Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] 'SUROWND' = 'C:\Boot.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyOverride' = 'local'
- C:\Google.api
- C:\Boot.exe
- 'tu###bzin.com':80
- 'www.in###sul.org.br':80
- tu###bzin.com/h.txt
- tu###bzin.com/p.txt
- www.in###sul.org.br/uploads/exportar/php/add.php
- DNS ASK tu###bzin.com
- DNS ASK www.in###sul.org.br