Техническая информация
- '%PROGRAM_FILES%\ext.scr' /S
- '%PROGRAM_FILES%\ext.scr' (загружен из сети Интернет)
- firefox.exe
- chrome.exe
- %PROGRAM_FILES%\hhtykzuhldrybbnwpiskcsbyvfkpehcxlekfsgwmtkipzpphludmynbpgaycywugddbwlkyrumzgypbv.exe
- %PROGRAM_FILES%\ext.scr
- %TEMP%\aut1.tmp
- %TEMP%\m238551.png
- %PROGRAM_FILES%\ext.scr
- %PROGRAM_FILES%\hhtykzuhldrybbnwpiskcsbyvfkpehcxlekfsgwmtkipzpphludmynbpgaycywugddbwlkyrumzgypbv.exe
- %TEMP%\aut1.tmp
- 'to##ill.com':80
- to##ill.com/ext.zip
- to##ill.com/id.txt?0
- DNS ASK to##ill.com
- ClassName: 'MS_WINHELP' WindowName: '(null)'