Техническая информация
- <SYSTEM32>\tasks\firefox default browser agent 8ffbdaf2fe773513
- %APPDATA%\taetrrj
- %TEMP%\e59d.exe
- %APPDATA%\thunderbird\profiles\wjj9aet2.default\cookies.sqlite-shm
- %APPDATA%\taetrrj
- %APPDATA%\thunderbird\profiles\wjj9aet2.default\cookies.sqlite-shm
- %TEMP%\e59d.exe
- 'ho####ile-host6.com':80
- '45.##.139.224':80
- '19#.#33.8.122':80
- 'tr##sfer.sh':443
- '19#.#41.154.249':80
- 'dl.###oadgram.me':443
- http://19#.#41.154.249/www.exe
- http://ho####ile-host6.com/
- 'tr##sfer.sh':443
- 'dl.###oadgram.me':443
- DNS ASK ho####ile-host6.com
- DNS ASK tr##sfer.sh
- DNS ASK ad###############2eq76udjq7qj4uz3xrlkj2wpkxftsptu3jvr2id.onion
- DNS ASK dl.###oadgram.me
- '%TEMP%\e59d.exe'
- '<SYSTEM32>\cmd.exe' /C choice /C Y /N /D Y /T 0 &Del %TEMP%\E59D.exe
- '<SYSTEM32>\choice.exe' /C Y /N /D Y /T 0