Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Network' = 'rundll32.exe shell32.dll,Control_RunDLL network.cpl'
- '<SYSTEM32>\regsvr32.exe' /u -s "c:\arquivos de programas\scpad\scpsssh2.dll"
- '<SYSTEM32>\regsvr32.exe' /u -s "c:\arquivos de programas\scpad\sshib.dll"
- '<SYSTEM32>\regsvr32.exe' /u -s "c:\arquivos de programas\scpad\scpLIB.dll"
- '<SYSTEM32>\regsvr32.exe' /u -s "c:\arquivos de programas\scpad\scpMIB.dll"
- 'fi########1.dominiotemporario.com':80
- fi########1.dominiotemporario.com/celerg.php
- DNS ASK fi########1.dominiotemporario.com
- ClassName: 'TabWindowClass' WindowName: ''
- ClassName: 'Frame Tab' WindowName: ''
- ClassName: 'NDDEAgnt' WindowName: 'NetDDE Agent'
- ClassName: 'Shell DocObject View' WindowName: ''