Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'firefox' = '%APPDATA%\firefox\firefox.exe'
- %HOMEPATH%\bt72c3l98brq4x0q3bs87gdc5z6bwd423
- %APPDATA%\firefox\firefox.exe
- %APPDATA%\firefox\firefox.exe
- 'xw#####lqeypyltby.ml':80
- 'microsoft.com':80
- http://xw#####lqeypyltby.ml/liverpool-fc-news/features/steven-gerrard-liverpool-future-dalglish--goal-54583C662FACD7E83589E7DE4B5CA1D2.html
- DNS ASK xw#####lqeypyltby.ml
- DNS ASK microsoft.com
- '%WINDIR%\syswow64\cmd.exe' /c timeout 1' (со скрытым окном)
- '%WINDIR%\syswow64\cmd.exe' /c timeout 1
- '%WINDIR%\syswow64\timeout.exe' 1