Техническая информация
- [<HKLM>\System\CurrentControlSet\Services\WinRing0_1_2_0] 'ImagePath' = '%APPDATA%\WinCFG\Libs\WinRing0x64.sys'
- 'WinRing0_1_2_0' %APPDATA%\WinCFG\Libs\WinRing0x64.sys
- <SYSTEM32>\cmd.exe
- %APPDATA%\wincfg\libs\winring0x64.sys
- %APPDATA%\wincfg\libs\ddb64.dll
- %APPDATA%\wincfg\libs\nvrtc-builtins64_101.dll
- %APPDATA%\wincfg\libs\nvrtc64_101_0.dll
- 'ca.##nexmr.com':80
- DNS ASK ca.##nexmr.com
- '<SYSTEM32>\cmd.exe' --opencl --cuda --donate-level=4 -B --coin=monero --url=ca.minexmr.com:80 --user=49tXYyCHPnM6THcr6wyH8Rf8Ewrfc21PPJ18DSHDi42tgxMQzxcAGbsB7ov7zPjVvqUz7VMdwt1ECSrgw1xgS4WmUGs7xeg --pass= --cpu-...