Техническая информация
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\sd.bat" "
- '%WINDIR%\explorer.exe'
- '<SYSTEM32>\attrib.exe'
- <SYSTEM32>\attrib.exe
- %TEMP%\sd.bat
- 'to####.mydad.info':80
- to####.mydad.info/pub/s8duk.avi
- DNS ASK to####.mydad.info
- ClassName: 'shell_traywnd' WindowName: '(null)'
- ClassName: 'pwebueu' WindowName: 'ndriawrfcqdlsrimxvec hltgtui'