Техническая информация
- %APPDATA%\microsoft\windows\start menu\programs\startup\akmuuquwvieki.lnk
- %LOCALAPPDATA%\reportevent.log
- %LOCALAPPDATA%\fkaf3lyyciqcpf\my2m9tyriyqavjw1uhtsecuaitqh.js
- %APPDATA%\gbioytzymblfeupk.zip
- %APPDATA%\stknm7~1\gxcvetvqvwvebjikiiflxqkiss.db
- %APPDATA%\stknm7~1\ywtvnz.db
- %APPDATA%\stknm7~1\gxcvetvqvwvebjikiiflxqkiss.exe
- %LOCALAPPDATA%\fkaf3lyyciqcpf\my2m9tyriyqavjw1uhtsecuaitqh.js
- %APPDATA%\gbioytzymblfeupk.zip
- http://19#.#92.20.113/Avovjyahrddqolkpz/Ghcpxtmnblsluv/Zewmssztkzx/Mfebpgulyjwybfopg/Gbioytzymblfeupk.db
- '<SYSTEM32>\wscript.exe' "%LOCALAPPDATA%\FKaf3LyYciQcPF\my2m9tyRiYqavJw1uhTSEcuaITqh.js"