Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'B2ABE8120A0508719C' = '%APPDATA%\B2ABE8120A0508719C\Microsoft_Windows_Update.exe'
- '%APPDATA%\B2ABE8120A0508719C\Microsoft_Windows_Update.exe'
- '%APPDATA%\B2ABE8120A0508719C\Microsoft_Windows_Update.exe' -I
- '<SYSTEM32>\cmd.exe' /c ""%APPDATA%\B2ABE8120A0508719C\instalar.bat" "
- %APPDATA%\B2ABE8120A0508719C\instalar.bat
- %APPDATA%\B2ABE8120A0508719C\Microsoft_Windows_Update.exe
- 'bi####ru01.esy.es':80
- bi####ru01.esy.es/d4d8d4s.php?AD########################
- DNS ASK bi####ru01.esy.es
- ClassName: 'Indicator' WindowName: ''