Техническая информация
- %WINDIR%\syswow64\notepad.exe
- %TEMP%\fb89da67-080e-4074-a2a4-31bfc8785c3e\agiledotnetrt64.dll
- 'ar###lanm.ga':80
- 'ta#####rry.duckdns.org':161
- 'ge###ugin.net':80
- http://ar###lanm.ga/adminsts/Encrypted%20Client%20OG.jpg
- http://ge###ugin.net/json.gp
- 'ta#####rry.duckdns.org':161
- DNS ASK google.com
- DNS ASK ar###lanm.ga
- DNS ASK ta#####rry.duckdns.org
- DNS ASK ge###ugin.net
- '%WINDIR%\syswow64\notepad.exe'