Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\iner.exe
- %TEMP%\rundll.exe -o http://us#.###ipsemc.com:8337 -u N3oSales_1 -p 123456 -t 1 -g no
- %TEMP%\rundll.exe -o http://us#.###ipsemc.com:8337 -u Mystical_worker -p 123456 -t 1 -g no
- %HOMEPATH%\Start Menu\Programs\Startup\iner.exe
- %TEMP%\usft_ext.dll
- %TEMP%\miner.dll
- %TEMP%\rundll.exe
- 'us#.##lipsemc.com':8337
- DNS ASK us#.##lipsemc.com
- ClassName: 'Shell_TrayWnd' WindowName: ''