Техническая информация
- %WINDIR%\explorer.exe
- %HOMEPATH%\desktop\dashborder_192.bmp
- %HOMEPATH%\desktop\aoc_saq_d_v3_merchant.docx
- %HOMEPATH%\desktop\dashborder_96.bmp
- %TEMP%\h2nn24pu9yg4
- %TEMP%\3usy4ulmze72w7s0bk
- %TEMP%\nss19a9.tmp\dc6f87jnhh8r.dll
- 'em##ist.com':80
- 'se#######alcleaningservices.net':80
- 'me######alascosmetics.com':80
- DNS ASK em##ist.com
- DNS ASK se#######alcleaningservices.net
- DNS ASK zi####fosystems.net
- DNS ASK me######alascosmetics.com
- '%WINDIR%\syswow64\msdt.exe'
- '%WINDIR%\syswow64\cmd.exe' del "<Полный путь к файлу>"