Техническая информация
- %TEMP%\3pwens0ae
- %TEMP%\3pwens0ae.dll
- http://www.sc####ttigarage.com/3ebbu7
- http://www.in#######onesjosearteaga.com/lx9yd
- http://tw##.com.br/js4ojo
- DNS ASK sc####ttigarage.com
- DNS ASK in#######onesjosearteaga.com
- DNS ASK tw##.com.br
- '<SYSTEM32>\rundll32.exe' %TEMP%\3PWENS~1.DLL,qwerty 323