Техническая информация
- %TEMP%\ALUpExt.exe
- %TEMP%\ALUpdate.exe
- <SYSTEM32>\svchost.exe "%TEMP%\ALUpdate.exe"
- <SYSTEM32>\svchost.exe
- ClassName: 'OLLYDBG' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %APPDATA%\log.dat
- %TEMP%\ALUpExt.exe
- %TEMP%\ALUpdate.exe
- 'pa##ss.net':1588
- 'pa##ns.com':1588
- DNS ASK pa##ss.net
- DNS ASK pa##ns.com
- ClassName: '18467-41' WindowName: ''