Техническая информация
- %TEMP%\metckxhgymkgi.js
- %TEMP%\45002.042244988224.exe
- %TEMP%\31630.842548464636.exe
- 'my####omized.com':80
- http://le####rsgalaxy.com/580xkK
- http://an###store.com/QURZh9
- http://wo###tters.com/4njoCt
- http://mo#####tika-shop.com/6tjHz8
- http://co###nte.com.sg/QAN1G8
- http://as###or.com.sg/U5tRF1
- http://af######nylflooring.co.uk/atXTgL
- http://ha###hutney.com/06yiBj
- http://mi####rketing.com/mw8A53
- DNS ASK le####rsgalaxy.com
- DNS ASK on####eprint.com
- DNS ASK mi####rketing.com
- DNS ASK ha###hutney.com
- DNS ASK in###no69.com
- DNS ASK af######nylflooring.co.uk
- DNS ASK as###or.com.sg
- DNS ASK re####nathome.com
- DNS ASK co###nte.com.sg
- DNS ASK mo#####tika-shop.com
- DNS ASK wo####in-style.com
- DNS ASK ca####shopny.com
- DNS ASK wo###tters.com
- DNS ASK ay#####hediyelik.com
- DNS ASK po####oals.co.uk
- DNS ASK ma##ey.com
- DNS ASK en###lass.com
- DNS ASK co####caldas.com
- DNS ASK an##e.com
- DNS ASK an###store.com
- DNS ASK at###ross.com
- DNS ASK 80####opsocal.com
- DNS ASK go#####lionandco.com
- DNS ASK fa####nkumbh.com
- DNS ASK my####omized.com
- '<SYSTEM32>\wscript.exe' %TEMP%\MEtCKXHgyMkGI.js