Техническая информация
- '%TEMP%\ckovo.exe'
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEWNTWLX\2410uk2[1].oss
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\23BUYPX5\2410uk2[1].oss
- %TEMP%\ckovo.exe
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\2410uk2[1].oss
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEWNTWLX\2410uk2[1].oss
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\2410uk2[1].oss
- 'sm####beconduit.com':80
- 'ia###food.com':80
- '18#.#65.214.6':20313
- sm####beconduit.com/uploads/about/2410uk2.oss
- ia###food.com/images/2410uk2.oss
- DNS ASK sm####beconduit.com
- DNS ASK ia###food.com
- DNS ASK dn#.##ftncsi.com
- ClassName: 'Colonraf' WindowName: 'Silybeely'