Техническая информация
- <SYSTEM32>\rundll32.exe connect
- <SYSTEM32>\rundll32.exe
- %TEMP%\logrdeventsrico.cfg
- 'www.ga####or.xpg.com.br':80
- 'bi#.ly':80
- 'www.la#####acrau.xpg.com.br':80
- 'www.fa####ar.xpg.com.br':80
- www.ga####or.xpg.com.br/gastador.txt
- www.fa####ar.xpg.com.br/faseolar.txt
- www.la#####acrau.xpg.com.br/lacraulacrau.txt
- bi#.ly/XwJIK0?
- DNS ASK www.ga####or.xpg.com.br
- DNS ASK bi#.ly
- DNS ASK www.la#####acrau.xpg.com.br
- DNS ASK www.fa####ar.xpg.com.br
- ClassName: '' WindowName: 'rundll32.exe'