Техническая информация
- 'il###-ar.com':80
- 'il###-ar.com':443
- 'x1.#.lencr.org':80
- 'x2.#.lencr.org':80
- 'e1.#.lencr.org':80
- 'oc##.#tartssl.com':80
- http://il###-ar.com/pworwz.exe
- http://x1.#.lencr.org/
- http://x2.#.lencr.org/
- http://e1.#.lencr.org/MFMwUTBPME0wSzAJBgUrDgMCGgUABBTvkAFw3ViPKmUeIVEf3NC7b1ErqwQUWvPtK%2Fw2wjd5uVIw6lRvz1XLLqwCEgT5ocZ2H2VT0U9DcS5RDoJNmw%3D%3D
- http://oc##.#tartssl.com/sub/class2/code/ca/MEMwQTA%2FMD0wOzAJBgUrDgMCGgUABBQSOgrhRCSnWfKxoWTjWxhk8hga9AQU0E4PQJlsuEsZbzsouODjiAc0qrcCAhAV
- 'il###-ar.com':443
- DNS ASK il###-ar.com
- DNS ASK x1.#.lencr.org
- DNS ASK x2.#.lencr.org
- DNS ASK e1.#.lencr.org
- DNS ASK oc##.#tartssl.com
- DNS ASK st####.rapidssl.com
- '%CommonProgramFiles%\microsoft shared\equation\eqnedt32.exe' -Embedding