Техническая информация
- '<SYSTEM32>\wbem\wmic.exe' process call create "%APPDATA%\Microsoft\ie4uinit.exe -basesettings"
- %APPDATA%\microsoft\ieuinit.inf
- %APPDATA%\microsoft\ie4uinit.exe
- %WINDIR%\temp\oldab00.tmp
- %WINDIR%\security\logs\scecomp.log
- %APPDATA%\microsoft\ieuinit.inf
- %WINDIR%\temp\oldab00.tmp
- 'pa###bin.com':80
- 'pa###bin.com':443
- http://pa###bin.com/raw/RTvQYWs1
- 'pa###bin.com':443
- DNS ASK pa###bin.com
- '%APPDATA%\microsoft\ie4uinit.exe' -basesettings