Техническая информация
- %APPDATA%\microsoft\windows\start menu\programs\startup\office.exe.lnk
- %TEMP%\8793120c-22f9-4245-916d-e3d4cf4a98aa\agiledotnetrt64.dll
- %HOMEPATH%\music\saved music\windows music\protobuf-net.dll
- %HOMEPATH%\music\saved music\windows music\bouncycastle.crypto.dll
- %HOMEPATH%\music\saved music\windows music\newtonsoft.json.dll
- %HOMEPATH%\music\saved music\windows music\system.data.sqlite.dll
- %HOMEPATH%\music\saved music\windows music\system.data.sqlite.ef6.dll
- %HOMEPATH%\music\saved music\windows music\system.data.sqlite.linq.dll
- %HOMEPATH%\music\saved music\windows music\entityframework.dll
- http://google.com/generate_204
- http://wi#####updateserver.cf/main/alpha/admin/php/running.php
- http://wi#####updateserver.cf/main/alpha/admin/php/protobuf-net.dll
- http://wi#####updateserver.cf/main/alpha/admin/php/BouncyCastle.Crypto.dll
- http://wi#####updateserver.cf/main/alpha/admin/php/Newtonsoft.Json.dll
- http://wi#####updateserver.cf/main/alpha/admin/php/System.Data.SQLite.dll
- http://wi#####updateserver.cf/main/alpha/admin/php/System.Data.SQLite.EF6.dll
- http://wi#####updateserver.cf/main/alpha/admin/php/System.Data.SQLite.Linq.dll
- http://wi#####updateserver.cf/main/alpha/admin/php/EntityFramework.dll
- DNS ASK google.com
- DNS ASK wi#####updateserver.cf