Техническая информация
- %TEMP%\1pzqza8gobmp
- %TEMP%\1pzqza8gobmp.dll
- http://ba#######story.portalstream.net/9654ntqg
- http://cy#####hop.web.fc2.com/lda4fj7a
- http://cl###fmalw.ws/0lq45
- DNS ASK ba#######story.portalstream.net
- DNS ASK cy#####hop.web.fc2.com
- DNS ASK er###.fc2.com
- DNS ASK ge##tech.at
- DNS ASK sp###.bnet.at
- DNS ASK cl###fmalw.ws
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\1PZQZA~1.DLL,qwerty 323