###nte.com.sg
- DNS ASK gg##ngs.com
- DNS ASK pr#####edosanjos.com.br
- DNS ASK ra####suit.com.au
- DNS ASK sw####fashion.com
- DNS ASK on####eprint.com
- DNS ASK go###ntwigs.com
- DNS ASK yu####jewels.com
- DNS ASK ar####nwankwo.com
- DNS ASK pr####typrobe.com
- DNS ASK ki###ea888.net
- DNS ASK gl###xx24.com
- DNS ASK bu####online.com
- '<SYSTEM32>\wscript.exe' %TEMP%\PTxEXpJH.js