Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'SonyAgent' = '<Полный путь к вирусу>'
- '<SYSTEM32>\wermgr.exe' -queuereporting
- <Полный путь к вирусу>
- '37.#9.75.23':80
- 'localhost':49197
- 'localhost':49200
- 'localhost':49203
- '15#.#24.191.47':80
- 'localhost':49191
- '31.##9.108.9':80
- '91.##3.149.36':80
- '77.##2.16.88':80
- 'localhost':49194
- '19#.#94.113.26':80
- 'localhost':49212
- 'localhost':49215
- '93.#9.39.37':80
- '88.##.250.114':80
- 'localhost':49206
- '17#.#96.252.10':80
- '11#.#0.29.49':80
- '31.##9.110.156':80
- 'localhost':49209
- 'localhost':49188
- 'localhost':49167
- '21#.#9.7.130':80
- '95.#9.224.3':80
- '19#.#06.221.27':80
- 'localhost':49170
- '37.#7.15.7':80
- 'localhost':49158
- 'localhost':49161
- 'localhost':49164
- '5.##8.65.31':80
- 'localhost':49182
- '77.##2.19.69':80
- '10#.#00.230.8':80
- '46.##8.240.33':80
- 'localhost':49185
- '46.##4.179.7':80
- 'localhost':49173
- 'localhost':49176
- 'localhost':49179
- '46.##0.113.18':80
- 93.#9.39.37/file.htm