Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'AsusUpd.exe' = 'AsusUpd.exe'
- '<SYSTEM32>\AsusUpd.exe'
- <SYSTEM32>\raidmg.dll
- <SYSTEM32>\api.dat
- <SYSTEM32>\kbdatat4.dll
- <SYSTEM32>\api32.dll
- <SYSTEM32>\AsusUpd.exe
- 'an##aws.com':80
- '85.##.165.201':8014
- '74.##5.232.51':80
- an##aws.com/bootstrap/skulls.php?ne################################
- DNS ASK an##aws.com
- DNS ASK www.google.com
- ClassName: 'Indicator' WindowName: '(null)'