Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WindowsUpdater' = 'c:\Ufasoft\Coin\start.exe'
- 'C:\Ufasoft\Coin\coin-miner.exe' -a scrypt -o stratum+tcp://66.55.92.73:8000 -u c783c6f6e4325654 -p 123 -T 100 -t 2 -g No
- '<SYSTEM32>\wscript.exe' "C:\Ufasoft\Coin\run.vbs"
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\tmp1.tmp.bat" "
- C:\Ufasoft\Coin\cryp.dll
- C:\Ufasoft\Coin\usft_ext.dll
- C:\Ufasoft\Coin\run.vbs
- C:\Ufasoft\Coin\start.exe
- %TEMP%\tmp1.tmp.bat
- C:\Ufasoft\Coin\coineng.dll
- C:\Ufasoft\Coin\coin-miner.exe
- C:\Ufasoft\Coin\coinutil.dll
- C:\Ufasoft\Coin\mpir.dll
- C:\Ufasoft\Coin\miner.dll
- %TEMP%\tmp1.tmp.bat
- '66.#5.92.73':8000
- ClassName: 'Indicator' WindowName: ''