Техническая информация
- '%WINDIR%\system\ys\system.exe' set.ini 0
- '%WINDIR%\system\ys\services.EXE'
- '<SYSTEM32>\ping.exe' 127.0.0.1
- NtOpenProcess, драйвер-обработчик: 51OZNET.sys
- %TEMP%\bt4142.bat
- <SYSTEM32>\URLSend.dll
- <DRIVERS>\51OZNET.sys
- %WINDIR%\system\ys\set.ini
- %WINDIR%\system\ys\services.EXE
- %WINDIR%\system\ys\system.exe
- %TEMP%\bt4142.bat
- <DRIVERS>\51OZNET.sys
- %TEMP%\bt4142.bat
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''