Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{31785580-0515-40f1-9310-5B66DA4B9516}] 'stubpath' = ''
- <SYSTEM32>\inzkcszdo.exe
- C:\New Simple Attacker.exe
- C:\server.exe
- <SYSTEM32>\userinit.exe
- <SYSTEM32>\userinit.exe
- <SYSTEM32>\inzkcszdo.exe_lang.ini
- %TEMP%\214765_res.tmp
- <SYSTEM32>\inzkcszdo.exe
- C:\server.exe
- C:\New Simple Attacker.exe
- %TEMP%\214765_res.tmp в %TEMP%\214812_lang.dll
- 'al#####021.codns.com':2554
- DNS ASK al#####021.codns.com
- ClassName: 'Shell_TrayWnd' WindowName: ''