Техническая информация
- '%TEMP%\hrlhp.exe'
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEWNTWLX\3010uk2[1].pdf
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\23BUYPX5\3010uk2[1].pdf
- %TEMP%\hrlhp.exe
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\3010uk2[1].pdf
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\UEWNTWLX\3010uk2[1].pdf
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\3010uk2[1].pdf
- 'ha####anvotes.com':80
- 'de#.####ingautomation.com':80
- '18#.#65.214.6':20080
- ha####anvotes.com/3010uk2.pdf
- de#.####ingautomation.com/3010uk2.pdf
- DNS ASK ha####anvotes.com
- DNS ASK de#.####ingautomation.com
- DNS ASK dn#.##ftncsi.com
- ClassName: 'OleMainThreadWndClass' WindowName: ''