Техническая информация
- [HKCU\Software\Microsoft\Windows\CurrentVersion\Run] 'Microsoft Explorer' = '%APPDATA%\Microsoft\Windows\explorer.exe'
- %APPDATA%\microsoft\windows\templates\explorer.zip
- %APPDATA%\microsoft\windows\templates\explorer.exe
- %APPDATA%\microsoft\windows\explorer.exe
- %APPDATA%\microsoft\windows\explorer.exe
- %APPDATA%\microsoft\windows\templates\explorer.zip
- 'pr######eap.blogspot.com':443
- 'pk#.goog':80
- 'am######st.thedreamsop.com':80
- 'sc#####.hackcrack.io':59527
- http://pk#.goog/gsr1/gsr1.crt
- 'pr######eap.blogspot.com':443
- DNS ASK pr######eap.blogspot.com
- DNS ASK pk#.goog
- DNS ASK am######st.thedreamsop.com
- DNS ASK sc#####.hackcrack.io
- '%APPDATA%\microsoft\windows\templates\explorer.exe'