Техническая информация
- '<SYSTEM32>\regsvr32.exe' C:\Uduw\soam1.OCX
- '<SYSTEM32>\regsvr32.exe' C:\Uduw\soam2.OCX
- '<SYSTEM32>\regsvr32.exe' C:\Uduw\soam3.OCX
- <Текущая директория>\45a31000
- <PATH_SAMPLE>.xls
- 'bo##y.com':443
- 'be####thaber.com':443
- 'st####.thawte.com':80
- 'bu#####ironworksllc.com':443
- 'cd#.#hawte.com':80
- http://st####.thawte.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSFvn094QJ%2BcWGTwWWEy%2BBXPZkW8AQUo8heZVTlMHjBBeoHCmpZzLn%2B3loCEAeacH%2BIhVFb3j06l5rpGyE%3D
- http://cd#.#hawte.com/ThawteRSACA2018.crl
- 'bo##y.com':443
- 'be####thaber.com':443
- 'bu#####ironworksllc.com':443
- DNS ASK bo##y.com
- DNS ASK be####thaber.com
- DNS ASK st####.thawte.com
- DNS ASK bu#####ironworksllc.com
- DNS ASK cd#.#hawte.com
- DNS ASK st####.rapidssl.com
- '<SYSTEM32>\regsvr32.exe' C:\Uduw\soam1.OCX' (со скрытым окном)
- '<SYSTEM32>\regsvr32.exe' C:\Uduw\soam2.OCX' (со скрытым окном)
- '<SYSTEM32>\regsvr32.exe' C:\Uduw\soam3.OCX' (со скрытым окном)