Техническая информация
- '%TEMP%\wow-ccc.exe'
- '%TEMP%\BigFoot.exe'
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\tempVidio.bat" "
- %CommonProgramFiles%\System\kb628881.rdc
- %TEMP%\tempVidio.bat
- %TEMP%\kb628881.sve
- %TEMP%\BigFoot.exe
- %TEMP%\wow-ccc.exe
- %CommonProgramFiles%\System\kb628881.rdc
- %TEMP%\wow-ccc.exe
- 'bf####tedx.178.com':80
- 'bf####tewt.178.com':80
- DNS ASK bf####tedx.178.com
- DNS ASK bf####tewt.178.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'