Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'xhj' = '<Полный путь к вирусу>'
- C:\EF6C832D-97B8-4781-82BC-DA5EFEAC9341.dat
- %TEMP%\F62184.dll
- %TEMP%\F62184.dll
- C:\EF6C832D-97B8-4781-82BC-DA5EFEAC9341.dat в C:\a\b\c\EF6C832D-97B8-4781-82BC-DA5EFEAC9341.dat
- 'xc#.#322.org':81
- 'www.lb##z.com':19804
- DNS ASK xc#.#322.org
- DNS ASK www.lb##z.com