Техническая информация
- '<SYSTEM32>\cmd.exe' /c "%PROGRAM_FILES%\del.bat"
- '<SYSTEM32>\ping.exe' www.google.com
- '<SYSTEM32>\notepad.exe' %PROGRAM_FILES%\Gaduti.txt
- '<SYSTEM32>\ntvdm.exe' -f -i1
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs2.tmp
- %PROGRAM_FILES%\del.bat
- %PROGRAM_FILES%\Gaduti.txt
- %PROGRAM_FILES%\Ruwrwv.exe
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- DNS ASK www.google.com
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b94.b98.380001'
- ClassName: 'Shell_TrayWnd' WindowName: ''