Техническая информация
- <Текущая директория>\skrkla0y9.exe
- <Текущая директория>\config.ini
- <Полный путь к файлу> в %TEMP%\skrkla0y9\....\skrkla0y9
- 'be####tel360.com':1219
- 'te##.##sthotel360.com':80
- 'ht##.##sthotel360.com':80
- http://www.be#####el360.com:1219/001/puppet.Txt?41#### via be####tel360.com
- http://te##.##sthotel360.com/Data/eajqffaesfiiqynl3vqvnvqysllqoye5sylesfiljnfsqasnqof5yvqnl7c5ijelafqeq7olifvvqvcioeyl5vsavnij3cef5nljeooyce5aqay5jn7fn5o7fi32303231C4EA39D4C234C8D535CAB13336B7D...
- http://te##.##sthotel360.com/001/Tips.txt?42####
- http://ht##.##sthotel360.com/HttpApiGb.ashx?ac###################################################################################################################################################...
- http://ht##.##sthotel360.com/HttpApiGb.ashx?ac#################
- DNS ASK be####tel360.com
- DNS ASK te##.##sthotel360.com
- DNS ASK ht##.##sthotel360.com
- ClassName: 'Progman' WindowName: 'Program Manager'
- ClassName: 'CrossFire' WindowName: ''
- '%WINDIR%\syswow64\ipconfig.exe' /flushdns