Техническая информация
- '<SYSTEM32>\msiexec.exe'
- <SYSTEM32>\msiexec.exe
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- 'cd####.#ervinguploadetc.com':80
- '74.##5.232.51':80
- cd####.#ervinguploadetc.com/uploading/id=546372129&u=4WaevjA+sJYdbjnNmxr5vGH2e9IozjNmQnvSwRKMacviRtnYIg2xc6QMAWYaZM4RqxalcusDRHEAXj/veOT3xA==
- 74.##5.232.51/
- DNS ASK cd####.#ervinguploadetc.com
- DNS ASK www.google.com